[QUOTE=BackSapper;52194049]Hardware acceleration has been broken forever on Chrome/Windows 10, and I absolutely hate it.[/QUOTE]
I'm talking like, 2+ seconds to render a new tab or one I haven't visited in a while
[QUOTE=Sam Za Nemesis;52194534]:wow:
[IMG]http://volvosoftware.com/heavy/OhMyFuckingGod.png[/IMG][/QUOTE]
Huh, thought that was an Apple product at first.
Then I saw the headphone jack.
[QUOTE=Lyokanthrope;52194766]Huh, thought that was an Apple product at first.
Then I saw the headphone jack.[/QUOTE]
0/10 low effort meme
[QUOTE=Sam Za Nemesis;52194534]:wow:
[img]http://volvosoftware.com/heavy/OhMyFuckingGod.png[/img][/QUOTE]
Can it use Telegram yet
Any recommendations for the smallest laptop computers possible to program on?
It needs to be able to do WebGL so it can't actually be anemic like a r. Pi
[QUOTE=01271;52195086]Any recommendations for the smallest laptop computers possible to program on?
It needs to be able to do WebGL so it can't actually be anemic like a r. Pi[/QUOTE]
What kind of size are we talking about? Do you mean genuinely the smallest useful or do you mean like, say, a small laptop capable of this?
Wish there was something between stock Facepunch font size and the grandparent sized text in the app. Stock font size is perfect apart from managing to tap the new post icon without getting the title or mark unread buttons.
Oh my gods...
So, Tenable came out and dug and discovered the actual details of the Intel AMT/etc vuln. It is far stupider than anyone could have imagined.
[url]https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability[/url]
Key part:
[quote]we tested out a case in which only a portion of the correct response hash is sent to the AMT web server. To our surprise, authentication succeeded!
Next, we reduced the response hash to one hex digit and authentication still worked. Continuing to dig, we used a NULL/empty response hash (response="" in the HTTP Authorization header).
Authentication still worked. We had discovered a complete bypass of the authentication scheme.[/quote]
You can fake authentication with [b]A NULL RESPONSE[/b] and it will let you in.
You can see at the end of the article that Intel also confirmed that this is the vulnerability.
So what does this tell me? That not once did Intel ever go to a security firm for an audit of this. Because that would have been caught instantly. Holy shit this is beyond stupid.
[QUOTE=wingless;52195243]Oh my gods...
So, Tenable came out and dug and discovered the actual details of the Intel AMT/etc vuln. It is far stupider than anyone could have imagined.
[url]https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability[/url]
Holy shit this is beyond stupid.[/QUOTE]
That's only a problem though it you are running newer hardware, isn't it?
[QUOTE=pentium;52195266]That's only a problem though it you are running newer hardware, isn't it?[/QUOTE]
Nehalem and up. Yes, your core2 stuff is safe.
New PSU came in. Fully Modular , all black sleeved cables. Also feels lighter than I imagined, but still has good build quality. EVGA's speckled powder coating looks nice.
But need to eat dinner before I bothering installing it. Like I mentioned months ago though, even my old one isn't the issue I still wanted to get a new one to have one for a spare machine. But the evga will stil go in this machine. It's quieter, more efficient, better fan, also has much better cables for my purposes.
[QUOTE=wingless;52195271]Nehalem and up. Yes, your core2 stuff is safe.[/QUOTE]
[img]http://i.imgur.com/ks6uQsX.png[/img]
[img]http://i.imgur.com/UhTVRFi.png[/img]
Hello darkness, my old friend
[QUOTE=nikomo;52195361][img]http://i.imgur.com/ks6uQsX.png[/img]
[img]http://i.imgur.com/UhTVRFi.png[/img]
Hello darkness, my old friend[/QUOTE]
Way ahead of you. Have a Beaglebone black sitting right next to me too.
[img]http://i.imgur.com/u2iPZLn.png[/img]
My desktop was already nuked months ago since I could thankfully use internal SPI on that.
[editline]7th May 2017[/editline]
Here's a fun experiment. If you have a Shodan.io account, do a search for "port:"16992" Intel"
You will see just how severe this is. This is enormous. This is quite possibly the most wide reaching, easily-to-use exploit we have ever seen.
Man that's some fast shipping.
Maybe I should have shopped around for a faster one too. Mind you, back when I ordered it, none of this stuff had gone public yet, I just ordered one because I figured I might need one later at some point anyways.
[QUOTE=nikomo;52195395]Man that's some fast shipping.
Maybe I should have shopped around for a faster one too. Mind you, back when I ordered it, none of this stuff had gone public yet, I just ordered one because I figured I might need one later at some point anyways.[/QUOTE]
Made sure to go for one in the same country as me, so that helps enormously. And good instincts with that one.
[QUOTE=wingless;52195271]Nehalem and up. Yes, your core2 stuff is safe.[/QUOTE]
[b]All Hail the Almighty Pentium Pro and its P6 sexiness![/b]
[highlight]>>>>>>>>>>CISC MASTER RACE<<<<<<<<<<[/highlight]
[QUOTE=pentium;52195408][img]http://forum.skyscraperpage.com/images/smilies/worship.gif[/img][/QUOTE]
Hotlinking from a domain that has hotlink protection, it really is like the late 90s or the early 00s with you ain't it.
