What the hell was up these last few days?? It's seemed like one exploit after another, between the bash exploit, the problems at Acme, and my own network intrusion. Talk about damaging and embarassing! At least CC wasn't affected. It was just one old system I used to update my phone firmware - which for some reason can ONLY be done via a Windows program - and logged into FB while being bored during the update. Doh!!
Well, whoever you are (and you probably won't see this, since your IPs are banned), thanks a lot. I closed down the ports you were hitting at and re-secured my FB account, but now I'm feeling paranoid.
Also, found in the bottom of my web server stats:
Fucking script kiddies.
I've been doing cryptocoin mining as a hobby now for about a month with cheap, small, essentially obsolete hardware. Some of these coins can be mined simultaneously - up until last week, dogecoin wasn't one of them. Now that it's got auxpow support, my mining income from DGC has dropped from 80 coins an hour to about 120 coins a day. Since large-scale mining pools are able to do it on the side with their litecoin work, they're generating a lot more blocks than the smaller places (I was mining with TeamDoge, before) and essentially starving them out.
It sucks, but on the flipside I can mine LTC now too, which seems to actually carry some worth, but that really wasn't the point of DGC. I was doing it because it was fun, not because I wanted to make money.
So this happened: 5M Gmail Addresses, Passwords Leaked | News & Opinion | PCMag.com.
I saw an old password of mine on there, from maybe five or six years ago. If it's indicative of the age, it's probably not as big of a deal as the Home Depot hack, but people should be keeping their passwords changing and using 2FA anyhow.
It makes me wonder, though, if conditions in Russia are so bad that hacks like this are how they express their anger with sanctions, maybe they ought to rethink their trust in their leadership.
It's been an interesting day so far. Today, I used my first goto statement in C. I feel a little dirty about it, but after reading how Linus feels about them, I guess it's not as big of a deal as I thought.
This kernel stuff is really affecting my thinking.
Where I work, we have to use this faux-open-source process called scrum. The idea is to emulate the way open source projects work, while retaining some of the controls that waterfall project management gives to people not doing the actual work.
The biggest problem with Scrum is its focus on short term gain. Our sprint cycle - an arbitrary measure used to force developers to turn out code faster - is three weeks. The intent is to break up tasks into small bites so they can get done, but the actual effect is that developers end up overhurried, they skimp on design and testing, and you end up with shitty code that is nothing but one compromise heaped upon another.
If you like how open source projects work, just do it correctly from the start and DO OPEN SOURCE DEVELOPMENT. Don't try to impose arbitrary date and time requirements on people because these will result in crap code.
I got criticized today for being too contrite with the kernel maintainers over trivial things.
maybe it's just me, but I'd much rather be too apologetic than come off as arrogant.
The worst thing about being an engineer is hearing conversations like this:
"I'm sorry, I was in the middle of taking a dump when you hopped on there"
Recently there have been many articles posted about the level of "realism" in the game Watch_Dogs and whether or not the things that happen in the game are possible.
Unfortunately, most of the discussion has been about weaponized hacking - the stoplight changing and electric-junction-blowing over the top stuff, rather than the parts that are genuinely scary: profiling strangers on the street, invading privacy of others, and the huge effect of corruption in a government agency.
The game would be far more realistic if Blume were renamed "NSA" and CtOS were renamed "PRISM." We don't need a fictional company wiring together an entire city's security infrastructure and putting in back doors; the NSA is already in this business. If they have the means to force private companies to install secret backdoors, they most certainly have the means to force state and local governments to comply as well. The fact is, CtOS's level of interconnectivity may already be a reality for most cities. It simply is not widespread public knowledge.
Add to this the reality that things are becoming MORE connected on a daily basis, not less, and the kind of disaster in Watch_Dogs sounds more like a guaranteed future than fiction.
I'm testing out the latest Eclipse Luna build (4.4RC2) and it looks like all of the issues I was having with it have been cleaned up. The menus work, the perspective customization menu works, and the new GTK3-based UI is fast and fits in well with Ubuntu 14.04.
Definitely worth trying out! I need to reinstall the Android devkit next.