@benmmurphy's banner p

benmmurphy


				

				

				
0 followers   follows 0 users  
joined 2022 September 06 20:04:30 UTC

				

User ID: 881

benmmurphy


				
				
				

				
0 followers   follows 0 users   joined 2022 September 06 20:04:30 UTC

					

No bio...


					

User ID: 881

i think the problem would be the kernel would need to support the memory sanitizer. as long as your kernel module only touched memory allocated from its own functions then i guess in theory you could run a memory sanitizer without kernel support but your kernel module would be pretty useless. the problem is if the kernel gives you a buffer then how does the memory sanitizer that has no knowledge of the kernel know that the buffer is safe to read or write from. apparently windows does have support for kasan so vendor support should make it workable (https://www.microsoft.com/en-us/security/blog/2023/01/26/introducing-kernel-sanitizers-on-microsoft-platforms/). though, i don't use windows so i don't know how well it works. also, i guess you could just have a userspace test harness but for something like this you probably need some kind of final test with the module running in the kernel.

having the out of bound entry as zeroes in testing and garbage in real life is also a way it can pass in the test but fail when deployed. imagine it is a struct and the function accessing it checks if one value is true and then just stops processing if the value is false. it wouldn't crash in testing but once deployed depending on the check it could have a very high probability of crashing. usually boolean check would decay into some kind of comparison to 0 so if the value is stored in 8 bits or even 32 bits then its very likely to be not 0.

OP suddenly finds he is being investigated for breaching labor laws, anti-money laundering for paying in cash, etc.

The facebook suppression of the secret service scrum photo looks more interesting: https://thepostmillennial.com/breaking-facebook-admits-censoring-iconic-photo-of-trump-surviving-assassination-attempt-this-was-an-error I wonder if anyone has any details about who was posting the original doctored photo. If you were suspicious of the fact checkers then you might be concerned they posted the misinformation photo themselves in order to try and get the original photograph censored as collateral damage.

I don't get autocomplete for Joe Biden either using the 'US President [name]' search. But do get autocomplete for 'President [name]' for both Donald and Joe.

I feel like it should be trivial for google to bypass ublock on their own properties. They have access to ublock, they can just change how they are serving the ad until it succeeds. It should be a cat-and-mouse game where at least google can stay ahead for a couple of hours before ublock can release a new update.

an alternative multiple shooter theory is that the second shooter was not aware of Crooks and Crooks spoiled a different assassination plot. it would be funny if the combination of SS ineptitude and Crooks resulted in a more serious assassination attempt failing.

it also could have been a recording because they decided to record it rather than do it live. like how singers sometimes mime a recording at their concerts rather than sing live. not because he is incapacitated or locked up but because they can do a cleaner take and there is less chance of a technical issue that could interrupt the call. but i also think its funny that it could just be a lot of small lies that are feeding the conspiracy narrative. i'm sure there is some lesson about how you should be honest.

It's also difficult to realize how deep the internet autists are going to look into something. Maybe 20 years ago you would have been able to get away with it but now its too difficult to control the narrative and I think some people have not updated.

When people see a strong horse and a weak horse, by nature they will like the strong horse

If you read the wiki about this history of the case its even worse. Citizens United made a complaint about Michael Moore's film that was rejected, then they produced their own films on that basis and the FEC went after Citizens United.

I don't even understand why something like clownstrike is necessary in 2024. It should be possible for the OS to be locked down to the point where it's not necessary to have an anti-virus running. And if you need some other security system because you are worried about zero day exploit from nation state threats then you should really consider your threat model because the clownstrike system is effectively a malware distribution platform. I guess its fine if you trust clownstrike and the US government but its a far from ideal situation. Clownstrike seems to have a very nice relationship with the US security state. For example they were brought in to do the hacking investigation by the DNC and provided attribution to Russia.

OS vendors should really expose some kind of interface that allows security vendors to perform these deep inspections 'safely'. I think linux has EBPF which I think some vendors have been using for providing file system monitoring and network monitoring.

