Bitcoin Forum
March 31, 2020, 11:11:43 PM *
News: Latest Bitcoin Core release: 0.19.0.1 [Torrent]
 
   Home   Help Search Login Register More  
Poll
Question: What causes you more fear? (credit:Micg)
Coronavirus - 92 (54.4%)
Bitcoin - 77 (45.6%)
Total Voters: 169

Pages: « 1 ... 26089 26090 26091 26092 26093 26094 26095 26096 26097 26098 26099 26100 26101 26102 26103 26104 26105 26106 26107 26108 26109 26110 26111 26112 26113 26114 26115 26116 26117 26118 26119 26120 26121 26122 26123 26124 26125 26126 26127 26128 26129 26130 26131 26132 26133 26134 26135 26136 26137 26138 [26139] 26140 26141 26142 26143 26144 26145 26146 26147 26148 26149 26150 26151 26152 26153 26154 26155 26156 26157 26158 26159 26160 26161 26162 26163 26164 26165 26166 26167 26168 26169 26170 26171 26172 26173 26174 26175 26176 26177 26178 26179 26180 26181 26182 26183 26184 26185 26186 26187 26188 26189 ... 26492 »
  Print  
Author Topic: Wall Observer BTC/USD - Bitcoin price movement tracking & discussion  (Read 21580313 times)
This is a self-moderated topic. If you do not want to be moderated by the person who started this topic, create a new topic. (143 posts by 33 users deleted.)
psycodad
Hero Member
*****
Offline Offline

Activity: 1099
Merit: 651


精神分析的爸


View Profile WWW
February 27, 2020, 05:01:25 PM
Merited by JayJuanGee (1), bitserve (1)


Most linux distributions can be run on read-only filesystems (same as from cd) BUT the only true security hole is running them as root, because volumes can be remounted in rw mode on the fly. I'm using this strategy on my raspberryPi that is running the game console emulators for the kids. They don't do no shutdown, they just pull the plug/wallwart. Roms are stored on etx4 USB, mounted read-only. This one is just mounted in rw mode on the PC, to manage the roms and emulator binaries.

Just make sure you run linux as unprivileged user. Privilege escalation is a thing though, but unlikely on patched systems. However, when you're not connected to the net, i doubt there is a fair chance of catching a successful exploit via USB.

Again, your postulated security described above is utterly dependent upon the rando USB device implementing only a storage class endpoint.

Whatevs. Good luck with that.

I would care less if i am running as unpriv. user on a system that is not network connected. I didn't mention that i'd never use a host with actual user data on it. I thought that would be clear because i was replying to Dabs' "frozen sysimage" approach. I would definitely not use a guest VM but a dedicated box that i can reset via dd or similar disc imaging tools, i wasn't clear on that, as i just recognize while typing this.
And yes, it's part of the very basics: there is no 100% security, only 100% security against certain (and therefor known) attack vectors.

I’m gonna say this one last time. Your postulated recovery is weaksauce against anything other than a disk-resident vector.

dd ain’t gonna do nothing for you if malware-containing USB infects the BIOS.

Forget about badUSB/badBIOS as it has already been perfectly documented and evidenced... Maybe you are the right person to ask this, depending on how low level your work or knowledge goes... I have always thought another theoretical attack vector would be in the HD firmware from which it would be possible to on-the-fly replace a call to the boot sector adding some payload to it. I still think so but... have you ever seen any real practical example/exploit of that? Even as a PoC "lab test"?

Well, if you can program new drive FW, and you can get it programmed into the drive’s FW store, then yes - that would be trivial.

Indeed, I’ve shipped devices that provided canned boot sector data before - not as an exploit, but because the operating environment needed such in order to function. Of course, that was a ‘from the factory’ thing, not a field exploit.

However, drive FW development is non-trivial. Embedded computers without public data on memory maps, peripheral specs, etc. Nonstandard SoCs, built on various ISAs, dependent upon lots of in-house developed tools. Very difficult. Albeit doable in theory.

However^2, most (all?) contemporary drives will not load FW that does not have a valid crypto signature. I have never heard of any case of a successful exploit of a drive’s FW sig being cracked.

Though drive companies are just collections of people, and some people in the chain of custody for the root certs may not fully understand their responsibilities. I could see the possibility of a leak of keys happening some day by some vendor or another. At which point, such an exploit again becomes plausible.

