Feeds

* Posts by Destroy All Monsters

9407 posts • joined 3 Jun 2008

MtGox remedy worse than the disease says Kaspersky researcher

Destroy All Monsters
Silver badge
Holmes

Le résumé de la situation

Mt. Gox Problems Mount

On its current balance sheet the company lists its assets as consisting of 2,000 bitcoins (plus $32 mn. in fiat), and offsetting liabilities of 750,000 bitcoins (and another $55 mn of fiat claims against it). There is a clearly a big hole to fill. More troubling is that Mt. Gox notes that this theft of its bitcoins took place over a five-year period. Furthermore the company now confirms that the loss is due to the “transaction malleability” issue with the bitcoin protocol (which I discussed here as a reason Mt. Gox held only fractional reserves).

In other words, over a five-year period the bitcoin bank went from a (presumably) 100% reserve ratio to holding less than 3% reserves… and no one noticed!

Here is the critical fault with fractional-reserve banking that rarely gets discussed. When someone deposits a good it is not because he does not want to use it. Nor does that good represent some idle resource until it is asked for. People who support fractional-reserve banking of both the centralized and “free” varieties are both of the opinion that deposits are idle cash and no one is harmed when a bank puts them to good use.....

1
2

Is no browser safe? Security bods poke holes in Chrome, Safari, IE, Firefox and earn $1m

Destroy All Monsters
Silver badge

Re: Run them in a chroot jail

I think last time I checked, you could simply chroot out of a chroot "jail". I don't think it ever was designed to be a security feature.

So what do you think it was designed to be for?

To "break out", you need to be root. This is already a little bit of an impediment:

Breaking chroot()

It should be noted that this document was written with protecting web servers from rogue CGI scripts in mind. Therefore it is not unreasonable to assume that a user has access to a Perl interpreter. It is then a matter for the user to gain root access via security holes on the box running the web server. Whilst this is outside the topic of the document, an attacker could make use of application programs which are setuid-root and have security holes within them. In a well maintained chroot() area such programs should not exist. However, it should be noted that maintaining a chroot()ed environment is a non-trival task, for example system patches which fix such security holes will not know about the copies of the programs within the chroot()ed area. Ensuring that there are no setuid-root executables within the padded cell is going to be a must.

Well, today we have Virtual Machines.

1
0
Destroy All Monsters
Silver badge
Trollface

Re: Why

There is no fun in watching cats falling down stairs on secure software!

0
0

This city's smog is so TERRIBLE, people are told to stay indoors. Beijing? No – PARIS

Destroy All Monsters
Silver badge

It could also be because you are nearer the ocean,

0
1
Destroy All Monsters
Silver badge
Trollface

Re: Proof

TIme to move to Hollande.

0
0
Destroy All Monsters
Silver badge
Trollface

Free public transit in Paris?

You don't get a place even if you PAY!

1
4

Target IGNORED hacker alarms as crooks took 40m credit cards – claim

Destroy All Monsters
Silver badge

Re: Statement of the week

Welcome to Korea Vietnam Afghanistan Iraq....

0
0

Windows hits the skids, Mac OS X on the rise

Destroy All Monsters
Silver badge
Holmes

Re: Windows mention share ..

It's straightforward Ballmerization, I say!

4
1

'Catastrophic' server disk-destroying glitch menaced Google cloud

Destroy All Monsters
Silver badge

Re: Overreacting users?

Hillary, please leave.

1
3
Destroy All Monsters
Silver badge

Re: Overreacting users?

You got a downvote.

This, I think, means that no-one knows, but some people get unreasonably excited whenever the Cloud is mentioned .... because ....

THOSE WHO MOVE THEIR STUFF INTO THE CLOUD APPEASE HITLER IN MUNICH!

1
4
Destroy All Monsters
Silver badge
Trollface

For the LULZ!

"So I make an API call to move VMs w/ 'persistent' volumes and — depending on my command line client version — my VM is accidentally nuked?"

Deal with it!

