Author Archives: dailylinks

Links for 2018-01-22

Remote Code Execution on the Smiths Medical Medfusion 4000 Infusion Pump ‘Between March and June of 2017 I spent around 400 hours of personal time analyzing the Smiths Medical Medfusion 4000 infusion pump for security vulnerabilities. The devices analyzed had software versions 1.1.2 and 1.5.0. The flaws discovered (the most critical of which was a […]

Posted in Uncategorized | Leave a comment

Links for 2018-01-19

The 29 Stages Of A Twitterstorm In 2018 ’14. Then suddenly there are Nazis everywhere.’ (tags: twitter twitterstorms funny 2018 nazis alt-right memes)

Posted in Uncategorized | Leave a comment

Links for 2018-01-18

OpenCensus: A Stats Collection and Distributed Tracing Framework Google open sourcing their internal Census lib for service metrics and distributed tracing (tags: google monitoring service-metrics metrics census opencensus open-source tracing zipkin prometheus) Securing Docker Containers on AWS | nearForm ‘On most projects at nearForm we are deploying our solutions within Docker containers. There are tasks […]

Posted in Uncategorized | Leave a comment

Links for 2018-01-17

Boost your immunity: Cold and flu treatments suppress innate immune system The next time you feel a cold coming on, maybe what you really want is just a little teensy bit of innate immune suppression, not an immunity boost. Over-the-counter medications like ibuprofen and antihistamines should help you feel better. Meanwhile, sit back while your […]

Posted in Uncategorized | 1 Response

Links for 2018-01-16

Actual screenshot of the broken UX of the Hawaii ballistic missile alert system “This is the screen that set off the ballistic missile alert on Saturday. The operator clicked the PACOM (CDW) State Only link. The drill link is the one that was supposed to be clicked.” This is terrible, terrible UX. (tags: ux ui […]

Posted in Uncategorized | Leave a comment

Links for 2018-01-15

The likely user interface which led to Hawaii’s false-alarm incoming-ballistic-missile alert on Saturday 2018-01-13 @supersat on Twitter: “In case you’re curious what Hawaii’s EAS/WEA interface looks like, I believe it’s similar to this. Hypothesis: they test their EAS authorization codes at the beginning of each shift and selected the wrong option.” This is absolutely classic […]

Posted in Uncategorized | Leave a comment

Links for 2018-01-14

‘It Can’t Be True.’ Inside the Semiconductor Industry’s Meltdown “Our first priority has been to have a complete mitigation in place,” said Intel’s Parker. “We’ve delivered a solution.” Some in the cybersecurity community aren’t so sure. Kocher, who helped discover Spectre, thinks this is just the beginning of the industry’s woes. Now that new ways […]

Posted in Uncategorized | Leave a comment

Links for 2018-01-12

google/highwayhash: Fast strong hash functions: SipHash/HighwayHash HighwayHash: ‘We have devised a new way of mixing inputs with AVX2 multiply and permute instructions. The multiplications are 32×32 -> 64 bits and therefore infeasible to reverse. Permuting equalizes the distribution of the resulting bytes. The internal state occupies four 256-bit AVX2 registers. Due to limitations of the […]

Posted in Uncategorized | Leave a comment

Links for 2018-01-11

[1801.02780] Rogue Signs: Deceiving Traffic Sign Recognition with Malicious Ads and Logos Well, so much for that idea. We propose a new real-world attack against the computer vision based systems of autonomous vehicles (AVs). Our novel Sign Embedding attack exploits the concept of adversarial examples to modify innocuous signs and advertisements in the environment such […]

Posted in Uncategorized | Leave a comment

Links for 2018-01-10

Collision Course: Why This Type Of Road Junction Will Keep Killing Cyclists This aspect of road design had never occurred to me, but once explained it makes sense. Great article on the design of an oblique crossroads junction and how it’s unexpectedly dangerous due to human factors and car design. “Human error” may be real, […]

Posted in Uncategorized | Leave a comment

Links for 2018-01-09

Post-apocalyptic life in American health care My god, this is so dysfunctional. ‘I observe that American health care organizations can no longer operate systematically, so participants are forced to act in the communal mode, as if in the pre-modern world. Health care is one leading edge of a general breakdown in systematicity — while, at […]

Posted in Uncategorized | Comments closed

Links for 2018-01-05

Random with care Some tips about RNGs and their usage (via Tony Finch) (tags: coding random math rngs prngs statistics distributions)

Posted in Uncategorized | Comments closed

Links for 2018-01-04

Nicole Perlroth’s roundup on the Spectre and Meltdown security holes Excellent roundup — this really is amazingly bad news for CPU performance and fixability (tags: meltdown spectre nicole-perlroth security cpu performance speculative-execution intel amd arm) These stickers make AI hallucinate things that aren’t there – The Verge The sticker “allows attackers to create a physical-world […]