Nice. Good to know it is something that hasn't been seen in the wild yet even though I guess, from your description, it is not something completely out of reach for a determined (and resourceful) enough attacker.

It also sounds as something that YOU (or someone you know) could probably do given enough time and motivation. And when I say YOU, I can perfectly mean some/many others. So the risk is real. I guess the real reason it hasn't happened yet is mainly because there are plenty of WAY more cost effective attack vectors. If it were the only one, it would be exploited for sure.


It's not like it hasn't been seen in the wild yet:

https://www.malwaretech.com/2015/04/hard-disk-firmware-hacking-part-1.html

https://www.wired.com/2015/02/nsa-firmware-hacking/

1585696303
Hero Member
*
Offline Offline

Posts: 1585696303

View Profile Personal Message (Offline)

Ignore
1585696303
Reply with quote  #2

1585696303
Report to moderator
Best Rates For Exchanging Cryptocurrency Buy Crypto With Credit Card Smooth Exchange Multiple E-Payment Systems Check Now Check Now
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
LFC_Bitcoin
Legendary
*
Offline Offline

Activity: 2030
Merit: 2951


One of the world's leading Bitcoin-powered casinos


View Profile
February 27, 2020, 05:05:07 PM

Fellow WO´s,

just letting you know - I know you couldnt care less  Cheesy - that I am back after some forced time-out and my first ban here on bitcointalk...  Roll Eyes Promise I´ll be a good boy from now on!  Cheesy

That being said - I have persuaded my best bro and he is now also bitcoin-addicted after being a hater for years. Thats a sign, isnt it. Now even accepting crypto-payments in his online-shop. Cheesy

What did you do to get banned?

Cheesy
El duderino_
Legendary
*
Offline Offline

Activity: 1008
Merit: 3523


Bitcointalk, where moral and ethical people post!


View Profile
February 27, 2020, 05:07:49 PM

The dude badly wanna see “The gentlemen” this evening, but my compagnon for this eve wanna see “Sonic”  Roll Eyes
efialtis
Sr. Member
****
Offline Offline

Activity: 336
Merit: 665


MONO AEK


View Profile WWW
February 27, 2020, 05:08:14 PM

Fellow WO´s,

just letting you know - I know you couldnt care less  Cheesy - that I am back after some forced time-out and my first ban here on bitcointalk...  Roll Eyes Promise I´ll be a good boy from now on!  Cheesy

That being said - I have persuaded my best bro and he is now also bitcoin-addicted after being a hater for years. Thats a sign, isnt it. Now even accepting crypto-payments in his online-shop. Cheesy

What did you do to get banned?

Cheesy

Oh well... someone reported me for PM AD SPAM...  Roll Eyes Roll Eyes Roll Eyes Of course absolutely unjustified!  Cool

Edit: I have never spammed an "ad" lol, wish I knew who has been so pissed to report a pm I have sent but I havent figured out yet...  Cheesy
bkbirge
Sr. Member
****
Offline Offline

Activity: 742
Merit: 308



View Profile
February 27, 2020, 05:08:49 PM

LOL...
https://cointelegraph.com/news/steven-seagal-charged-by-sec-for-promoting-2018-ico
Quote
Seagal is a Buddhist, claiming in 1997 to have been given the title of tulku — the reincarnation of the Buddhist lama — by a Buddhist high priest. For this reason, he was announced by the B2G project as a “Zen master.”

Double LOL...
https://cointelegraph.com/news/courts-will-seize-btc-with-miners-help-self-proclaimed-satoshi-craig-wright
Quote
“Without keys, BTC will be confiscated. Code is law, and courts can mandate patching code. Bitcoin is not encrypted. It is economic.”
jojo69
Legendary
*
Offline Offline

Activity: 1708
Merit: 2276


no FOMO


View Profile
February 27, 2020, 05:09:12 PM

Sonic for the dude

just how it is
d_eddie
Hero Member
*****
Offline Offline

Activity: 1008
Merit: 887



View Profile
February 27, 2020, 05:20:49 PM

seems Wall Street is in complete panic mode now.  Roll Eyes

The dream scenario would be 1% of the money being taken out of equities finding it's way to bitcoin. Bonds are at record levels. Gold is a joke to most investors, commodities are falling, most will just hold cash but what if bitcoin starts rising at the same time the stock market crashes? That reverse correlation could make for an epic spike.

