|
Beeftweeter posted:yeah admittedly there's not much info on that tweet but it seems like that's right (from the tweet the one already posted was in reply to): the motherborad market is an insanely segmented mess - intel puts out at least three different levels of mobo chipset for every generation and MSI will have each in itx, matx and atx, and then premium upsell versions with more ports and poo poo on top. iirc MSI also sells laptops
|
#
?
May 6, 2023 17:17
|
|
|
|
| # ? Oct 3, 2023 18:59 |
|
|
zero knowledge posted:fortunately the EU is bringing back the glory days of EV with eIDAS and QWACs so you'll get to have those asinine arguments forever. The only change is rather than reselling geotrust certs, your cert provider will resell one from a EIDAS enabled CA.
|
|
#
?
May 6, 2023 17:57
|
|
|
Clark Nova posted:iirc MSI also sells laptops they do and i'm going to have a fun monday determining how bad this is for my team
|
|
#
?
May 6, 2023 18:57
|
|
|
~Coxy posted:https://www.filfre.net/2022/12/doing-windows-part-11-the-internet-tidal-wave/ Subjunctive posted:Netscape 6 was the first release based on Mozilla, and it was not ready. It was incredibly slow and bloated still, but AOL management didn’t want to wait for the performance and efficiency work to be finished so they piled all their branded bullshit into it and sent it to market. Mozilla 1.0 wasn’t released for a long time afterwards because it took us a long time to get the lovely layout engine into shape. I remember near-screaming-match meetings with senior AOL managers trying to convince them to not ship the thing because it was going to just destroy the brand that we all still had an emotional attachment to. And it did, but AOL really wanted to turn Netscape into a “destination website” and cared not a ton about the browser other than as a vector for AIM and some shopping toolbars, so whatever I guess!  this poo poo owns ty!
|
|
#
?
May 6, 2023 19:02
|
|
|
Hed posted:I remember using phoenix in 2000/2001/2002? tabbed browser i used phoenix for a short while, but it was an early version and it ended up blowing itself up in a way where it was the registered GIF/image viewer and any attempt to open it would create an empty white window with nothing but the decorations personally i ended up using opera 7, which i think that laptop even still has installed (though it might be opera 9). that served me for a long time, and the ability to turn off styles and make images load on demand was basically a godsend when you're runnin on 32 of god's own megabytes
|
|
#
?
May 6, 2023 20:03
|
|
|
BlankSystemDaemon posted:FreeBSD Ports started out using MD5 checksums in 1994, and switched to sha256 in 2010, so I'm not really sure I buy this argument. That's only hashing files offline though right? Taking more time there could be annoying, but you can go do something else while it's working. Web browsing is interactive though, so encrypting/decrypting and hashing every packet to a website means every page load will take longer which could have been a noticeable delay on the hardware of the time. I don't have any hardware of that era to test the theory though. That's not counting the additional time spent in the SSL/TLS handshake before any application data even starts getting sent.
|
|
#
?
May 6, 2023 20:03
|
|
|
Lady Radia posted:
yea more netscape stories plz
|
|
#
?
May 6, 2023 21:00
|
|
|
here's a documentary that might scratch some of y'alls itch https://www.youtube.com/watch?v=4Q7FTjhvZ7Y
|
|
#
?
May 6, 2023 21:15
|
|
|
Hed posted:I remember using phoenix in 2000/2001/2002? tabbed browser Would my life be better or worse if I couldn't open 500 tabs?
|
|
#
?
May 6, 2023 22:34
|
|
|
spankmeister posted:here's a documentary that might scratch some of y'alls itch I'm in this, though not a speaking part (I was remote when they were filming it)
|
|
#
?
May 6, 2023 22:54
|
|
|
Subjunctive posted:I'm in this, though not a speaking part (I was remote when they were filming it) Can't blame you, wouldn't want to have Tara come beat me with a hockey stick either.
|
|
#
?
