01:41:53
0xfffc:
https://en.wikipedia.org/wiki/The_Secret_Doctrine
01:42:00
0xfffc:
The light-bringer
03:44:02
DataHoarder:
https://notepad-plus-plus.org/news/hijacked-incident-info-update/
04:54:02
321bob321:
This is why daniel should host GOS at home
05:45:16
BlueyHealer:
I've seen on their Mastoddon that they've done the next best thing and have bare metal servers now.
05:50:02
plowsof:
There is a state sponsored update available. Update now or Remind me later
05:50:37
BlueyHealer:
Also yeah, don't think an attacker this dedicated couldn't have breached a home server either.
05:51:05
plowsof:
malicious binaries where placed on getmonero that one time, source of the attack was suggested to be physical access to the host machine
05:51:52
Cindy:
you think they should have made notepad++ check the signatures of the update
05:51:56
Cindy:
as an additional precaution
05:52:05
Cindy:
well, good thing they do now i guess :P
05:53:15
plowsof:
Flatpack - convenient but kinda scary
05:55:01
plowsof:
flathub is the most popular afaict > https://flathub.org/en/apps/org.getmonero.Monero . projects like featherwallet host their own flatpak server which is nice
05:55:31
BlueyHealer:
Cindy, they didn't use to?
05:56:18
BlueyHealer:
That was my first question when I saw the news. Like, distros' updates come from so many mirrors but it's not a big deal because of this.
05:56:37
Cindy:
the blogpost says that older versions of notepad++ didn't actually verify the updates
05:57:12
Cindy:
"The attackers specifically targeted Notepad++ domain with the goal of exploiting insufficient update verification controls that existed in older versions of Notepad++"
05:57:19
BlueyHealer:
plowsof, yeah, the thing that kinda bothers me about Flatpak is that Flathub is pretty much the only major one, and not really seen any of the projects I use host their own. Very cool to know Feather does it!@
05:59:33
Cindy:
well now notepad++ verifies them
06:00:22
plowsof:
i thought everyone clicks remind me later or cancel until it breaks
06:42:53
321bob321:
I use mouse pad anyways
06:58:21
Cindy:
https://www.youtube.com/watch?v=lYGKGkTInao&t=398
06:58:44
Cindy:
monero cameo
07:28:07
BlueyHealer:
Not watching that, but that made me curious. Is it even possible to actually use Polymarket anonymously? Recently heard about it from a podcast.
07:28:33
BlueyHealer:
Heard about it in the context of "look what ridiculous things people gamble on".
08:09:16
plowsof:
polymarket does attempt geoblocking , look at the list lol https://docs.polymarket.com/polymarket-learn/FAQ/geoblocking
08:09:48
plowsof:
no idea if they require kyc on payouts but it seems likely if you are on a blocked list then what?
08:14:14
BlueyHealer:
why is Ontario randomly singled out?
08:29:07
BlueyHealer:
On one hand, I wish gambling didn't exist because it ruins people's lives. But on the other - some things people gamble on are just funny.
08:29:48
monerobull:matrix.org:
everything is gambling
08:30:22
BlueyHealer:
Like?
08:30:33
monerobull:matrix.org:
if youd want to entirely avoid it, youd have to sit in your room all day doing nothing
08:30:52
monerobull:matrix.org:
and even then youre gambling on the fact that nobody will come and ruin it for you
08:31:06
BlueyHealer:
I mean in overgeneralization yeah, but a) I already have anxiety partly because of that and b) you know what I am talking about.
08:31:37
monerobull:matrix.org:
gambling is not the perfect word for it, true, it fits better if you use the word risk instead of gambling
08:31:48
monerobull:matrix.org:
but taking risks is essentially gambling so....
08:32:29
plowsof:
" youd have to sit in your room all day doing nothing" how much would you like to bet me i not doing that already
08:32:38
BlueyHealer:
I mean specifically betting big amounts of money knowing odds are in favor of the house, just for the small chance of instant and big reward.
08:33:29
monerobull:matrix.org:
@plow 10k, i will collect it when you write your next message / do something on gitlab / literally do anything :)
08:33:43
plowsof:
😭
08:33:48
monerobull:matrix.org:
rip
08:33:52
monerobull:matrix.org:
you know my address :)
08:34:14
BlueyHealer:
Like, making an actually cool startup is also a gamble, but at least you get to do something cool, while betting on events is entirely unproductive.
