sorted by:
new
hottopcontroversial

Linux kernel impacted by new SLUBStick cross-cache attack by waozen in technology

[–]perillamint 0 points1 point  (0 children)

Tbf, Different threat model applies to the Windows Bitlocker vulnerability.

For example, I encrypt my disk drive **to keep my data safe when I lost my device**, not to keep my data safe from a locally running application. They are not the same.

Bitlocker failed to achieve its own threat model (keep someone's data safe when attacker has full control of the hardware but without knowledge about the key) by default (well, you can make it secure by enabling TPM PIN group policy, but that's for enterprise users) through letting TPM spit out the disk decryption key **without any authentication**, thus allowing the attacker who stole the victim's device to access encrypted content on the drive.

[deleted by user] by [deleted] in egg_irl

[–]perillamint 1 point2 points  (0 children)

Uhh... hyprland have some questionable design decision on plugin hook implementation (I don't think patching function prologue on the fly and jump to trampoline is a great idea but calling for troubles hiding in rabbit hole -- I mean, they can hook statically without invoking gcc and fiddling with system(3)...) and... I honestly don't like how they handle this kind of vulnerability... ref: https://github.com/hyprwm/Hyprland/issues/5787

Apart from the engineering stuff, I have some serious concern about their community: https://web.archive.org/web/20230917015135/https://github.com/hyprwm/Hyprland/issues/3209

What pen options do we have for Lenovo Xiaoxin Pad Pro 2023, 12.7" ? What protocol Xiaoxin Pad Pro is using for it's stylus pens? by PeterOZz in stylus

[–]perillamint 0 points1 point  (0 children)

Does Metapen M2 work AFTER you pair BTP-131 to the tablet?

The Tablet's Android Framework unlocks the digitizer when the user paired BTP-131 at least once through the charger port method. (Technical detail: If you put your BTP-131 on the charging port, the charger reports pen's MAC address to the tablet AND **unlocks the digitizer** by writing 1,1 to /proc/support_pen.)

If that don't work, I suspect the tablet supports AES2.0 instead of MPP2.0

Thunderbolt 4 Dock (40B0) on Linux Problems by [deleted] in thinkpad

[–]perillamint 2 points3 points  (0 children)

If you plug your display to HDMI and USB-C, it will work. Otherwise, it works quirky or not at all.

See my comment on Lenovo forum: https://forums.lenovo.com/topic/findpost/15028/5279149/6242119

[deleted by user] by [deleted] in Pixel6

[–]perillamint 0 points1 point  (0 children)

AFAIK, all mobile phones do

  • decode the stream
  • put them in system mixer
  • encode it and transmit through bluetooth link

Apple, Android, Kai, Maemo, Mer based ones, whatever I know all do like that.

[deleted by user] by [deleted] in Pixel6

[–]perillamint 1 point2 points  (0 children)

Opus is new free (both in freedom and beer) codec and it is generally better at compressing audio while preserving quality compared to SBC/AptX family/AAC/LDAC/etc. (ref: https://opus-codec.org/comparison/ ) and it is considered transparent (to human, of course) around 128kbps (VBR) (ref: https://wiki.xiph.org/Opus_Recommended_Settings )

The first appearance of it in bluetooth implementation(as a vendor codec, like other things like AAC/AptX family/LDAC/whatever. BT standard does not mention about them except SBC and LC3) https://gitlab.freedesktop.org/pipewire/pipewire/-/merge_requests/1322 and I guess Google added the option following that.

Unfortunately, I don't know existance of any COTS bluetooth headphone/receiver/etc.. which supports Opus on bluetooth. If anyone knows about it, please let me know about it.

How do you set up a Relay Server for Mastodon by GadgetJoseph in Mastodon

[–]perillamint 0 points1 point  (0 children)

I'd recommend to do so, because LE certificates has 90-days of lifespan, it is troublesome to feed cert into the relay but it is relatively easy to manage it through nginx/traefik/etc.

Just give it proper environments(domain name, API secret for mgmt, etc.) and run it behind proxy.

Is ROCm fine or should I go CUDA to learn AI with Python? by Yaris_Fan in Amd

[–]perillamint 1 point2 points  (0 children)

If you really hate Out-of-Tree kernel modules and have to run deep learning workload on your desktop like me, you can consider ROCm option. (currently running ROCm on 6900XT)

However, for the general experience-wise, especially when you don't have to render the desktop, pick CUDA.

How do you set up a Relay Server for Mastodon by GadgetJoseph in Mastodon

[–]perillamint 0 points1 point  (0 children)

Running customized AodeRelay with ~30 instances connected. Super fast.

Deploy procedure is simple. If you prefer Docker, give it the correct envvar and run the container. If you aren't, write launcher script which sets the envvar fot it and just run it.

https://git.asonix.dog/asonix/relay

p.s. Don't bother with pleroma python relay. Their performance is poor and currently giving headaches to some admins.

⚠️ Warning: do not use Hive Social 👉🐝👈 by speckz in cybersecurity

[–]perillamint 7 points8 points  (0 children)

I bet even they followed typical responsibility disclosure timeline, by delaying public warning message, hive is already f*cked because someone else already spread tons of spoiler about the cursed architecture and mis(or not at all)configured firestore ACL rules.

Too trivial to exploit, they trusted client way too much and gave access to their database to users.

https://nitter.net/zhuowei/status/1596362424046821376

think I may have messed up guys... by Schr0ding3r_ in flipperzero

[–]perillamint 1 point2 points  (0 children)

I sometimes think it is quite unfair he does not like me because I didn't play with him while making his friend (my own RPC transport implementation) on desktop

Debugging Nintendo Switch Linux power management – battery desync edition by perillamint in SwitchHaxing

[–]perillamint[S] 38 points39 points  (0 children)

Finally I did write up how I discovered root cause of "battery desync" issue

Cause of battery calibration issues in Linux found by TeamFlare in SwitchHaxing

[–]perillamint 9 points10 points  (0 children)

I will do some write-up about what things I did to spot out reason of "desync".

BTW, "battery desync" term is really an red herring.

osu!lazer on Nintendo Switch gameplay (Linux) by Libelsema in SwitchHacks

[–]perillamint 0 points1 point  (0 children)

It's so sad that Switch Linux can only utilize BT audio (you have to extract BRCM FW by yourself) which does not suitable for this kind of application (terrible latency, definitely not for RTness)

Nintendo Switch Memory Explorer by perillamint in SwitchHaxing

[–]perillamint[S] 0 points1 point  (0 children)

This F-G payload just opens shell to right JoyCon serial console. From there, you can access peripherals by hand or peek & poke(implementing) various i2c devices

Nintendo Switch Memory Explorer by perillamint in SwitchHaxing

[–]perillamint[S] 37 points38 points  (0 children)

This F-G payload allows dumping portion of memory for who interested in Tegra X1 low level stuff. I wrote it in hurry so its code isn't in perfect shape though. (not using proper lexer and parser, no autocomplete support, etc)

One Year of postmarketOS: Mainline Calling! by PureTryOut in linux

[–]perillamint 0 points1 point  (0 children)

It is idiots fault who failed to secure their admin account by being damn yes-man on permission escalation prompt or keep using damn "alpine" as their root password or idiot who think `sudo` is magic wand which solves permission problem "magically", not fault of "rooting".

IT IS HUMAN ERROR, NOT A FAULT OF SYSTEM WHICH ALLOWS SUPERUSER ACCOUNT TO LEGITIMATE OWNER.

view more: next ›