Leave username and password empty to post as anon. Post with a username and password of your choice to register (alphanumeric only).



rocksolid.shared.linux Subject: Re: Hope your not using 4.17++ branches Date: Wed, 13 Nov 2019 02:31:55 -0000 (UTC)

"AnonUser" Message-ID: <[email protected]>
To: rocksolid.shared.linux It's ring -4 compromised as a monolithic: https://itsfoss.com/nsas-encryption-algorithm-in-linux-kernel-is-creating-unease-in-the-community/ https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Methodology and Resources/Linux - Privilege Escalation.md https://www.defcon.org/html/links/dc-archives/dc-26-archive.html -seL4 Gang -- Posted on RetroBBS

Show all 5 messages

[email protected] (AnonUser)
anonymous wrote: > any kernel version starting with 4.20 is without speck again > (https://www.tomshardware.com/news/nsa-speck-removed-linux-4-20,37747.html). > so if you updated your kernel recently you should be safe. > Posted on def2 Nice to know thx! -- Posted on Rocksolid Light

rocksolid.shared.linux Subject: photoshop on wine Date: Wed, 13 Nov 2019 02:28:59 -0000 (UTC)

[email protected] (AnonUser)Message-ID:
I just learned something! I run photoshop 7.0 under wine in Linux regularly, and it works very well. I do remember hearing that Disney contributed code to wine to help photoshop run, and it does run well. So I moved my directory to another partition and got the standard 'scratch disks are full' error on loading. It won't load at that point and just exits. After a bit of searching, I learned that it can't handle a disk larger than 1TB. I moved it back, and all is well. Just putting this here in case someone else comes across this issue :) -- Posted on Rocksolid Light

rocksolid.nodes.help Subject: Re: php and performance Date: Tue, 12 Nov 2019 18:42:02 -0000 (UTC)

trw Message-ID:
>and still the importing problem of some outlandish characters causing collation errors. at a different place now, i guess. Posted on def3

Show all 4 messages

[email protected] (anonymous)
it is a message in (among other groups) alt.free.newsservers the username causing the problem is "bad # sector", where the "#" stands for some char i need to identify yet (i have only read the error messages so far). i can post more details on the weekend. Posted on def2

rocksolid.nodes.announce Subject: Re: New default theme for def3 Date: Mon, 11 Nov 2019 23:17:50 +0000

trw Message-ID: <[email protected]>
ah beautiful, you should not paste code in textfields... Posted on def3

"Retro Guy"
To: trw trw wrote: > ah beautiful, you should not paste code in textfields... > Posted on def3 happy code lol :) -- Posted on RetroBBS

rocksolid.shared.security Subject: 2 year old phishing vuln still open Date: Sun, 10 Nov 2019 22:08:23 -0000 (UTC)

[email protected] (AnonUser)Message-ID:
https://thehackernews.com/2017/04/unicode-Punycode-phishing-attack.html I tested that with tbb and firefox and sure enough, both were vulnerable. this domain here: https://xn--80ak6aa92e.com/ displays as https://apple.com I guess ssl on the whole is just fucked, even if this one here is not linked directly to it. Wonder if this could work with onion addresses as well ? -- Posted on Rocksolid Light

To: AnonUser This is terrible design... >Wonder if this could work with onion addresses as well ? Doubt it. I think Tor can only resolve onion hashes and the browser would translate the utf8 to the punycode equivalent and try to pass that to Tor. Tor would then not be able to resolve that hash. This would only partially work for registered I2P domain names but not the b32 hash. If you enter xn--80ak6aa92e.i2p into your I2P browser right now, it will translate it to "apple.i2p" but it isn't in your addressbook so it will ask if you want to use a jump service. There you get two options (with I2PD): inr.i2p: http://joajgazyztfssty4w2on5oaqksz6tqoxbduy553y34mf4byv6gpq.b32.i2p/search/?q=xn--80ak6aa92e.i2p stats.i2p: http://7tbay5p4kzeekxvyvbf6v7eauazemsnnl2aoyqhg5jzpr5eke7tq.b32.i2p/cgi-bin/jump.cgi?a=xn--80ak6aa92e.i2p If you follow stats.i2p then it displays the punycode in the error "Your attempt to jump to "xn--80ak6aa92e.i2p" failed", so I assume it would do the same on success. Though if it is successful at finding it, then IIRC it will automatically jump after a few seconds while displaying something like "found ${insert hostname}! redirecting..." so it would work with someone not paying attention. With inr.i2p I don't know, because you would have to register xn--80ak6aa92e.i2p for it to show up in the list to find out. Maybe someone is curious enough to set up an eepsite and register it to find out :

rocksolid.nodes.help Subject: Re: php and performance Date: Sat, 09 Nov 2019 06:49:10 -0500

