|
definitely no reason to sue me for hundreds of millions of dollars in damages, i'm just an innocent bystander
|
# ? Sep 6, 2023 14:14 |
|
|
# ? Apr 29, 2024 09:27 |
|
"listen man there's never a reason to shut the whole thing down if you can't handle an error just ignore it" -the therac-25 dev team
|
# ? Sep 6, 2023 14:14 |
|
and while the system was down, they continued to accept flight plans, but those were manually entered which has its own risks, since manual data entry can get hosed up.
|
# ? Sep 6, 2023 14:16 |
|
Trabisnikof posted:and while the system was down, they continued to accept flight plans, but those were manually entered which has its own risks, since manual data entry can get hosed up. also this apparently quote:Yes it does. According to its chief executive, Martin Rolfe, “several layers of backup” exist, but apparently the dodgy data caused the secondary automatic processing system to be suspended “to ensure that no incorrect safety-related information could be presented to an air traffic controller or impact the rest of the air traffic system”. idk this sounds like there's a lot more going on here than anyone's saying and i hope the AAIB or whoever does an actual formal report cuz it sounds like one of those "small bug in a small part of a large, interconnected, complex system causes a cascading failure" situations and those are always fascinating to read about
|
# ? Sep 6, 2023 14:18 |
|
question for y'all - to preface: i'm a moron. i don't think secureboot is currently enabled on my system. are malware rootkits really that big of an issue for a home pc? e: to clarify - i’m asking about uefi vs csm boot. my mobo is currently set to csm and i’m wondering if it’s really necessary to switch. Mr. Nice! fucked around with this message at 14:43 on Sep 6, 2023 |
# ? Sep 6, 2023 14:20 |
|
tbh it seems that if you give unique locations non unique names you've already started loving up, but aviation stuff commonly uses the imperial system so suffering from dismal legacy decisions is about as expected
|
# ? Sep 6, 2023 14:32 |
|
let’s all get really opinionated about a system we learned about five minutes ago entirely via a journalist’s third-hand attempt to explain a bespoke search algorithm
|
# ? Sep 6, 2023 14:47 |
|
Jabor posted:(if you try to say "i will just anticipate everything" instead of making a choice then you're an idiot, lol. and you're just choosing to handle them in an arbitrary and unpredictable fashion.) ah yes, the elon musk school of thought
|
# ? Sep 6, 2023 14:48 |
|
uninterrupted posted:"listen man there's never a reason to shut the whole thing down if you can't handle an error just ignore it" that’s the fun thing about functional safety - it is not only acceptable but required to enter design safe states when stuff is weird. design safe state in most cases means “turn off”
|
# ? Sep 6, 2023 15:28 |
|
infernal machines posted:they forgot to use waypoint_real_escape_string() and this is what happened waypoint_real_exit_airspace()
|
# ? Sep 6, 2023 16:59 |
|
uninterrupted posted:this is why business logic is an ongoing problem. in the real world: do the minimum to pass certification tests while keeping it as cheap as possible
|
# ? Sep 6, 2023 18:00 |
|
uninterrupted posted:can you even have an alarm blare on a pacemaker? absolutely, that is a standard feature on every modern pacemaker (and really annoying when you get woken up with a funny alarm clock sound every morning that you can't locate until you realize it's coming from your chest because battery is now at like 20%) also to expand on your other things: there are two different things that can go in your chest, an ICD which is a device that shocks your heart back to sanity, and a pacemaker that gives small jolts every second. there are also devices can do both. I assume the failure mode for the pacemaker side is the same that when it's (un)intentionally "turned off" by a strong magnet - keep a regular 60 bpm going and ignore all sensor inputs and custom programming. the failure mode for the ICD side is "don't loving shock if the sensor input is in any way vague", the heart has to have abnormal rhythms for several seconds before a shock is even considered also the devices logs everything that's going on, so any incident can be examined later on ymgve fucked around with this message at 18:21 on Sep 6, 2023 |
# ? Sep 6, 2023 18:08 |
|
ymgve posted:absolutely can you customize it so it's the first 3 seconds of bon jovi's you give love a bad name?
|
# ? Sep 6, 2023 18:09 |
|
ymgve posted:absolutely, that is a standard feature on every modern pacemaker i appreciate this informative post
|
# ? Sep 6, 2023 18:41 |
|
Shame Boy posted:tbf i feel like provably handling every possible input sanely when the inputs are as well-defined as they are in this case isn't actually out of the question, especially with the timescales and budgets allotted to safety-critical systems like ATC
|
# ? Sep 6, 2023 18:48 |
|
uninterrupted posted:"listen man there's never a reason to shut the whole thing down if you can't handle an error just ignore it" The On Error Resume Next school of programming
|
# ? Sep 6, 2023 18:48 |
|
Trabisnikof posted:the company that made the software thinks they handled the error correctly: Shame Boy posted:idk this sounds like there's a lot more going on here than anyone's saying and i hope the AAIB or whoever does an actual formal report cuz it sounds like one of those "small bug in a small part of a large, interconnected, complex system causes a cascading failure" situations and those are always fascinating to read about
|
# ? Sep 6, 2023 18:48 |
|
MSFT figured out how their key got leaked, I guess. https://msrc.microsoft.com/blog/2023/09/results-of-major-technical-investigations-for-storm-0558-key-acquisition/
|
# ? Sep 6, 2023 21:02 |
|
Oneiros posted:nah, if your air traffic control system's response to someone submitting a "malformed" flight plan is to completely shut down an entire loving country's air travel for a day what if instead of to complete shutting down, it was to run at reduced capacity. and instead of for a whole day it was for 3 and a bit hours. that's not so bad a response.
