HackerLangs
TopNewTrendsCommentsPastAskShowJobs

nicolas_17

305 karmajoined vor 4 Jahren

comments

nicolas_17
·vor 4 Tagen·discuss
If they shut down their gaming operation and instead decide to stuff money into bonds, where would that $5B even come from?

As said elsewhere in the thread:

> You’re saying that they should take the money people pay to buy Xboxes and put it in T-bills instead of delivering Xboxes?
nicolas_17
·vor 2 Monaten·discuss
I agree we'd all be better off if SpaceX figured out how to send Musk to Mars ASAP.
nicolas_17
·vor 2 Monaten·discuss
None, unless someone is renewing their certificates only 2 hours before they expire, which is a dumb thing to do.
nicolas_17
·vor 2 Monaten·discuss
That's why they take incidents like this seriously and stop issuance until it's fixed. They could get kicked out of trusted roots otherwise.
nicolas_17
·vor 5 Monaten·discuss
What do you even mean by LLM help??
nicolas_17
·vor 5 Monaten·discuss
And imagine the numbers if downgrading was possible...
nicolas_17
·vor 5 Monaten·discuss
It's just like gambling addiction.
nicolas_17
·vor 6 Monaten·discuss
Why are you even encrypting? What's the threat model it's protecting against? Clearly it's not "prevent me from reading your data" since you have access to the keys anyway.
nicolas_17
·vor 6 Monaten·discuss
KDE Connect sends data directly between your devices, while QuickClip sends data through QuickClip servers using useless encryption.
nicolas_17
·vor 7 Monaten·discuss
They made significant changes to the bootloader with the explicit goal of allowing boot of third-party operating systems.
nicolas_17
·vor 8 Monaten·discuss
Or you can just sign your Linux kernel from macOS recovery mode, which is what the Asahi Linux installer does already. No need for weird hacks.

You also don't have "kernel access" in macOS. After boot, the memory region corresponding to the macOS kernel is marked as read-only at the memory controller level.
nicolas_17
·vor 8 Monaten·discuss
If you're new to the topic, this is a good place to start https://support.apple.com/en-lamr/guide/security/welcome/web
nicolas_17
·vor 8 Monaten·discuss
That's exactly how LLMs are so effective: the text looks impressive to people who don't possess enough knowledge to make an accurate judgement. Meanwhile actual researchers with Apple experience found clear errors on a quick skim.

The large amount of rewriting being done within 5 minutes is another sign of LLM...
nicolas_17
·vor 8 Monaten·discuss
This article is definitely the latter, not just "fixing grammar".
nicolas_17
·vor 8 Monaten·discuss
The bootloader doesn't even have a USB stack capable of reading external storage.
nicolas_17
·vor 8 Monaten·discuss
And then the author posts it himself to Hacker News. Nah, that's not opsec.
nicolas_17
·vor 8 Monaten·discuss
They just fixed the KBAG thing.

This quickly went from Brandolini's Law to Cunningham's Law. Learn how Apple's boot process works by explaining it wrong and waiting for people to correct you!
nicolas_17
·vor 8 Monaten·discuss
There's many factual errors in this AI slop.

For example, it says quite unambiguously that the bootloader is encrypted directly with the GID key (loading the LLB ciphertext into the AES engine), but that's not how it works, the GID key is used to decrypt the LLB's KBAG into an AES key:IV pair and that is used to decrypt the LLB.

More:

> The behavior of the Boot ROM changes fundamentally based on the "Security Domain" fuse. > > Production (CPFM 01):

Security Domain (SDOM) is a different thing than CPFM. And production devices have CPFM 03.

> CHIP (Chip ID): Identifies the SoC model (e.g., 0x8101 for M1).

The M1 SoC is 0x8103.

Due to Brandolini's Law I will not continue to list everything else that is wrong here...
nicolas_17
·vor 8 Monaten·discuss
Or maybe fully AI-generated. There's many factual errors in the article too.
nicolas_17
·vor 9 Monaten·discuss
DigitalOcean lost some of my files in their object storage too: https://status.digitalocean.com/incidents/tmnyhddpkyvf

Using a commercial provider is not a guarantee.