I think we saw a decline in the last few days because traders are trying to make it look like bitcoin is correlated to the stock market. I hope they run out of ammo while the stock market keeps declining. Wishful thinking perhaps.
There is another possible explanation that doesn't call for traders conspiring to mock up positive correlation.  It might be that some people are simply cashing out thinking that, particularly in times of trouble, "cash is king" - Buffett style.  Or perhaps they just need the money to deal with emergency expenses.  Speculative analysis is hard to get right anyway, and turmoil such as this doesn't help to see things clearly.
Last of the V8s
Legendary
*
Offline Offline

Activity: 1428
Merit: 3131


Be a bank


View Profile
February 27, 2020, 05:25:01 PM
Merited by mindrust (1)

Stay positive, don't be all doom and gloom

d_eddie
Hero Member
*****
Offline Offline

Activity: 1008
Merit: 887



View Profile
February 27, 2020, 05:27:16 PM
Merited by El duderino_ (2), JayJuanGee (1)

The establishment chicken littles are starting to crow. I wonder how much is corona virus effect as stated and how much is them just saying it is to cover their rears...
https://news.yahoo.com/coronavirus-will-wipe-out-corporate-profit-growth-in-2020-and-may-trigger-recession-goldman-sachs-122739601.html
Quote
The coronavirus may wipe out corporate growth in 2020, perhaps completely.

Goldman Sachs said Thursday in a note U.S. companies will generate no earnings growth in 2020. Underlying the call is Goldman’s view that the coronavirus is expected to spread around the globe and severely harm economic activity.

The market couldn't stand this growth rate anyway.  The Fed wanted to hike the rates a little, and only pressure from the orange ape made them keep on easin'.  This corona thing is actually a help for those who need a different narrative.  'Corona gets all the blame' is like 'dog ate my homework'.
Last of the V8s
Legendary
*
Offline Offline

Activity: 1428
Merit: 3131


Be a bank


View Profile
February 27, 2020, 05:28:41 PM
Merited by El duderino_ (2), Torque (1)


https://twitter.com/dergigi/status/1232767340833624066?s=20
soxxx
Member
**
Offline Offline

Activity: 236
Merit: 57


View Profile
February 27, 2020, 05:29:04 PM

Ascending triangle anyone?


Ascending Triangle confirmed. if we break below the ascending line then "God save the Queen".  Roll Eyes


Maybe just maybe we have something here, it got a good bounce.
Last of the V8s
Legendary
*
Offline Offline

Activity: 1428
Merit: 3131


Be a bank


View Profile
February 27, 2020, 05:30:58 PM



Romanian TV faking up an 'empty shelves' story. Everything from the shelves is just piled up behind the camera
jbreher
Legendary
*
Offline Offline

Activity: 2702
Merit: 1424


lose: unfind ... loose: untight


View Profile
February 27, 2020, 05:31:08 PM

since when?

people write custom BIOS for older stuff all the time

not being snarky, really want to know

To lightfoot's point, I don't doubt that contemporary BIOSs are typically protected by such crypto signature schemes.

I used the BIOS example as but one of many possible malware vectors that one exposes themself to, should they be in the habit of investigating various random found USB devices.

And more specifically, one that completely sidesteps any filesystem-dependent countermeasures, which some seem to (erroneously) feel is sufficient to protect themselves.
xhomerx10
Legendary
*
Offline Offline

Activity: 2338
Merit: 2885


Aceeasi Marie cu alta palarie


View Profile
February 27, 2020, 05:32:16 PM



-the end of the 'silent but deadly'
-keep your pants on
-#themayorknew
-where is that guy anyway

 Well that's awesome.  Now he's cornered the market on safety pants - he'll be back!


jojo69
Legendary
*
Offline Offline

Activity: 1708
Merit: 2276


no FOMO


View Profile
February 27, 2020, 05:35:04 PM

safety pants

safety pants

everybody look at your hands
xhomerx10
Legendary
*
Offline Offline

Activity: 2338
Merit: 2885


Aceeasi Marie cu alta palarie


View Profile
February 27, 2020, 05:45:00 PM
Last edit: February 27, 2020, 06:28:29 PM by xhomerx10