2
1

'Amazon has destroyed the unicorn factory' ... How clouds are making sysadmins extinct

Destroy All Monsters
Silver badge

Re: Clouds and Unicorns, parallels in recent history

> At 28 my cynicism doesn't kick in as soon as it should.

Kids these days.

1
0

Morrisons supermarket hit by MASSIVE staff payroll data robbery

Destroy All Monsters
Silver badge

Re: Interesting coincidence?

Monsieur Besancenot, please go!

0
0
Destroy All Monsters
Silver badge

Re: A little thing that bugs me...

I always thought "operatives" are the guys that know about trigger discipline when handling silenced M4s?

1
0
Destroy All Monsters
Silver badge
Headmaster

Re: Data Security??

Anyone have any idea if the employee information was obfuscated in any way or if the hackers found it available in plain text?

Well, Alexandra from HR will be royally pissed if she's unable to handle employee data because they were "obfuscated in any way".

Most data stores are not improved by hashing or obfuscating them.

4
0
Destroy All Monsters
Silver badge

Rather, an illegal copying of data.

4
1

SATANIC 'HELL DIAMOND' tells of sunless subterranean sea

Destroy All Monsters
Silver badge
Holmes

Re: "This new mineral cockrinite can withstand high pressure..."

No, it wasn't some guy digging a well in the desert. Deserts have never been referred to as "the deep."

Well, come back if you find the original sumerian text and can do an appropriate translation. Otherwise we will never get to the matter of the semantics of the above phrase.

1
1
Destroy All Monsters
Silver badge
Thumb Up

Re: Verne?

Next stop: graveyard of the mastodonts!

0
0
Destroy All Monsters
Silver badge

Re: Huh...

The solar system was full of major hunks of rock previously; indeed the Earth-Moon system comes out of collision of a pair of those. So finding stuff like this in the heaven sure is possible.

However, the "planet between Mars and Jupiter" is unworkable as the whole asteroid belt only has a few percent of the mass needed for a honest-to-god planet.

0
0
Destroy All Monsters
Silver badge
Facepalm

"This new mineral cockrinite can withstand high pressure..."

Except now it looks likely that it does make sense

Yah, ok, how does it make sense?

Some guy writes about digging wells in his desert patch which will help him irrigate the stones, and this is somehow relevant to H20 mixed in siilica, carbon and iron masses a few thousand km below your feet?

A likely story!

3
2

Microsoft closing in on Apache's web server crown

Destroy All Monsters
Silver badge
Windows

But at least you always get that image of the pretty girl with a rucksack throwing you a glowing smile.

2
1

UK.gov to train up 11-year-old cyberwarriors

Destroy All Monsters
Silver badge

Finding out is the first exercise.

2
0
Destroy All Monsters
Silver badge
Boffin

Neon Genesis UKGuvnmtelion!

"Get into this cyberseat, Sheila!"

What can go wrong?

Boffin Icon, because Scary Shiny Glasses

1
0

Forget superstars, this HYPERGIANT star is 1,300 times the size of OUR SUN

Destroy All Monsters
Silver badge
Paris Hilton

"Disaster Area, a plutonium rock band from the Gagrakacka Mind Zones"

AFAIK that might depend on whether there is a lack of "metal" in the star. You also need to be in a cone centered on the axis of rotation to get, and whether you are within a cone centered on the axis of rotation to get a good atmosphere-reforming blast.

0
0
Destroy All Monsters
Silver badge
Trollface

Re: That is tremendous

Better than a star that is yellow inside.

0
0
Destroy All Monsters
Silver badge
Trollface

Re: WOW

This must be the Doge Star.

1
1

Ethical hacker backer hacked, warns of email ransack

Destroy All Monsters
Silver badge
Windows

"EC-Council strives to set a very high bar"

FUCK! Can't reach the drinks from down here.

It's hard being a midget.

Could someone please ... give me a little push?