Also, the SOC2/etc compliance mandates a lot of this stuff. We run most of our software on Fargate ECS where the compute is completely managed by AWS. I've been using this as an excuse as to why we can't run file monitoring and other garbage on our systems that use Fargate. I also suspect why these managed docker/managed kurbernetes systems are popular because potentially you can avoid some of the tickbox security work. We also run all of our containers with a read-only rootfilesystem so I don't even understand the threats that a file system monitoring system would be trying to remediate in our situation. Technically some kernel exploit could allow the root filesystem to be modified even if its read only or AWS employees could fuck with us but I suspect in these cases the file system monitoring could also be trivially bypassed.

I've seen in some places it has been discussed that the deep state was going to assassinate Biden so a better candidate could replace him. Maybe the deep state patsy got confused and shot the wrong guy.

the cellphone data from one provider that law enforcement usually has access to was also corrupted. but don't worry it was not on purpose and we don't want any conspiracy theories.

We did a complete geofence. We have complete data. Not complete, because there's some data that was corrupted by one of the providers, not purposely by them, right. It just – unusual circumstance that we have corrupt data from one of the providers. I'm not sure – I can't remember right now which one. But for that day, which is awful because we don't have that information to search. So could it have been that provider? Yeah, with our luck, you know, with this investigation it probably was, right. So maybe if we did have that – that data wasn't corrupted – and it wasn't purposely corrupted. I don't want any conspiracy theories, right. To my knowledge, it wasn't corrupted, you know, but that could have been good information that we don't have, right. So that is painful for us to not to have that. So we looked at everything.

https://judiciary.house.gov/media/press-releases/republicans-release-new-information-january-6-pipe-bomb-investigation

though, maybe these warrants that the government is using are unconstitutional. i guess in this case maybe if the location and time were precise then it is kind of similar to accessing CCTV information.

name a lion on a sheet of paper

what does that mean? is there a picture of a lion and you can call it simba? i feel like i'm going to fail the dementia test.

I think the court wants to avoid the courts being used to prosecute the previous President whenever a new President is elected. Many parts of the executive and the judiciary enjoy some form of immunity from the law when carrying out their duties. If you treated the executive purely as normal citizens I think government would become non-functional. I suspect maybe Libertarians would advocate for this but I don't think it would have mainstream support. For example if the executive enforces a law that is latter found to be unconstitutional but has arrested people for violating the law if we treated the executive as normal citizens then surely the executive should face justice for false imprisonment.

the question was about how much the shares were worth to the estate. so if the company had an option to buy the shares back at a different price then the value of the shares to the estate would be impaired. the fair value of a share might be $20 but that doesn't matter if the company has a contract that says they have the option to purchase the shares back at $10. The shares are only worth $10 then. however, i doubt this works around estate law tax. like if you enter into some kind of contract with someone who is about to die to purchase stuff from the estate at reduced value after they die without proper consideration then i'm sure there is something in estate tax law that treats this as a distribution from the estate for tax purposes.

they probably needed to impair the shares so the company has an explicit option to purchase back the shares at an evaluation that didn't include the life insurance payout. it sounds like only the company was forced to do something by the contract so then clearly the shares became worth more and the company underpaid for the shares.

the BBC were reporting about how Trump was breaking norms with his conviction. like he was the one that was acting rather than the one being acted upon.

if you come for the king, you best not miss. the only legitimate challenge to an election result are the ones that succeed otherwise you are a threat to democracy

I'm secretly hoping for Trump to be elected while being in State custody. What actually happens in the situation? Do Federal Marshals show up at the prison demanding Trump's release?

Women don't want to spontaneously play pickup basketball because they will be criticised for doing it for 'attention' :/

the federal government is not sending their best: https://www.wcpo.com/news/local-news/hamilton-county/delhi-township/james-burk-atf-agent-charged-with-stealing-wine-from-kroger?_amp=true

Police say ATF agent James Burk took expensive wine to the self-checkout lane and charged himself a small percent of the cost.

I guess there are few mainstream politicians that believe in free speech as a principal. Most of them believe in free speech when restrictions on speech are used against them but happy to put forward restrictions on speech when they think it benefits themselves. Conservatives might look like they support free speech at the moment but its because they are the ones that mostly being screwed.

I guess he will get a gold coffin, nationwide protests and calls to defund the ATF.