trw Message-ID:
what are the opinions about the best way to run php for a forum like this or rslight ? explanation: due to the recent performance problems of both def2 and def3 (both threw a lot of 503s recently, this has gone away now), i have researched a bit about the best setup to run php ("the best" is relative to my needs of course: so: a modest number of users and messages, running the server on a vm hosted on modest hardware, with a limited up/download speed). on the old machine, def3 used to run with nginx as webserver, connected to php-fpm over a system socket, and that worked fine. now i use lighttpd with php-cgi, and it seems to work fine as well (the performance problems came in fact from some daemons running wild that had nothing to do with the webserver or php). def2 ran with lighttpd/php-cgi from the start, with mixed perfromance. i understand that php-cgi is outdated, and fcgi is recommended. from php, the fcgi implemention in php (php-fpm) is recommended. on the other hand, i don't mind running outdated software if it does the job, which seems to be the case right now. php-fpm in combination with nginx also had a vuln recently (potential remote root access), so newer is not necessarily better. there are also much more parameters to adjust, which is fine if you know what you are doing, but makes it more complex. So what are the opinions around ? What is your experience ? And if you use php-fpm, what are your settings ? cheers trw Posted on def3

Show all 6 messages

it seems like the database is the main component to cause the fuckups. corrupted tables (which i could repair) and still the importing problem of some outlandish characters causing collation errors. Posted on def3

rocksolid.nodes Subject: Re: ping trw ?re: def3.i2p? Date: Sat, 09 Nov 2019 00:40:17 -0500

"Retro Guy" Message-ID:
To: rocksolid.nodes I just noticed that the posts on def3.i2p are not up to date. I tried def2 but it wouldn't load, so I connected to one of your news servers directly and received an 'out of space' (innwatch) error message. I checked this server: vm2sdb.........i2p If it looks like it shouldn't be out of space, it could be out of inodes, as articles are small files. I didn't know if you are aware so letting you know. Retro Guy -- Posted on RetroBBS

Looks good now. I don't know if you did anything, but it seems ok. Retro Guy Posted on def3

rocksolid.shared.tor Subject: Re: tbb 9.0.1 freezes my laptop Date: Sat, 9 Nov 2019 00:48:05 +0000

[email protected] (AnonUser)Message-ID: <[email protected]>
anybody else with the same problem ? could be due to my weird system setup as well... -- Posted on Rocksolid Light

Show all 5 messages

To: anonymous >grml Never heard of it, but my guess is that tbb is merely triggering an existing underlying problem. If you are lucky then you'll have something in your logs. If not then you'll be playing the "why is my machine randomly freezing" game for a few years... or until you buy new hardware. Alternatively you can debug your kernel. Both very fun games. I would however recommend trying a different distribution where other people don't report freezes. I use Debian buster with tbb and it hasn't froze on me. -- Posted on RetroBBS

rocksolid.shared.entertainment Subject: Re: Airline Tickets Tips Date: Tue, 05 Nov 2019 20:52:05 -0500

Guest Message-ID:
Over the last 10 years I delegated a lot of computer "jobs" to "new talent". Purchase of airline tickets was not one of them. I got the usual offers of "donated miles" or "charity contribution discount" but I did pass. I did take the challenge with others to find the lowest "money/price" for the user and I was beaten probably only in 10% of the cases by around 25%. Oh yeah it is an olympic sport... Here there are 2 legal (somewhat) tips. 1. When searching online the best places to search from are Ireland, Germany, Spain, Netherlands. It does not matter where you start and where you end your trip but where you search from. The second best is totaly anonymous. When the actual payment is made you have to reveal yourself and hope the brokers keep their end of the bargain 50% chance. 2. Your search profile is crucial! The best profile is young, educated middle class. This has to do with cookie manipulation and it is more of an art. A fake Facebook cookie will be tough to spot by Kayak. So if you have some dough for travel choose your accomplices and victims safe. At least until those tickets are purchased... Any other legal tips? Posted on def3

Show all 3 messages

There are people that steal miles by computer or deception and then there are charities that pay very little for tickets. I've been peddled those options but I passed because I don't want to lose my skills. In a bind (hopefully never) I can always get some card that I refuse to pay back. Posted on def3

rocksolid.nodes.announce Subject: Re: Wow, cool color scheme on rslight Date: Tue, 5 Nov 2019 23:39:22 -0000 (UTC)

[email protected] (anonymous)Message-ID: <[email protected]>
keep it, that looks really nice. cheers trw Posted on def2

Show all 4 messages

[email protected] (anonymous)
>I did lift some of the colour selections from the css code provided for def3 by helpful members of these groups Oh yeah, I thought it looked familiar... Posted on def2

Browse topics:

Back to Top