Profile

unixronin: Galen the technomage, from Babylon 5: Crusade (Default)
Unixronin

Links

December 2012

S M T W T F S
      1
2345678
9101112131415
16171819202122
23242526272829
3031     

Navigation

Page Summary

Most Popular Tags

Expand Cut Tags

No cut tags

Tuesday goose report

jhetley: (Default)
[personal profile] jhetley
Tuesday, August 19th, 2025 03:53 pm
We have geese! Maybe a couple dozen seen at the cemetery pond on my way out, more like 40-50 on my way back. Some looked like 3/4 scale models. Don't know if they recruited another flock or I just didn't see all of them the first time. Or even the second time.

Roadkill limited to one gray squirrel and the usual blood patches on the road.

Arrowhead blooming in the outfall pools at culverts through the bog. Also, lots and lots of "fall dandelions" (which are neither), more than we recall from past years. But that may reflect less mowing due to drought.

Got out on the bike, up to the golf course and over to the road through the bog and home. Did not die.

15.33 miles, 1:27:40

(no subject)

jhetley: (Default)
[personal profile] jhetley
Tuesday, August 19th, 2025 12:44 pm
About that "winter is coming" thing:

https://www.bangordailynews.com/2025/08/19/state/parts-of-maine-got-frost-last-night/

Zero-Day Exploit in WinRAR File

[syndicated profile] bruce_schneier_feed
Tuesday, August 19th, 2025 11:07 am

Posted by Bruce Schneier

https://www.schneier.com/blog/archives/2025/08/zero-day-exploit-in-winrar-file.html

https://www.schneier.com/?p=70599

A zero-day vulnerability in WinRAR is being exploited by at least two Russian criminal groups:

The vulnerability seemed to have super Windows powers. It abused alternate data streams, a Windows feature that allows different ways of representing the same file path. The exploit abused that feature to trigger a previously unknown path traversal flaw that caused WinRAR to plant malicious executables in attacker-chosen file paths %TEMP% and %LOCALAPPDATA%, which Windows normally makes off-limits because of their ability to execute code.

More details in the article.

https://www.schneier.com/blog/archives/2025/08/zero-day-exploit-in-winrar-file.html

https://www.schneier.com/?p=70599

Waning crescent moon

jhetley: (Default)
[personal profile] jhetley
Tuesday, August 19th, 2025 06:54 am
Air temperature 48 F, wind northwest about 4 mph, partly cloudy. Overnight lows in the 30s F in the "rooftop" of Maine. Winter is coming.

Foraging morning, walk or bike ride afternoon.

Coming around the bend

jhetley: (Default)
[personal profile] jhetley
Monday, August 18th, 2025 06:53 pm
Woody Guthrie again . . .

https://www.youtube.com/watch?v=46mO7jx3JEw

(no subject)

jhetley: (Default)
[personal profile] jhetley
Monday, August 18th, 2025 11:21 am
Dear mental disk-jockey -- just because I like the Sibelius violin concerto does *not* mean I want it playing on repeat all morning.

Productive outing

jhetley: (Default)
[personal profile] jhetley
Monday, August 18th, 2025 10:12 am
Met up with Ms. Sasha on my morning walk -- got past her house and looked back and found a cat following me. So we schmoozed for the limit of my kneeling-down capacity, walked around the corner without her *quite* tripping me, and had another session on the walkway to her secondary nests and food dishes. Hadn't seen her for over a week.

Eavesdropping on Phone Conversations Through Vibrations

[syndicated profile] bruce_schneier_feed
Monday, August 18th, 2025 11:02 am

Posted by Bruce Schneier

https://www.schneier.com/blog/archives/2025/08/eavesdropping-on-phone-conversations-through-vibrations.html

https://www.schneier.com/?p=70596

Researchers have managed to eavesdrop on cell phone voice conversations by using radar to detect vibrations. It’s more a proof of concept than anything else. The radar detector is only ten feet away, the setup is stylized, and accuracy is poor. But it’s a start.

https://www.schneier.com/blog/archives/2025/08/eavesdropping-on-phone-conversations-through-vibrations.html

https://www.schneier.com/?p=70596

After a rinsing

jhetley: (Default)
[personal profile] jhetley
Monday, August 18th, 2025 06:52 am
Air temperature 50 F, wind northwest gusting to 20 mph, sunny. Front passed through yesterday in two phases -- first drenching rain that mostly ran off, with wind. Later, a round of gentler rain that lasted for a couple of hours. That may have sunk in and done some good. Walk morning, errand afternoon.

Sunday roadkill report

jhetley: (Default)
[personal profile] jhetley
Sunday, August 17th, 2025 11:37 am
One flat and dried skunk in front of the fire station, no stink but the black and white fur is diagnostic.

Usual summer flowers by the roadside, including some bull thistles starting to fluff. This is pretty much the Scottish thistle, largest and latest to bloom around here.

No interesting metal birds at the base. I'd heard a multi-engine turboprop when I was headed out, but that's the all of it.

Bike ride, just on the edge of heat but did not die. Takes me over 400 miles for the year. Again, about half of what I'd like.

