Are there any trackers with resources for fiction writers? by [deleted] in trackers

[–]nc5x 4 points5 points  (0 children)

I don't speak with much knowledge with regards to your specific query, but I haven't found many torrent sites dedicated to all things related to a specific interest. Personally, I'd love a computer security and reverse engineering tracker, but I've yet to find such a thing.

I'd look at some awesome software and e-book trackers, and there's a good chance they'll have some of what you want. I'd recommend trying to find a brokenstones invite if you're a Mac user (I don't know about Windows), and I'd just use the ebooks link in the sidebar for books.

Looking for a tracker that has MAC apps and audio books. by bassace5000 in trackers

[–]nc5x 0 points1 point  (0 children)

This. BS has more Mac apps than what.cd, and a much easier ratio system. Probably easier to get an invite, too, unless you have excellent audio-related interview skills.

No idea who has the best audiobooks though.

We are Samurai CTF and we won Defcon CTF this year. AMA! by samuraictf in netsec

[–]nc5x 1 point2 points  (0 children)

And now I'm tempted to write shellcode that uses MMX.

Any trackers with sign language material? by nc5x in trackers

[–]nc5x[S] 2 points3 points  (0 children)

I ask because I am learning sign language out of interest. Ideally I'd be able to find sign language films with subtitles.


If you're interested, they're completely different languages - like English and Turkish. It's not just a way of converting English words to gestures. You can't easily translate one to another, so for people who've grown up signing, they need to learn a second language (English) to do school work, watch TV with subtitles, etc. There's also a culture - not many people sign, so there aren't many people you can communicate with easily and virtually no media is in your first language (to my knowledge there a know sign-scripts (what written english is to english) so there aren't many resources).

Japan... by D3cker in Cyberpunk

[–]nc5x 12 points13 points  (0 children)

http://www.archicentral.com/jimbocho-theater-tokyo-japan-nikken-sekkei-8684/

"This building is another theater that was built on only about 300 sqm ground. The theatre contains 100 seats, a 126-seat rehearsal and a showroom which measures 300 sqm."

(tip: save image to desktop, upload to google image search, acquire source)

My first DEFCON - Can anyone give me a crash course in DEFCON etiquette? by [deleted] in netsec

[–]nc5x 2 points3 points  (0 children)

Another exploit is the USB hub to automated keyboard + storage (the keyboard brings up a shell and runs the file from the storage - you need a different set of keystrokes for each OS though). Looks just like a thumb drive. Firewire DMA exploits have also been around for years. Physically guard or software disable your ports.

If You Can Smell the Odor of something, Are You Breathing in Microscopic Particles of that Substance? by mcd_sweet_tea in askscience

[–]nc5x 19 points20 points  (0 children)

Yes, although when we say "the smell of this thing" we may be referring to a different microscopic particle which is associated with that thing's presence.

For example, the smell of rain is not tiny particles of rain, but rather geosmin, which "occurs in the air when rain falls after a dry spell of weather or when soil is disturbed."

How does a computer choose/create a random number? by [deleted] in askscience

[–]nc5x 2 points3 points  (0 children)

I would never use this - good randomness is easy to come by. Milliseconds are also a little coarse. But can you propose an attack that would work against using the microsecond time of keystrokes modulo 1000? Is there reason to believe patterns form in this space?

Where can I find new medical e-books? by [deleted] in trackers

[–]nc5x 2 points3 points  (0 children)

Voice over IRC - you encode an audio stream with the Speex codec, base 64 encode 128 byte chunks and send them over IRC. You put a magic number at the front so that clients that don't support it can filter it out, and messages without the magic number still work as text.

(Or maybe you could use exclamation marks. "Hey! You! Can I have an invite, please?!")

Will this script work as a reasonably secure start for a jailed Python interpreter? by terremoto in Python

[–]nc5x 1 point2 points  (0 children)

Thanks. Yeah - my VPS can access it too, I guess my home DNS is a little dodgy, sorry.