|
# ? Sep 6, 2023 21:21 |
Subjunctive posted:MSFT figured out how their key got leaked, I guess. you can have a signing key in your crash dumps if you want to. just a little treat
|
|
# ? Sep 6, 2023 22:33 |
|
Help, my sec has been truly hosed https://techcrunch.com/2023/09/02/smart-chastity-cage-emails-passwords-location/
|
# ? Sep 6, 2023 22:43 |
|
quote:“Your cock is mine now,” the hacker told one of the victims, according to a researcher who discovered the hacking campaign at the time.
|
# ? Sep 6, 2023 22:50 |
|
Not my cock! ...is what the uhh victim would say
|
# ? Sep 6, 2023 23:00 |
|
Mr. Nice! posted:question for y'all - to preface: i'm a moron. i don't think secureboot is currently enabled on my system. are malware rootkits really that big of an issue for a home pc? short answer probably not "compatibility support module" lets your modern board, which would prefer to use uefi, run a not-modern operating systems that cannot because it was written before uefi was invented i shouldn't think you'd need to choose "csm or uefi", since the option is usually "uefi or uefi but try csm if that doesn't work"
|
# ? Sep 6, 2023 23:01 |
|
post hole digger posted:Not my cock! lol
|
# ? Sep 6, 2023 23:02 |
|
lol, lmao even https://twitter.com/__silent_/status/1698345924840296801
|
# ? Sep 6, 2023 23:05 |
|
flakeloaf posted:short answer probably not on my mobo it's actually an either or setting. i haven't even checked if my main partition is mbr or not. regardless, keeping it on csm prevents me from getting nags about windows 11 since my computer is "incompatible" so as long as i'm not opening myself up to any real threats idgaf about switching. thanks for the info.
|
# ? Sep 6, 2023 23:06 |
|
..razor…
|
# ? Sep 6, 2023 23:15 |
|
Subjunctive posted:MSFT figured out how their key got leaked, I guess. i wonder how they fixed the race condition allowing the key data to be present in a crash dump. in-process crash handler to zero out sensitive buffers?
|
# ? Sep 6, 2023 23:41 |
|
the hacker unlocks the cage and deletes all the stolen data as soon as they realize how horny the ostensible victim is getting over this conversation
|
# ? Sep 7, 2023 00:22 |
|
rjmccall posted:i wonder how they fixed the race condition allowing the key data to be present in a crash dump. in-process crash handler to zero out sensitive buffers? i wonder if theres a way to flag memory as sensitive so the crash dump tool doesnt log it. maybe the race condition was not flagging the memory for protection before the crash and they added some lock to ensure protection.
|
# ? Sep 7, 2023 00:23 |
|
rjmccall posted:i wonder how they fixed the race condition allowing the key data to be present in a crash dump. in-process crash handler to zero out sensitive buffers? yeah, I’ve danced in crash handling and it’s always a loving mess. if they put the key in a separate heap it would be easier to avoid, but I would love to hear more about the structure they’ve got
|
# ? Sep 7, 2023 00:29 |
|
you mmap() a page to contain the key material and then pass MADV_DONTDUMP to madvise()
|
# ? Sep 7, 2023 03:12 |
|
NoneMoreNegative posted:Help, my sec has been truly hosed i love the future
|
# ? Sep 7, 2023 03:27 |
|
pseudorandom name posted:you mmap() a page to contain the key material and then pass MADV_DONTDUMP to madvise() yeah. i was thinking that some passive thing would make the most sense, so it makes sense to something like this would exist, thanks
|
# ? Sep 7, 2023 04:52 |
|
and if I'm not shitposting, I have no idea how to keep registers out of a coredump so good luck if you crashed while a thread was running an encryption algorithm and had key material in registers
|
# ? Sep 7, 2023 05:10 |
|
Last Chance posted:..razor…
|
# ? Sep 7, 2023 05:48 |
|
imagine how that apt guy felt when they discovered a private key in a dump that microsofts own tools didnt flag its like finding a fort knox of gold in a compost pile
|
# ? Sep 7, 2023 06:17 |
|
pseudorandom name posted:you mmap() a page to contain the key material and then pass MADV_DONTDUMP to madvise() m'advise()
|
# ? Sep 7, 2023 06:49 |
|
|
# ? Apr 29, 2024 09:27 |
|
so it looks like MiniDumpWriteDump has a callback to opt out of including memory regions, but i don’t see a way for a process to request that internally; you’d need a supervisory process doing the dump to honor something in the failing process
|
# ? Sep 7, 2023 07:26 |