08:35:07
monerobull:matrix.org:
ok but what about me going 10x levered long on XMR hyperliquid with 2 years worth of salary at $700
08:35:41
BlueyHealer:
what is this word salad
08:36:37
monerobull:matrix.org:
https://mrelay.p2pool.observer/m/matrix.org/EyQjaXiHZMjLxazgKSJWwYbL.png (image.png)
08:36:41
monerobull:matrix.org:
i could have won a hosue
08:36:48
monerobull:matrix.org:
lmao
08:38:26
monerobull:matrix.org:
of course only in hindsight
08:38:26
BlueyHealer:
Like, "10x levered long on XMR hyperliquid" - is this technobabble?
08:38:52
monerobull:matrix.org:
its "sophisticated" gambling terminology
08:39:16
BlueyHealer:
I mean did you use a real one or just technobabble to show the point?
08:39:32
monerobull:matrix.org:
no thats real
08:39:55
monerobull:matrix.org:
10x long means you bet the price will go up, by borrowing money
08:40:10
monerobull:matrix.org:
you bet $100 but your position is worth $1000
08:40:24
monerobull:matrix.org:
so for every $1 XMR goes up, youd gain $10
08:40:34
monerobull:matrix.org:
but that also works in the other direction
08:40:35
BlueyHealer:
Things that are "in hindsight" don't count. Like, I wouldn't feel unsafe using Monero because it's unlikely the value would disappear. But I would not risk ny life savings like that.
08:40:45
monerobull:matrix.org:
for every $1 it goes down, you lose 10
08:41:03
monerobull:matrix.org:
BlueyHealer: yeah but this is not using monero
08:41:11
monerobull:matrix.org:
this is purely a bet on the price of monero
08:41:16
BlueyHealer:
Like, whatever you do with the savings is a gamble anyway, because it's not like my own currency hasn't tanked.
08:41:21
monerobull:matrix.org:
and if youre wrong you are quickly left with zero
08:41:57
BlueyHealer:
But you're talking about not storing the savings, but gambling monrey you don't have. THAT is what I unambiguously am against.
08:42:20
BlueyHealer:
Just a bet on price? That's a more "pure" gamble.
08:42:43
monerobull:matrix.org:
in this scenario you can only lose what you bet, but yeah, i of course know what you mean.
08:43:06
monerobull:matrix.org:
i was just talking about a blatantly insane example
08:44:27
monerobull:matrix.org:
but yeah, everything is gambling
08:44:43
monerobull:matrix.org:
just in more or lesser forms
08:44:45
monerobull:matrix.org:
polymarket is fun to look at
08:45:02
monerobull:matrix.org:
i lost money by betting Mr Beast would say specific things in the next video
08:45:11
BlueyHealer:
I still think there's a narrower definition of "gambling" that is just stupid
08:45:20
monerobull:matrix.org:
how silly is that huh
08:45:23
BlueyHealer:
Oh... Sorry to hear.
08:45:43
monerobull:matrix.org:
haha you dont have to be
08:45:59
monerobull:matrix.org:
this was just silly entertainment money, nothing big
08:46:22
BlueyHealer:
Like, it would be fine if you're doing it with just small amounts you can lose. Like opening cases in a video game. But personally just afraid of messing up my dopamine and eventually spending more. And the anxiety of losing does outweigh the chance of win.
08:47:56
monerobull:matrix.org:
for sure
08:48:25
monerobull:matrix.org:
i am very glad i got rekt by childhood gambling lmao
08:48:58
BlueyHealer:
How can a child gamble? In video games?
08:48:58
monerobull:matrix.org:
sure, some people might develop an addiction, rip to those guys
08:49:05
monerobull:matrix.org:
hell yeah
08:49:11
monerobull:matrix.org:
OG CSGO days
08:49:15
BlueyHealer:
Ah.
08:49:23
monerobull:matrix.org:
gambling with skins :D
08:49:38
BlueyHealer:
So not even in the game, but on those third-party websites?
08:50:08
monerobull:matrix.org:
yeah exactly, the cases in the game always felt like an outright scam
08:50:13
BlueyHealer:
OH
08:50:34
monerobull:matrix.org:
i've opened maybe 5 in total, only pulled garbage
08:50:55
BlueyHealer:
In childhood, it's not like I had money in games to gamble with, so that might have kept me from this particular mistake. Also I only really had Minecraft as a kid.