Posted in Uncategorized | Comments closed

Links for 2018-01-03

Webdoctor.ie An online doctor appointment — you fill out a questionnaire, are interviewed via VC, and receive any prescription you need. Recommended by devxda on the ITC slack (tags: doctor medicine ireland services health) The mysterious case of the Linux Page Table Isolation patches | Hacker News good HN comments on the horrible security bug […]

Posted in Uncategorized | Comments closed

Links for 2018-01-01

Steven Bellovin on Bitcoin When you engineer a system for deployment you build it to meet certain real-world goals. You may find that there are tradeoffs, and that you can’t achieve all of your goals, but that’s normal; as I’ve remarked, “engineering is the art of picking the right trade-off in an overconstrained environment”. For […]

Posted in Uncategorized | Comments closed

Links for 2017-12-22

RFC 2322: Management of IP numbers by peg-dhcp This RFC describes a protocol to dynamically hand out ip-numbers on field networks and small events that don’t necessarily have a clear organisational body. ie. using clothes pegs! (tags: pegs dhcp hacks rfcs hip97 hip protocols clothespegs)

Posted in Uncategorized | Comments closed

Links for 2017-12-21

Electric Vehicle Home Charger Grant new SEAI grant for EV charger points; allows second-hand cars as well, from 2018 onwards (tags: cars driving seai grants ireland evs)

Posted in Uncategorized | Comments closed

Links for 2017-12-20

Learning to operate Kubernetes reliably A very solid writeup from Julia “b0rk” Evans at Stripe (tags: stripe kubernetes cron distributed-cron jobs docker containers ops julia-evans) Google Maps’s Moat pretty cool stuff from Google, has to be said (tags: google maps apple tom-tom data big-data ml mapping)

Posted in Uncategorized | Comments closed

Links for 2017-12-19

How Syria’s White Helmets became victims of an online propaganda machine | World news | The Guardian The way the Russian propaganda machine has targeted the White Helmets is a neat case study in the prevailing information wars. It exposes just how rumours, conspiracy theories and half-truths bubble to the top of YouTube, Google and […]

Posted in Uncategorized | Comments closed

Links for 2017-12-18

Google Thinks I’m Dead – The New York Times jesus, Google, this is a shambles (tags: google data correctness bugs errors data-cleanliness accuracy) Checkup ‘Simple uptime monitoring: distributed, self-hosted health checks and status pages’ — stores in S3 (tags: go ops monitoring uptime health-checks status-pages status golang s3) The Real Danger To Civilization Isn’t AI. […]

Posted in Uncategorized | Comments closed

Links for 2017-12-15

It’s official, ADSL works over wet string So, there you go, ADSL over 2m of literal “wet string”. Well done all for testing this. It shows the importance of handling faults that seem to just be “low speed”. (tags: adsl faults hacks funny networking dsl telecoms) extremely detailed writeup on a secondhand Nissan LEAF ‘2015 […]

Posted in Uncategorized | Comments closed

Links for 2017-12-14

The Mirai Botnet Was Part of a College Student Minecraft Scheme The truth, as made clear in that Alaskan courtroom Friday — and unsealed by the Justice Department on Wednesday—was even stranger: The brains behind Mirai were a 21-year-old Rutgers college student from suburban New Jersey and his two college-age friends from outside Pittsburgh and […]

Posted in Uncategorized | Comments closed

Links for 2017-12-13

Wishlist: A Tiny Museum for Your Mantle – Atlas Obscura the Mini Museum. back on sale at Amazon and absolutely amazing (tags: museum stuff toget want atlas-obscura history science fossils collectibles) AWS CodeBuild Plugin – Jenkins – Jenkins Wiki Trigger AWS CodeBuild jobs as build steps for a Jenkins project. :thinking_face_emoji: (tags: jenkins hacks aws […]

Posted in Uncategorized | Comments closed

Links for 2017-12-12

The Case for Learned Index Structures ‘Indexes are models: a B-Tree-Index can be seen as a model to map a key to the position of a record within a sorted array, a Hash-Index as a model to map a key to a position of a record within an unsorted array, and a BitMap-Index as a […]

Posted in Uncategorized | Comments closed

Links for 2017-12-11

Canarytokens.org – Quick, Free, Detection for the Masses similar to honeytokens — detect breaches by access attempts to unique addresses (tags: security honeypots honeytokens canary canarytokens)

Posted in Uncategorized | Comments closed

Links for 2017-12-06

In first, 3-D printed objects connect to WiFi without electronics This. is. magic. Physical motion—pushing a button, laundry soap flowing out of a bottle, turning a knob, removing a hammer from a weighted tool bench—triggers gears and springs elsewhere in the 3-D printed object that cause a conductive switch to intermittently connect or disconnect with […]

Posted in Uncategorized | Comments closed

Links for 2017-12-05

AMERICAN AIRLINES 737MAX8: “LIKE A FLYING PRISON” Quite unusual to see an honest review of travelling coach-class on an internal US flight. This is a massive stinker: “I admit American isn’t my favourite airline, but this has made me seriously re-evaluate ever travelling on them again. And it won’t be economy. If this is Americans […]