May 6, 2023 23:30
|
|
|
spankmeister posted:Can't blame you, wouldn't want to have Tara come beat me with a hockey stick either. Tara is a sweetheart and I miss her terribly. she treated me like her kid brother for the years I was there and I’m very grateful for it
|
|
#
?
May 7, 2023 03:24
|
|
|
eidas boot
|
|
#
?
May 7, 2023 03:54
|
|
|
Subjunctive posted:Tara is a sweetheart and I miss her terribly. she treated me like her kid brother for the years I was there and I’m very grateful for it Reading my post again it might be construed as putting her in a bad light, which I didn't mean to do at all! She seems like a really cool person! But i'd definitely be hiding somewhere if I had a list of bugs as long as my arm haha.
|
|
#
?
May 7, 2023 07:21
|
|
|
mystes posted:I forgot how tabs were like this exciting new feature. It seems really hard to imagine now. I used to have a dozen windows open instead.
|
|
#
?
May 7, 2023 07:50
|
|
|
Shaggar posted:military security is apparently complete garbage and that poo poo is probably like 50% chinese spies by volume. just blindingly incompetent. the recent leaker passed his background checks cause he was a chud which isnt a threat like smoking weed is. and then on top of that their material controls are all on the honor system. just give yourself access to whatever you need, no biggie. no fine grained controls, just one big pot of sensitive data that everyone gets to access once they pass the laughable clearance don’t worry. they enforce fips mode via group policy so everything is secure
|
|
#
?
May 7, 2023 16:50
|
|
|
fips mode is the greatest
|
|
#
?
May 7, 2023 19:06
|
|
|
Captain Foo posted:fips mode is the greatest
|
|
#
?
May 7, 2023 19:19
|
|
|
Captain Foo posted:fips mode is the greatest only if you enable it on systems that do not require FIPS compliance because they are operated by and for the US government [ask] me about my MILITARY GRADE ENCRYPTION using the finest cryptographic primitives available in the early 2000s
|
|
#
?
May 7, 2023 19:54
|
|
|
Qtotonibudinibudet posted:only if you enable it on systems that do not require FIPS compliance because they are operated by and for the US government yep that was the joke
|
|
#
?
May 7, 2023 21:03
|
|
|
Captain Foo posted:fips mode is the greatest
|
|
#
?
May 7, 2023 21:53
|
|
|
Captain Foo posted:fips mode is the greatest
|
|
#
?
May 7, 2023 23:57
|
|
|
Captain Foo posted:fips mode is the greatest
|
|
#
?
May 8, 2023 00:48
|
|
|
they call it fips mode because when I see it I raise both my hands and fip it the double bird
|
|
#
?
May 8, 2023 12:06
|
|
|
i'm applying for a job at an IT security place a friend of a friend told me about. can i PM one of y'all smart security people and ask if they're like, notoriously bad or something, because i've never heard of them, but also i don't want to broadcast who my future employer might be to the entire forum. e: to be clear i'm mostly curious if you've heard of them or if they have an awful reputation or something, i can figure out the basics about them just fine through googling Shame Boy fucked around with this message at 12:33 on May 8, 2023 |
|
#
?
May 8, 2023 12:29
|
|
|
You can always try. I'm heavily biased but maybe that helps
|
|
#
?
May 8, 2023 13:30
|
|
|
something something fipsmode squad
|
|
#
?
May 8, 2023 13:40
|
|
|
Shame Boy posted:i'm applying for a job at an IT security place a friend of a friend told me about. can i PM one of y'all smart security people and ask if they're like, notoriously bad or something, because i've never heard of them, but also i don't want to broadcast who my future employer might be to the entire forum. tried checking glassdoor or whatever that other site was, blind or something?
|
|
#
?