08:51:34
monerobull:matrix.org:
it was a learning experience :)
08:52:16
monerobull:matrix.org:
i do hate losing money so i very rarely make outright gambles
08:52:54
monerobull:matrix.org:
had i not played the csgo roulette back in the days i might have tried it at a later point and lost way more
08:53:46
monerobull:matrix.org:
back to the original topic though
08:53:54
monerobull:matrix.org:
polymarket can be pretty useful
08:56:16
monerobull:matrix.org:
https://mrelay.p2pool.observer/m/matrix.org/vebnyfEcnajEmkrmTlDfCued.png (image.png)
08:56:42
BlueyHealer:
<monerobull:matrix.org> had i not played the csgo roulette back in the days i might have tried it at a later point and lost way more <- hell yeah
08:56:52
monerobull:matrix.org:
These things work as early warning / insurance policies for people in the line of fire
08:57:05
BlueyHealer:
The funniest I've seen is "Jesus coming back"
08:57:12
BlueyHealer:
I don't think there was a deadline
08:57:19
monerobull:matrix.org:
gotta read the fine-print
08:57:33
monerobull:matrix.org:
there is a "Jesus returns before GTA6" market
08:58:00
monerobull:matrix.org:
if you read the markets rules, it is really just a "will GTA6 get delayed" market
08:59:22
monerobull:matrix.org:
https://mrelay.p2pool.observer/m/matrix.org/XqQsGPIitVzwxICFNBGydXLP.png (image.png)
08:59:37
monerobull:matrix.org:
they can also be a bit scary
09:00:00
monerobull:matrix.org:
this market can be used as an insurance policy for people living in Israel
09:00:40
monerobull:matrix.org:
but it can also be used as an incentive to actually go through with a strike
09:41:33
321bob321:
https://www.reddit.com/r/cybersecurity/comments/1qq005j/detecting_clawdbot_usage_in_the_enterprise/
09:41:33
321bob321:
Why
09:42:15
BlueyHealer:
funni
09:46:17
monerobull:matrix.org:
clawdbot is so funny
09:46:39
monerobull:matrix.org:
i do love the idea of autonomous agents that can use crypto and surf the web
09:46:58
sech1:
Prompt inject them and make them buy XMR :D
09:54:07
basses:matrix.org:
Notepad++ hijacked by state-sponsored actors
09:54:07
basses:matrix.org:
https://notepad-plus-plus.org/news/hijacked-incident-info-update/
09:58:35
DataHoarder:
repost
10:00:00
basses:matrix.org:
oh
10:01:44
basses:matrix.org:
@321bob321: it already is https://grapheneos.org/articles/grapheneos-servers
10:02:26
basses:matrix.org:
> We use hardened local machines for building and signing rather than servers outside our physical control
10:03:16
basses:matrix.org:
fedora does > <BlueyHealer> plowsof, yeah, the thing that kinda bothers me about Flatpak is that Flathub is pretty much the only major one, and not really seen any of the projects I use host their own. Very cool to know Feather does it!@
10:03:16
321bob321:
They don't control the servers ?
10:03:24
basses:matrix.org:
which caused a lot of problems
10:03:29
BlueyHealer:
Yeah, I assumed the comment was about the update ones. But then the signatures wouldn't match.
10:03:46
BlueyHealer:
basses, didn't Fedora give up on it eventually?
10:04:11
basses:matrix.org:
@321bob321: ?
10:04:34
321bob321:
There not in Daniels bedroom
10:05:04
BlueyHealer:
Daniel isn't even a dev there anymore
10:06:17
basses:matrix.org:
BlueyHealer: No, https://discussion.fedoraproject.org/t/f44-change-proposal-filter-fedora-flatpaks-atomic-desktops-v2-selfcontained/179470
10:06:47
basses:matrix.org:
BlueyHealer: how do you know?
10:07:44
321bob321:
He's got multiple personalities
10:08:51
BlueyHealer:
basses, might've mistook Fedora news for something else. But for Daniel - I was pretty sure about him not being there anymore. He's involved in some ways but not as big.
10:09:45
basses:matrix.org:
looking at repo, tells otherwise
10:10:33
basses:matrix.org:
also it would have been sad that main dev leaves because of luois rossman whining
10:11:11
BlueyHealer:
Rossmann? What happened?
10:12:06
basses:matrix.org:
dumb drama
10:15:19
BlueyHealer:
oh indeed he does have commits
10:16:03
BlueyHealer:
nice, my bad
10:29:41
321bob321:
0 days since GOS drama
10:45:43
gan:skhron.org:
@basses:matrix.org: Frankly, this would have happened even without Rossman, judging how the dev acted publicly before, the person would've benefited by limiting the internet usage in my view as well
10:47:35
BlueyHealer:
Is there something psychologically wrong?
10:49:02
gan:skhron.org:
The dev was unable to handle their own community and was easily baited multiple times
10:49:43
gan:skhron.org:
The classical tale of being unable to ignore le trolls, and mass debating the Berlin wall
10:50:11
gan:skhron.org:
Some people are just like that sadly
10:54:33
321bob321:
Daniel is bipolar
10:55:15
BlueyHealer:
Is this literal? If then - ouch...