Posted in Uncategorized | Comments closed

Links for 2017-12-04

Bella Caledonia: A Wake-Up Call Swathes of the British elite appeared ignorant of much of Irish history and the country’s present reality. They seemed to have missed that Ireland’s economic dependence on exports to its neighbour came speedily to an end after both joined the European Economic Community in 1973. They seemed unacquainted with Ireland’s […]

Posted in Uncategorized | Comments closed

Links for 2017-12-01

Sonarr newsgroup/torrent TV PVR automation. looks neat (tags: pvr tv automation usenet bittorrent) South Pole Ice Tunnels – Antarctica – Atlas Obscura ‘One of the strangest of these monuments consists of the body of an atrophied White Sturgeon and a handwritten account of its journey. The fish had arrived in 1992 at McMurdo Station (a […]

Posted in Uncategorized | Comments closed

Links for 2017-11-30

Introducing the Amazon Time Sync Service Well overdue; includes Google-style leap smearing (tags: time-sync time aws services ntp ops) The Impenetrable Program Transforming How Courts Treat DNA Evidence | WIRED ‘So the lab turned to TrueAllele, a program sold by Cybergenetics, a small company dedicated to helping law enforcement analyze DNA where regular lab tests […]

Posted in Uncategorized | Comments closed

Links for 2017-11-29

Fine Art Prints – The Public Domain Review This is amazing — “museum quality” prints of favourites from the PDR archives, featuring Paul Klee, William Blake, ukiyo-e from Hiroshige, Goya, and even Athanasius Kircher (tags: prints to-get fine-art public-domain art william-blake ukiyo-e hiroshige goya klee) Introducing AWS Fargate – Run Containers without Managing Infrastructure now […]

Posted in Uncategorized | Comments closed

Links for 2017-11-28

creepy fake motion-detector cameras in AirBnBs Jason Scott on Twitter: “In “oh, that’s a thing now” news, a colleague of mine thought it odd that there was a single “motion detector” in his AirBNB in the bedroom and voila, it’s an IP camera connected to the web. (He left at 3am, reported, host is suspended, […]

Posted in Uncategorized | Comments closed

Links for 2017-11-27

Parental Controls & Internet Filtering — Circle this looks interesting; internet time limits and per-user/per-device content filtering, for kids (tags: apps kids android ios circle filtering family parenting) Brutal London ‘A book about London’s gorgeous, brutalist architecture includes dainty DIY papercraft models to make yourself’ — awesome (tags: brutalist architecture london papercraft models barbican) UK […]

Posted in Uncategorized | Comments closed

Links for 2017-11-25

Ordering a new EV ? what are your 181 options ? (thinking face) (tags: evs cars driving ireland)

Posted in Uncategorized | Comments closed

Links for 2017-11-24

Witney Seibold watches all the Academy Award Best Picture winners Myself and the missus are in the process of doing this right now! (tags: nerdist witney-seibold academy-awards best-picture awards movies) Spam is back | The Outline it’s 2017, and spam has clawed itself back from the grave. It shows up on social media and dating […]

Posted in Uncategorized | Comments closed

Links for 2017-11-20

S3 Inventory Adds Apache ORC output format and Amazon Athena Integration Interesting to see Amazon are kind of putting their money behind ORC as a new public data interchange format with this (tags: orc formats data interchange s3 athena output) Spot Fleet now supports Target Tracking Awesome, nice feature (tags: spot-fleet spot-instances ec2 amazon aws […]

Posted in Uncategorized | Comments closed

Links for 2017-11-17

How to ensure Presto scalability ?in multi user case Good preso from Treasure Data on multi-user Presto usage (tags: presto presentations slides storage databases)

Posted in Uncategorized | Comments closed

Links for 2017-11-16

Why is this company tracking where you are on Thanksgiving? Creepy: To do this, they tapped a company called SafeGraph that provided them with 17 trillion location markers for 10 million smartphones. The data wasn’t just staggering in sheer quantity. It also appears to be extremely granular. Researchers “used this data to identify individuals’ home […]

Posted in Uncategorized | Comments closed

Links for 2017-11-14

Continuous self-testing at Hosted Graphite ‘why we send external canaries, every second’ (tags: graphite hostedgraphite monitoring canaries udp alerting ops)

Posted in Uncategorized | Comments closed

Links for 2017-11-13

‘STELLA Report from the SNAFUcatchers Workshop on Coping With Complexity’, March 14-16 2017 ‘A consortium workshop of high end techs reviewed postmortems to better understand how engineers cope with the complexity of anomalies (SNAFU and SNAFU catching episodes) and how to support them. These cases reveal common themes regarding factors that produce resilient performances. The […]

Posted in Uncategorized | Comments closed