1
0

Tiny heat-sucker helps keep Moore's Law going

This post has been deleted by a moderator

NSA's TURBINE robot can pump 'malware into MILLIONS of PCs'

Destroy All Monsters
Silver badge
Big Brother

Do YOU have UNITEDRAKE FOGGYBOTTOM SALVAGERABBIT clearance?

"The madness is spreading"

Clearly, Chtulhu is up and about and looking people in the eye. I think this ain't gonna end well.

8
0

Seven Great Moments in World Wide Web History

Destroy All Monsters
Silver badge
Childcatcher

Re: Poe's law

I think the leftist slant has been markedly increased though!

0
1

Candy Crush King plans IPO valuing it at $7.6 BEEELLION

Destroy All Monsters
Silver badge

Re: Its possible

And tomorrow, there will be another overvalued kid on the block..

4
0
Destroy All Monsters
Silver badge
Trollface

Re: Wow

I think a new dot-com crash is coming...

Ohh! And here I was thinking "THE FUNDAMENTALS ARE STRONK!"

No, wait...

Addicted to Asset Bubbles: Helicopter Ben Runs Out of Ideas for Creating Money -- January 15, 2013

Ben Bernanke confided on January 14 that he is unaware of any new method of stimulating economic growth. Bernanke said: “As far as I’m aware, there’s no completely new method that we haven’t [already tapped].” So Helicopter Ben has run out of innovative and unconventional ways to create new money. Lest you be tempted to breathe a bit easier, however, rest assured that the now conventional method of quantitative easing, involving the Fed’s monthly purchase of $85 billion worth of mortgage-backed and U.S. government securities, seems to be working just fine according to Bernanke and he foresees its continuation. Noting the stubbornly high unemployment rate combined with the low inflation rate in the U.S. economy, Bernanke stated, “That is the case for being aggressive, which we are trying to do.” Although he is “cautiously optimistic,” he does promise to closely monitor the risks, efficacy, costs, and benefits of this inflationary policy.

I guess the rapid asset price run-up in stock and commodities markets, which are nearly back to financial bubble levels, and booming farmland prices do not count in Bernanke’s benefit-cost calculus. More likely, Bernanke accounts them as a benefit, which, via the “wealth effect,” will induce another debt-driven consumption spree on the part of the American public that will stimulate economic growth, i.e., create another bubble economy.

3
0

Snowden: You can't trust SPOOKS with your DATA

This post has been deleted by a moderator

Destroy All Monsters
Silver badge
Trollface

Re: Surveilance is not my primary concern

What? It's not too late?

Tell you what:

1) Go into a company

2) "IMMA HUV PROBLEMS WITH MUH MAIL"

3) "Ok, why not move everything to the Microsoft cloud...."?

4) "But what about the NSA?"

5) "Yeah, but think of the CONVENIENCE, man!"

6) ....

7) SOLD!

8) Your face when.

1
1
Destroy All Monsters
Silver badge
Trollface

Re: Surveilance is not my primary concern

Newsflash: Too late.

You can relax now.

1
2
Destroy All Monsters
Silver badge
Thumb Down

They've only done their job as mandated by US politicians, and done it well.

Even in a purely US-centric view, compiling dossiers like Hacker Heydrich on US people in full violation of anything their mandate and the constitution says about these kind of activities as well as alienating "overseas friends" (more like useful idiots kept in line by greenback splurges, amirite) by basically behaving like Greys coming back night after night for a good probing is NOT "doing your job well", except in Restaurant-Serving-Stray-Cats-For-Expediency kind of way.

11
1

Bletchley Park board member quits amid TNMOC split-off spat

Destroy All Monsters
Silver badge
Trollface

Re: Smoke?

The Concrete Jungle

Clack. Clack. Clack. Clack. Finally I can't stand it anymore. "Well?" I demand.

"A fellow I used to know, his name was Ulyanov, once said something rather profound" Angleton looks like the cat that's swallowed the canary — and the feet are sticking out of the side of his mouth; he wants me to know this, whatever it is. "Let your enemies sell you enough rope to hang them with."

