Listened to a rather interesting episode of Darknet Diaries the other day about a European cyber crime group. To this day, the FBI has been unable to decrypt the devices. The feds didn’t give too many details about the specifics, but what they did share was quite interesting:

• Five layers of encryption, each with unique passwords.
• LUKS root partition presumably tied to TPM2.
• Veracrypt or truecrypt volumes in userland.
• A custom-made encryption toolkit.

From what I gathered, I think the optimal balance of usability and security (especially for a headless machine) would be the following:

• LUKS root volume tied to TPM to protect against cloning of disk. Also, nothing too valuable ever lives on root.
• More important data stored behind a FUSE encryption layer like gocryptfs, these can be easily opened remotely. You can also tie the password to data hidden inside the LUKS volume for effective two-password protection if the volume is not already behind a LUKS layer.
• If your really concerned, add in additional layers as needed. You can tie LUKS to TPM and FIDO, not sure if you can set up a two password mode, but that would be quite nice. You can also (probably) tie FUSE based systems to biometrics like Howdey or fingerprint sensors if you have them. This could also be setup in a kind of two-password mode for a single volume. Realistically, two layers of encryption is overkill, but it’s more about ensuring multiple layers of redundancy rather than making it harder to crack.
• I can’t recommend systemd because of its numerous security vulnerabilities, but homed does have a neat feature where it will unmount encrypted home volumes when your computer goes to sleep. Not sure how effective or useful it is, but it is a nice feature. Been wanting to see if I can setup something similar on Chimera/Artix with dinit user services.
• Defiantly set up duress key-codes/panic buttons. Likewise, been wanting to write a clone of swaylock with duress code support, but as far as I know, nothing of the sort exists right now.

It is also very much worth noting, even though the FBI never got into the hackers’ computers, they had more than enough evidence to convict the lot. Being the defender of a computer system is always a losing battle.

This isn’t exactly new. And it didn’t end well in the past either. After the completion of the Manhattan Project, a number of private entities begun building plutonium weapons. Notably, Rockwell International (yes, that Rockwell), ran a site outside of Denver called Rocky Flats. Ended up being one of the worst ecological disasters in American history. Plutonium will catch on fire, so there were a number of plutonium fires at the plant, but that wasn’t the worst of it. Their disposal and treatment techniques were woefully inadequacy, and untold amounts of plutonium leaked into the environment. The EPA, CDPH, and DOE all knew about the process and did nothing. The FBI had to step in and raid the plant, and even still, it ran for years during court proceedings. Rather conveniently, those court documents were sealed, and later lost.

What is new here is the fact that the Trump administration already plays fast and lose with the rules. Moreover, random tech billionaires have no right so much as looking at the most dangerous substance in the world, weapons grade plutonium. So to say this will end poorly would be the understatement of the century.

P.S. Highly recommend reading up on the history of the DOE. The story of Rocky Flats, the national labs, and nuclear weapons program is so much longer and wilder than what I could put here.

I bought a 26" new a couple of years ago (well, a dirtjumper), one of my all time favorite bikes!

Absolutely agree. More I said that because it explicitly pisses off the CCP.

Wonder if the boot device died. Behavior is in line with some NVMe failure modes I have encountered.

LMFAO! The whole thing is some doublethink BS, but this line really got me!

The court noted that the Commission had failed to take into account that ⁠private ​jets could be flown ​on sustainable fuel.

Hello Chinese state-actors, I hope this message finds you well: Free Tibet! Free the Uyghurs! Taiwan is a sovereign state! The nine dashed line is bullshit! China is a capitalist fascist state!

I release it back in the wild. It’s not giving it away or selling it if it “runs away.”

When I first heard the term, I expected some real Nile Blue turning cardboard into estrogen type shit.

Me, earlier today, referring to Niri as a desktop instead of a “window manager,” which is also wrong as it’s a Wayland compositor.

Can I join in on this dream? Aerospace really tickles my fancy, but it feels impossible to get a job in it that’s not destroying the environment and/or making bigger bombs.

Yeah, I’m in that boat. I did have some sugar, but it was extremely rare, and IIRC got phased out more as I got older. I don’t think it was ever a hard rule of “no,” but more of a “have very little except maybe on special occasions.” I never developed much of a taste for sweet things to the point I quite often find muffins for scones unreasonably sweet. When I was doing mountain bike races, I had energy chews and bars. In hinds sight, that was probably a poor nutrition choice for my metabolism, and I now I simply have roasted and salted pistachios, with a sugar free electrolyte mix before and/or after the ride.

I also very much seem to be the exception here. Probably my experience more comes down to my own eccentricities. I have the eating habits and body type of a distance athlete; healthy but low weight, diet consisting largely of slow-burning foods like nuts, fruits and starchy vegetables. I am still figuring out what diet and training routine works best for me, but sugar, even as a mid-ride fuel is a hard no-go for me. I like putting in the work to be able to do extreme sports like mountain biking and snowboarding at a reasonably intense level all day long. I listen to my body and I know without a shadow of a doubt touching high sugar and certainly processed foods is not worth it by any means.

If I had a nickle for every cold-war era strategic bomber that crashed yesterday… I would have two nickles. Which isn’t a lot, but it’s weird that it happened twice.

Guns, germs, steel and… paper?

37 mentioned!

*me resisting the urge to create a 10 page long paper on helicopter engineering*

I have some wild helicopter watching stories. Best would probably be when there was a small wildfire a few miles away from my college. I was watching the flight tracker and saw them pull in a Huey and Blackhawk, and tracked down exactly where they were collecting water. Ditched class and went to watch them. They let us get like 100ft away from these ridiculous massive machines as they were taking on water. At one point, the Blackhawk pilot started playing chicken with us, trying to see if he could knock us off the hillside, LOL. Even still I will go out and watch most helicopters.

Yeah, totally see it now. Woops.

I did know the addition of Revelation was controversial, but I never considered that it’s the only part of the New Testament that’s not strictly philosophy. The irony of Revelation seems to be that its prophecy (and warning) almost fulfilled itself. By having this tale of Armageddon, you give the false profits the amo they need to deceive the people.

Are you referring to my questionable font choice? IDK about the left-hand side of the image, I just downloaded the template but it looked right to me, all I did was add in the text, as one is want to do with memes.