15.71 miles, 1:30:45

Honeysuckle birds

jhetley: (Default)
[personal profile] jhetley
Sunday, August 17th, 2025 07:12 am
Air temperature 63 F, wind southwest about 6 mph, mostly cloudy. Thunderstorms "likely" this afternoon, but the only rain on the weather radar is skimming the top of Maine. Should try for a bike ride this morning to check on any interesting birds at the airport/base.

Peace is our profession

jhetley: (Default)
[personal profile] jhetley
Saturday, August 16th, 2025 07:16 am
Air temperature 57 F, wind near calm, sunny. Forecast says we may get showers and thunderstorms tomorrow afternoon. Not betting on it. Meanwhile, we hope that no idiots toss a cigarette butt on our brown grass.

Friday Squid Blogging: Squid-Shaped UFO Spotted Over Texas

[syndicated profile] bruce_schneier_feed
Friday, August 15th, 2025 09:07 pm

Posted by Bruce Schneier

https://www.schneier.com/blog/archives/2025/08/friday-squid-blogging-squid-shaped-ufo-spotted-over-texas.html

https://www.schneier.com/?p=70572

Here’s the story. The commenters on X (formerly Twitter) are unimpressed.

As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.

Blog moderation policy.

https://www.schneier.com/blog/archives/2025/08/friday-squid-blogging-squid-shaped-ufo-spotted-over-texas.html

https://www.schneier.com/?p=70572

Friday miscellaneous report

jhetley: (Default)
[personal profile] jhetley
Friday, August 15th, 2025 11:31 am
Smartweed blooming, also called lady-fingers, white water lilies in the cemetery pond, usual supply of goldenrod and chicory and tansy. A few asters, but it's early for them still. Purple loosestrife setting seed.

No geese at the pond, either on my way out or coming back. Don't now what's up with that. One roadkill red squirrel in the next town up, crow in attendance for the rites. Also, largish splash of blood, could be deer or raccoon, but no corpse for ID.

Got out on the bike, air temperature upper 60s F and gusty wind, up to the golf course and over to the road through the bog. Did not die.

15.36 miles, 1:28:45

Trojans Embedded in .svg Files

[syndicated profile] bruce_schneier_feed
Friday, August 15th, 2025 11:07 am

Posted by Bruce Schneier

https://www.schneier.com/blog/archives/2025/08/trojans-embedded-in-svg-files.html

https://www.schneier.com/?p=70594

Porn sites are hiding code in .svg files:

Unpacking the attack took work because much of the JavaScript in the .svg images was heavily obscured using a custom version of “JSFuck,” a technique that uses only a handful of character types to encode JavaScript into a camouflaged wall of text.

Once decoded, the script causes the browser to download a chain of additional obfuscated JavaScript. The final payload, a known malicious script called Trojan.JS.Likejack, induces the browser to like a specified Facebook post as long as a user has their account open.

“This Trojan, also written in Javascript, silently clicks a ‘Like’ button for a Facebook page without the user’s knowledge or consent, in this case the adult posts we found above,” Malwarebytes researcher Pieter Arntz wrote. “The user will have to be logged in on Facebook for this to work, but we know many people keep Facebook open for easy access.”

This isn’t a new trick. We’ve seen Trojaned .svg files before.

https://www.schneier.com/blog/archives/2025/08/trojans-embedded-in-svg-files.html

https://www.schneier.com/?p=70594

Weather gods fickle

jhetley: (Default)
[personal profile] jhetley
Friday, August 15th, 2025 07:06 am
Air temperature 62 F, wind north gusting to 20 mph, fair sky. We got a sprinkle out of yesterday's storm offering, and one distant rumble of thunder. Everything still dry. Trash out and collected already. Bike ride maybe?

(no subject)

jhetley: (Default)
[personal profile] jhetley
Thursday, August 14th, 2025 05:00 pm
So, can we expect him to swap Alaska for a Moscow hotel franchise?

Bait and switch tactics

jhetley: (Default)
[personal profile] jhetley
Thursday, August 14th, 2025 10:40 am
Just back from my walk and glad that I decided against a bike ride. Air temperature 78 F and dew point 69. Have now cooled off enough to change into a dry shirt . . .

LLM Coding Integrity Breach

[syndicated profile] bruce_schneier_feed
Thursday, August 14th, 2025 11:08 am

Posted by Bruce Schneier

https://www.schneier.com/blog/archives/2025/08/llm-coding-integrity-breach.html

https://www.schneier.com/?p=70587

Here’s an interesting story about a failure being introduced by LLM-written code. Specifically, the LLM was doing some code refactoring, and when it moved a chunk of code from one file to another it changed a “break” to a “continue.” That turned an error logging statement into an infinite loop, which crashed the system.

This is an integrity failure. Specifically, it’s a failure of processing integrity. And while we can think of particular patches that alleviate this exact failure, the larger problem is much harder to solve.

Davi Ottenheimer comments.

https://www.schneier.com/blog/archives/2025/08/llm-coding-integrity-breach.html

https://www.schneier.com/?p=70587

Precipitation nil

jhetley: (Default)
[personal profile] jhetley
Thursday, August 14th, 2025 06:57 am
Air temperature 68 F, wind near calm, fog at the airport for visibility about a mile. Not seen here, but the radio towers seem to have vanished. They have offered us a chance of showers or thundershowers, but the only green globs on the weather radar are well north of here. Should be able to get out for a walk.