I'm too lazy to use the smilies form SA.
Okay so I just got back from college and I'm ready to use my desktop again.
For some reason, when plugging into my mother HDMI, the monitor displays "No Signal"
But, when plugging the HDMI directly into either of the HDMI ports on my Crossfire GPU's, it displays correctly.
Now it's been a super long time since I used this computer, is this how Crossfiring works? That I have to plug the HDMI into one of the GPU's directly instead of the HDMI on the motherboard?
[QUOTE=wingless;52195401]Made sure to go for one in the same country as me, so that helps enormously. And good instincts with that one.[/QUOTE]
I just bought another one from a Finnish seller, with Economy-shipping, guaranteed to arrive like Tuesday-Friday next week.
Fuck it yolo.
[QUOTE=wingless;52195243]Oh my gods...
So, Tenable came out and dug and discovered the actual details of the Intel AMT/etc vuln. It is far stupider than anyone could have imagined.
[url]https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability[/url]
Key part:
You can fake authentication with [b]A NULL RESPONSE[/b] and it will let you in.
You can see at the end of the article that Intel also confirmed that this is the vulnerability.
So what does this tell me? That not once did Intel ever go to a security firm for an audit of this. Because that would have been caught instantly. Holy shit this is beyond stupid.[/QUOTE]
So basically if you have unpatched AMT set up and publicly facing, anyone can log in and pretty much have complete control over the server/computer (full remote KVM over IP is a feature of AMT, no idea if it's on by default though)?
[QUOTE=TrafficMan;52195494]So basically if you have unpatched AMT set up an public facing, anyone can log in and pretty much have complete control over the server/computer (full remote KVM over IP is a feature of AMT, no idea if it's on by default though)?[/QUOTE]
Yep. And the beautiful thing is you're likely not going to get patched unless you're either A) running fairly new machines still in support lifecycle b) A large customer c) Lucky and your vendor loves you.
This is a huge attack vector. This is the kind of thing where ISPs should start blocking port 16992 network wide. How long until this gets paired with attacks like RCEs and arbitrary memory dumps? Then we'll be seeing some real fun.
[QUOTE=thefreemann;52195476]Okay so I just got back from college and I'm ready to use my desktop again.
For some reason, when plugging into my mother HDMI, the monitor displays "No Signal"
But, when plugging the HDMI directly into either of the HDMI ports on my Crossfire GPU's, it displays correctly.
Now it's been a super long time since I used this computer, is this how Crossfiring works? That I have to plug the HDMI into one of the GPU's directly instead of the HDMI on the motherboard?[/QUOTE]
Yes. You use the motherboard port only if you want to use on board. Likely your BIOS is configured to disable onboard with a discrete card detected as that's usually the default. Works the same regardless of whether you're single card / crossfire / sli.
[QUOTE=wingless;52195500]Yep. And the beautiful thing is you're likely not going to get patched unless you're either A) running fairly new machines still in support lifecycle b) A large customer c) Lucky and your vendor loves you.
This is a huge attack vector. This is the kind of thing where ISPs should start blocking port 16992 network wide. How long until this gets paired with attacks like RCEs and arbitrary memory dumps? Then we'll be seeing some real fun.[/QUOTE]
For anyone wondering, I wasn't specific enough
The computer has to be plugged in and have a wired network connection + unpatched AMT. That's it. It doesn't even need to be [i]on[/i] for an attacker to have full access
Every Intel server and workstation PC (Thinkpads, etc) since 2008 either can't use AMT (and I'm sure plenty of very smart people are trying to figure out how to enable it remotely now, who wouldn't want a golden key to millions of systems) or needs a BIOS patch from the motherboard manufacturer (as wingless said, good luck with that)
Also if you have a consumer Intel CPU, all of these "features" and code are still there just (currently) inaccessible
[editline]6th May 2017[/editline]
~Security through obscurity~
[QUOTE=helifreak;52195511]Yes. You use the motherboard port only if you want to use on board. Likely your BIOS is configured to disable onboard with a discrete card detected as that's usually the default. Works the same regardless of whether you're single card / crossfire / sli.[/QUOTE]
Ah okay, does it matter which card I plug it into?
[url=http://www.ebay.com/itm/122472254763?]Here is some fun for the whole family. :v:[/url]
[QUOTE=pentium;52195473]I'm too lazy to use the smilies form SA.[/QUOTE]
Do you post there by any chance?
[QUOTE=Xanadu;52195546]Do you post there by any chance?[/QUOTE]
Doesn't it require a subscription?
[QUOTE=pentium;52195551]Doesn't it require a subscription?[/QUOTE]
Yes. YOSPOS can be fun to browse if you plan to. I'm not as active there as I used to be five years ago.
I had an SA account for like, 3 posts maybe, years and years ago.
Got the account, stopped giving a shit all of a sudden, remembered it some time later, abused IMG-tags to cheat on a Razer competition.
Sorry, you need to Log In to post a reply to this thread.