purple-dragon (u/purple-dragon)

purple-dragon commented on OBS Studio Gets a New Renderer obsproject.com/blog/obs-s... · Posted by u/aizk

29athrowaway · 3 months ago

If you are

- recording your screen but not streaming

- you are not customizing what goes into your screen

Then use something else. GPU screen recorder has a lower overhead and produces much smoother recordings: https://git.dec05eba.com/gpu-screen-recorder/about/

purple-dragon · 3 months ago

The linked post is about a new Metal-based renderer for OBS Studio on MacOS. The software you linked is for Linux.

purple-dragon commented on Debugging operating systems with time-traveling virtual machines (2005) [pdf] usenix.org/legacy/events/... · Posted by u/Intralexical

roca · 2 years ago

I wonder if this inspired the VMWare VM record-and-replay functionality that came out in 2008. They discontinued it in 2011, but it's important to me because we used it at Mozilla to great effect and that made it easier for me to get Mozilla to support the development of rr, which started in 2011.

purple-dragon · 2 years ago

Yes. There’s a whole family of papers by Chen, his students, and other VMware folks in this vein.

purple-dragon commented on Don't use pixelation for redacting text (2022) bishopfox.com/blog/unreda... · Posted by u/bookofjoe

maicro · 2 years ago

Got it, use fixed-width fonts for everything.

purple-dragon · 2 years ago

That would make it even easier to determine the length of the redacted word.

purple-dragon commented on Don't use pixelation for redacting text (2022) bishopfox.com/blog/unreda... · Posted by u/bookofjoe

atommclain · 2 years ago

I have a vague memory of someone being able to fairly accurately estimate redacted words and phrases in a government document by using the size of the blacked out portion along with the font metrics. I think the safest way to redact text would be to first normalize it all to the same text (maybe something like "etaoin shrdlu" from the hot type era), then black it all out, then there would be even less information leaked.

purple-dragon · 2 years ago

You are correct. Font character-width analysis + NLP = Exposure

purple-dragon commented on Don't use pixelation for redacting text (2022) bishopfox.com/blog/unreda... · Posted by u/bookofjoe

thecosas · 2 years ago

The biggest pixel is a black box over the entire word :-)

purple-dragon · 2 years ago

It's still not a good idea. Analysts may attempt to de-cloak the word with varying degrees of success by analyzing the width of the redacted word against font character widths and using techniques from the study of Natural Language Processing to identify likely word candidates that fit in context (e.g., with respect to the rest of the sentence or document).

purple-dragon commented on How to reclaim disk space used by Docker volumes, but keep a few important on domm.plix.at/perl/2020_06... · Posted by u/todsacerdoti

devmunchies · 6 years ago

How do I view server logs in real time while developing if daemonized (while preserving all the colorization and stuff). Do I just do some kind of tail log stream or something?

purple-dragon · 6 years ago

I think it would just be:

  docker logs -f CONTAINER

If you want to watch logs from a specific file within the container then I would just use 'docker exec' and whatever shell commands you prefer.

purple-dragon commented on Zoom Acquires Keybase keybase.io/blog/keybase-j... · Posted by u/vikram7

albedoa · 6 years ago

You said that those things are theater until the day the product updates. We are beyond the day when that happened. So for it to be a fallacy you have to reject the context in which it was presented, which nobody but you is doing.

purple-dragon · 6 years ago

It's a SaaS world, baby. Product updates (can) happen everyday. I'm not sure what that proved.

purple-dragon commented on Zoom Acquires Keybase keybase.io/blog/keybase-j... · Posted by u/vikram7

ViViDboarder · 6 years ago

I am not looking for you to concede anything. You said nothing has been done to show you that the calculus of their priorities has changed and I listed some things that could possibly show that. It’s up to you if you believe that is significant enough to convince you.

Frankly, I don’t care if it does or not. I was just providing some visible signs of investment.

purple-dragon · 6 years ago

I didn't see you respond to my comment in this thread unless you post under two different accounts.

purple-dragon commented on Zoom Acquires Keybase keybase.io/blog/keybase-j... · Posted by u/vikram7

wutbrodo · 6 years ago

Just as your comment was aiming to narrowly point out a logical fallacy in the parent comment, I'm pointing out a flaw in your own: I disagree with your claim that investing in security practices is just theater, and that more concrete efforts in the same direction are irrelevant. The concrete efforts are Bayesian evidence that the newer investments are more than theater.

purple-dragon · 6 years ago

I didn't claim that. I believe in investing in security. I'm a security professional.

purple-dragon commented on Zoom Acquires Keybase keybase.io/blog/keybase-j... · Posted by u/vikram7

wutbrodo · 6 years ago

Sure, but it's not "on its own", it's in the context of the investment in security mentioned by the parent comment.

purple-dragon · 6 years ago

At this point, I'm confused, and I'm not sure what point you or the other commenter are looking for me to concede. Zoom is paying some security consultants, pushed out some product updates, and bought Keybase, so it's a story book ending?

u/purple-dragon

KarmaCake day203October 10, 2016View Original