Romanian TV faking up an 'empty shelves' story. Everything from the shelves is just piled up behind the camera

 Romanians...

edit: redacted
edit2: redacted
edit3: opsec fears
DaRude
Legendary
*
Offline Offline

Activity: 1848
Merit: 1119


In order to dump coins one must have coins


View Profile
February 27, 2020, 05:47:26 PM
Merited by JayJuanGee (1)

LOL...
https://cointelegraph.com/news/steven-seagal-charged-by-sec-for-promoting-2018-ico
Quote
Seagal is a Buddhist, claiming in 1997 to have been given the title of tulku — the reincarnation of the Buddhist lama — by a Buddhist high priest. For this reason, he was announced by the B2G project as a “Zen master.”

Double LOL...
https://cointelegraph.com/news/courts-will-seize-btc-with-miners-help-self-proclaimed-satoshi-craig-wright
Quote
“Without keys, BTC will be confiscated. Code is law, and courts can mandate patching code. Bitcoin is not encrypted. It is economic.”

BSvers at their best. If you redefine BTC to mean BSv, and decentralized to mean Ayre owns 60% of miners, then i don't see why Ayre can't do whatever he pleases with that chain. Idiots that buy those tokens deserve whatever is coming to them. It's funny to hear about courts from the guy who lost all his court cases.
As far as having some court in some jurisdiction try to stop real honey badger yeah good luck
Cryptotourist
Sr. Member
****
Offline Offline

Activity: 532
Merit: 404


Homo Sapiens Bitcoinerthalensis


View Profile
February 27, 2020, 05:53:25 PM

I mean, look at Ibian - he's already feasting on this, hoping that this the one. Why would I give a fuck to this kind of approach?
I don't think I have actually said that I hope this is The One. If you want to know what someone thinks, why not ask instead of guess?

Okay,

This could really be the big one.
rdbase
Hero Member
*****
Offline Offline

Activity: 1372
Merit: 505


bustadice.com


View Profile
February 27, 2020, 06:04:12 PM

Jack Dorsey not only added the BTC symbol to his site but got it tattooed on his face. Grin

So not only el dude has tats that matter here now. Cheesy
https://blockfoliorefresh.substack.com/p/bitcoin-drove-50-of-cash-apps-q4
Cash app damnnn.
bitcoinPsycho
Sr. Member
****
Offline Offline

Activity: 980
Merit: 347


$100,000 BTC in one hour🍄💊


View Profile
February 27, 2020, 06:25:12 PM
Merited by El duderino_ (2)

The establishment chicken littles are starting to crow. I wonder how much is corona virus effect as stated and how much is them just saying it is to cover their rears...
https://news.yahoo.com/coronavirus-will-wipe-out-corporate-profit-growth-in-2020-and-may-trigger-recession-goldman-sachs-122739601.html
Quote
The coronavirus may wipe out corporate growth in 2020, perhaps completely.

Goldman Sachs said Thursday in a note U.S. companies will generate no earnings growth in 2020. Underlying the call is Goldman’s view that the coronavirus is expected to spread around the globe and severely harm economic activity.

The market couldn't stand this growth rate anyway.  The Fed wanted to hike the rates a little, and only pressure from the orange ape made them keep on easin'.  This corona thing is actually a help for those who need a different narrative.  'Corona gets all the blame' is like 'dog ate my homework'.
+20 wo merit for this post

Pages: « 1 ... 26089 26090 26091 26092 26093 26094 26095 26096 26097 26098 26099 26100 26101 26102 26103 26104 26105 26106 26107 26108 26109 26110 26111 26112 26113 26114 26115 26116 26117 26118 26119 26120 26121 26122 26123 26124 26125 26126 26127 26128 26129 26130 26131 26132 26133 26134 26135 26136 26137 26138 [26139] 26140 26141 26142 26143 26144 26145 26146 26147 26148 26149 26150 26151 26152 26153 26154 26155 26156 26157 26158 26159 26160 26161 26162 26163 26164 26165 26166 26167 26168 26169 26170 26171 26172 26173 26174 26175 26176 26177 26178 26179 26180 26181 26182 26183 26184 26185 26186 26187 26188 26189 ... 26492 »
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!