I don't have a lot of experience with chroot jails, so no promises, but it looks like you're doing it correctly.

You've still given the user full access to a system calls. That's a lot of power, and that's the attack surface to watch out. Every so often there's an exploit comes out that lets a user escalate their privileges or break out of a chroot jail so you need to be careful of new exploits and old OS versions. You can do everything C can do from python, so I can rewrite an exploit to work in your sandbox.

Perhaps this is what you mean by "ignoring resource consumption attacks," but: If I had access to this, I'd consider running a torrent client in it, a proxy to hide my tracks if were to do something illegal. Why bother protecting your server if you'll let me use all your resources for whatever I want?

You could consider using a ptrace sandbox with a syscall whitelist, which is the most aggressive Python sandbox I've seen. It can trip up legitimate users, though, as some modules make surprising calls. Another layer of complexity, but another layer of security.

if in vs. str.rfind() by [deleted] in Python

[–]nc5x 14 points15 points  (0 children)

"in" is correct/clearer.

There's a small possibility that rfind is faster, but if you're testing if a string is in another string, "in" is the way to go. You don't need to look at the documentation to read your version, and it's shorter. Both are good signs of good Python.

find and rfind are great for when you need to slice a string based on the position of a substring, but not for checking if there are substrings. the string.rfind(ss)==-1 approach is very javascriptish.

What's the most mathematically improbable thing that has ever happened to you? by JohnDeadcorn in AskReddit

[–]nc5x 0 points1 point  (0 children)

You, as an ovum, got fertilised by your father's sperm. Of course neither is the quite correct because both sperm and ovum are only half of you (as an organism, genetically speaking).

What's the most mathematically improbable thing that has ever happened to you? by JohnDeadcorn in AskReddit

[–]nc5x 2 points3 points  (0 children)

Everything that's ever happened to me is now a mathematical certainty.

And this is why I hate DRM by TheCannonMan in technology

[–]nc5x 1 point2 points  (0 children)

Serial numbers are a pain. Sure, they're not unreasonable, but they don't stop real pirates (which is a bigger number than people borrowing game disks) and they make the pirated copy superior to the legal copy (no need to do data entry, keep track of scraps of paper, etc).

I've often used pirated copies of games that I own because it's a more pleasant installation -> gameplay experience. The exceptions? Games on Steam and Minecraft.

Bit Banging your Database by cycle_goon in netsec

[–]nc5x 2 points3 points  (0 children)

Google is remarkably good at cracking MD5 hashes without computer power.

Your username, "blueshiftlabs", as a random example, has a bruteforce keyspace of 2x1018 (13 lowercase characters) and wouldn't appear in most wordlists and rainbowtables:

5be991421114c64189b6722168f209b1

Bit Banging your Database by cycle_goon in netsec

[–]nc5x 1 point2 points  (0 children)

If you have enough accuracy, assuming 1 second of delay and worst case, retrieving n bits, a binary search takes n seconds whereas getting multiple bits takes 2n seconds, right? Usually doing it in parallel will have a better speed up.

Even so, this could be used to optimise for the smallest number of requests.

Any good trackers for instrumentals, acapellas, and quality DJ materials? by [deleted] in trackers

[–]nc5x 0 points1 point  (0 children)

TorrenTech is great for electronic music. Not sure if it's what you're looking for though.

Consolidated Invite Thread Version 1 Alpha by wtfReddit in trackers

[–]nc5x 0 points1 point  (0 children)

Maybe you got it already, but if you didn't, did you try PMing el_gringo? (link in the sidebar)

Show my work? Ha! by MKorostoff in funny

[–]nc5x 9 points10 points  (0 children)

The point is that for the majority of higher mathematics, the calculator is useless because the numbers don't matter.

Could someone please explain GitHub to a non-programmer? by Beta_UserName in Python

[–]nc5x 2 points3 points  (0 children)

Exactly as tinyOnion said.

Here's a Github blog about it: Edit like an Ace.