May 8, 2023 15:21
|
|
|
fun fact: golang isnt fips 140-2 compliant out of the box because the crypto module doesn’t do the sane thing and ffi to libssl or similar and instead is fully self-contained without fips compliance being a goal of the library the only way to make it fips compliant is to use an alternate toolchain like boringssl or microsoft’s. they’re mostly drop in but lol nice job go team in 1.19+ it’s apparently behind a goexperiment flag and the boringssl toolchain isn’t being maintained as a separate branch anymore at least
|
|
#
?
May 8, 2023 16:29
|
|
|
look i'm sure someone on the go team had a lot of fun rolling their own encryption
|
|
#
?
May 9, 2023 01:07
|
|
|
that someone is filippo valsorda and i wouldn't glibly dismiss his work. his newsletter is worth a read
|
|
#
?
May 9, 2023 01:52
|
|
|
Rufus Ping posted:that someone is filippo valsorda and i wouldn't glibly dismiss his work. his newsletter is worth a read
|
|
#
?
May 9, 2023 01:56
|
|
|
sounds like the goal was to eliminate external dependencies?
|
|
#
?
May 9, 2023 02:09
|
|
|
Jabor posted:look i'm sure someone on the go team had a lot of fun rolling their own encryption they probably just statically linked the system libraries like openssl or boringssl or libressl or what have you I believe fips requirements demand that you link to a specific shared library that has passed certification, so static linking doesn't work if you want to use a modern fips certified library, you have to pay for rhel (or use a free license) or ubuntu advantage, although I hear oracle linux has it. Rocky Linux and Alma Linux are supposed to get their certifications Real Soon. None of this matters unless you have a specific requirement for it, like if you work with us federal government data.
|
|
#
?
May 9, 2023 02:15
|
|
|
Beeftweeter posted:sounds like the goal was to eliminate external dependencies? Probably. Certainly makes it easy to put in a docker container, for sure.
|
|
#
?
May 9, 2023 02:16
|
|
|
sb hermit posted:Probably. Certainly makes it easy to put in a docker container, for sure. makes sense to me for a cross-platform toolchain too, especially considering there was(? still is?) some uncertainty around the different major ssl libraries
|
|
#
?
May 9, 2023 02:19
|
|
|
sb hermit posted:they probably just statically linked the system libraries like openssl or boringssl or libressl or what have you when we did fips for the Mozilla software we just did cert for our crypto library, it sucked but Google could definitely manage fips validation for gossl or whatever if they wanted to ninja: go could let you link against NSS for fips stuff, haha
|
|
#
?
May 9, 2023 02:19
|
|
|
Subjunctive posted:when we did fips for the Mozilla software we just did cert for our crypto library, it sucked but Google could definitely manage fips validation for gossl or whatever if they wanted to anyone who willingly implements x509 for pki is either being paid to do so or is a complete madman and I wouldn't be surprised if it's both also see: ike v1 parsing and validation
|
|
#
?
May 9, 2023 02:25
|
|
|
Subjunctive posted:when we did fips for the Mozilla software we just did cert for our crypto library, it sucked but Google could definitely manage fips validation for gossl or whatever if they wanted to and they have for a while https://github.com/golang/go/tree/dev.boringcrypto.go1.18 (1.18 is the last version they had a separate branch for) i read somewhere that perf is orders of magnitude worse with the fips version so they opted to provide an alternative for those who need it rather than the most folks who probably couldn't care less e: i think i misunderstood you. according to the same article fips compliance was never a goal of the crypto package and the focus was on performant cryptography operations that didn't require linking against a library across a ton of different architectures and os targets
|
|
#
?
May 9, 2023 02:25
|
|
|
|
| # ? Oct 3, 2023 18:59 |
|
|
Also, older fips validation is specific to a compiled binary. As of last year or so, they changed it so that validation can be done on source but the resulting binaries are only good on specific hardware platforms. Or something. I'm not clear on the details but openssl used to let you download fips binaries for some flavor of 0.9.8 because some corporate entity paid for the cert for their own product but then let openssl provide it to everyone for free. It's wild poo poo. certifications are serious business and are expensive
|
|
#
?
May 9, 2023 02:32
|
|