"Uh, wasn't that Lenin?" I ask.

A flicker of mild irritation crosses his face. "This was before he took that name," he says quietly. Clack. Clack. Clack. He flicks the balls to set them banging again and I suddenly realise what they are and feel quite sick. No indeed, Bridget and Harriet — and Bridget's predecessor, and the mysterious Mr McLuhan — won't be troubling me again. (Except in my nightmares about this office, visions of my own shrunken head winding up in one of the director's executive toys, skull clattering away eternally in a scream that nobody can hear anymore . . . ) "Bridget's been plotting a boardroom coup for a long time, Robert. Probably since before you joined the Laundry — or were conscripted." He spares Josephine a long, appraising look. "She suborned Harriet, bribed McLuhan, installed her own corrupt geas on Voss. Partners in crime, intending to expose me as an incompetent and a possible security leak before the Board of Auditors, I suppose — that's usually how they plan it. I guessed this was going on, but I needed firm evidence. You supplied it. Unfortunately, Bridget was none too stable; when she realised that I knew, she ordered Voss to remove the witnesses then summoned McLuhan and proceeded with her palace coup d'état. Equally unfortunately for her, she failed to correctly establish who my line manager was before she attempted to go over my head to have me removed." He taps the sign on the front of the desk: PRIVATE SECRETARY. Keeper of the secrets. Whose secrets?

0
0
Destroy All Monsters
Silver badge
Alert

Oc ourse not. What is being said is that females may smoothen the talk a bit, allowing a consensus to be reached.

Of course, if the female is a true-blooded Honored Matre, this may backfire.

10
1

X marks the... They SAID there was a mystery planet there – NASA

Destroy All Monsters
Silver badge
Headmaster

Re: A-Ha!

Don't name drop and don't be boring!

0
0
Destroy All Monsters
Silver badge
Trollface

Orbiting trollface

You do need to start looking closer to home, dear!

1
0
Destroy All Monsters
Silver badge

A-Ha!

A medium-mass black hole!

Very convenient for sucking hyperdrives out of passing spaceships.

1
0

Euro cops on free Wi-Fi not-so-hotspots: For pity's sake, don't use them for email

Destroy All Monsters
Silver badge

Re: SSL?

It should be secure enough.

0
0

'Hacked docs' prove MtGox has 1 MILLION Bitcoins, claim blog-snatchers

Destroy All Monsters
Silver badge

Re: The Bankers 1 BitCoin 0

The horrible truth is: THERE WAS NO PLAN

7
0
Destroy All Monsters
Silver badge

Re: In the meantime - back on the farm

Do I sound like a Guardian journalist yet?

Very shitty. Try again. Work on reconciling the "freetard" concept with the creation of a payment system.

3
3
Destroy All Monsters
Silver badge
Holmes

This is the biggest load of obvious bollocks I've seen since The Times' "Qatar Dream League"

Did you read the fine uh... work ... about Kevin Mitnick, called "Takedown?". Written by NYT's John Markoff and someone called Tsutomu Shimomura? You must!

0
0
Destroy All Monsters
Silver badge
Holmes

"how a female asshole can become transferred onto my brother's rear end"

Clearly, we need to know more. Can anyone look into this?

1
0

Mt Gox fielded MASSIVE DDOS attack before collapse

Destroy All Monsters
Silver badge

It's all Obama's fault!

0
0

Tim Cook and Israeli PM commune with the GHOST of Steve Jobs

Destroy All Monsters
Silver badge

Re: Hmm, bit of a translation error there

Maybe something like this?

0
0
Destroy All Monsters
Silver badge
WTF?

WHAT CAN IT MEAN?

Netanyahu then quipped: "You can't ask that of government."

Is this a "you can but nothing will happen" or a "you better not ask that, buddy, or else... ".

1
0

Plod foils drone drug drop down under

Destroy All Monsters
Silver badge
Thumb Up

"A man, a woman, a quadracopter and a bag of illicit drugs"

"A movie with Samuel Jackson"

7
0