10:55:55
gan:skhron.org:
Which is understandable, that's probably why Daniel should limit the internet usage and find a community manager to rely the info into his ivory tower
10:56:49
gan:skhron.org:
He's clearly a capable developer, just unfortunately touched by nature
14:10:43
ofrnxmr:xmr.mx:
But ppl do swatting attacks against him
14:14:55
gan:skhron.org:
They do, some people have legitimate concerns, while some are just plainly attacking, and all of that just gets in the same pot
18:21:59
ofrnxmr:xmr.mx:
https://bitcointalk.org/?topic=3066.0
18:22:03
ofrnxmr:xmr.mx:
Amir taaki
18:32:06
plowsof:
what the heeeeeeeeeeeeell 🎵
18:32:56
ofrnxmr:xmr.mx:
He's in epstein files too
18:33:06
btcdwed:
i was happy that this is from 2011
18:33:08
btcdwed:
:D
18:33:26
btcdwed:
crazy info, thx ofrnxmr
18:34:21
ofrnxmr:xmr.mx:
https://www.youtube.com/watch?v=oueQD5UBUOQ
18:39:30
btcdwed:
i am not sure if that btctalk post is in the files
18:39:43
btcdwed:
seems like a scammer to me
18:41:56
Cindy:
"Trolling or serious? Rate seems kind of low for people living in the UK."
18:42:13
ofrnxmr:xmr.mx:
That btctalk post isnt in the files afaik
18:42:31
ofrnxmr:xmr.mx:
But his emails are
18:42:44
Cindy:
no way
18:42:49
Cindy:
this thread is super weird
18:43:23
btcdwed:
he tried to scam jeffrey maybe
18:43:24
btcdwed:
:D
18:43:38
btcdwed:
"yo i heard you like those youngsters, send 50btc asap pls"
18:43:40
plowsof:
again what the heeeellll 🎵
18:45:00
Cindy:
oh myyy god no waayayayyyyyyyy
18:45:27
plowsof:
lol
18:45:59
Cindy:
> Besides, 16 yo may be legal in the UK, but in some countries it's 21, so someone may get in trouble.
18:46:05
Cindy:
> Why cares?
18:47:20
Cindy:
this russian guy is weird
18:48:23
ofrnxmr:xmr.mx:
Arent most men who are interested in 16 year olds
18:49:43
btcdwed:
obvs yes
18:49:47
btcdwed:
shame on men
18:51:26
ofrnxmr:xmr.mx:
These files are fake anyway
18:51:34
ofrnxmr:xmr.mx:
Democrat hoax
18:55:01
Cindy:
obamna
19:03:40
nioc:
https://x.com/XMRVoid/status/2017616190386983240
19:10:46
ofrnxmr:xmr.mx:
Ive searched like 20 times got "spagni", what am i missing? I cant find him
19:10:56
ofrnxmr:xmr.mx:
Maybe i need yo try "fluffypony"
19:11:45
ofrnxmr:xmr.mx:
For* spagni
19:11:49
ofrnxmr:xmr.mx:
To* try
19:36:52
321bob321:
https://www.wiz.io/blog/exposed-moltbook-database-reveals-millions-of-api-keys
19:36:52
321bob321:
The gift that keeps on giving
21:14:20
monerobull:matrix.org:
oh no
21:14:27
monerobull:matrix.org:
not the api keys for the agent shitpost board
21:16:26
basses:matrix.org:
https://www.phoronix.com/news/RISC-V-Security-CPU-Not-So-Good
21:24:21
Cindy:
"simulator breakage"
21:24:33
Cindy:
to be honest, that's easy to do in most emulators
21:25:09
Cindy:
the emulator segfaulting shouldn't count as a security bug unless it can actually break out of it
22:20:55
DataHoarder:
> GhostWrite, a bug in T-Head's XuanTie C910 that lets unprivileged code write directly to physical memory, completely bypassing virtual memory isolation.
22:20:56
DataHoarder:
yep
22:21:13
DataHoarder:
this is what runs on the X5 from bitmain btw
22:21:44
DataHoarder:
> shipping undocumented vendor extensions like XTheadVec without proper validation
22:21:46
DataHoarder:
yep, the one in X5 and X9 :')
22:22:50
jeffro256:
Big brain move: mine on your rigs until profits drop before selling them, sell them to the public at three grand a pop, then hack them afterwards to mine to you anyways
22:24:07
321bob321:
Sub command in kernel to trigger after a period of time for xmrig
22:35:11
Cindy:
DataHoarder: really? that's like the most basic MMU vulnerability
22:35:36
Cindy:
oh well, when your CPU isn't battle-tested, of course it's gonna be a little insecure
22:39:53
DataHoarder:
Lookup ghostwriter