FrantaH's comments

FrantaH | 7 years ago | on: Michael Pollan on Psilocybe Azurescens

Yaeh, it made me subscribe to audible and listen it for free: https://www.audible.com/pd/Bios-Memoirs/How-to-Change-Your-M... I enjoyed the book, but the claim that quantum physics might suggest that matter can have mind (because of wave particle duality) kind of killed it for me. Also, I don't find opinions of proponents of https://en.wikipedia.org/wiki/Trepanning very relevant. But it's a nice overview of history of psychedelics and introduced me to some fascinating figures, e.g. https://en.wikipedia.org/wiki/Alfred_Matthew_Hubbard

N.b. Pollan presents his subjective experience. If you liked it, you will love reports on https://www.erowid.org/ and there's a lot of information on https://psychonautwiki.org/wiki/Main_Page if you decide for firsthand experience.

FrantaH | 7 years ago | on: Another flaw in Signal desktop app leaks chats in plaintext

It's mind boggling why messaging app has 181 MB.

FrantaH | 7 years ago | on: EFail – Vulnerabilities in end-to-end encryption technologies OpenPGP and S/MIME

Check RFC2634 before you abandon S/MIME. Triple wrapping solves surreptitious forwarding, which is how this attack works. Sadly AFAIK it's implemented only in Trustedbird.

FrantaH | 7 years ago | on: EFail – Vulnerabilities in end-to-end encryption technologies OpenPGP and S/MIME

"To decrypt the emails, he first manipulates their ciphertext by using appropriate malleability gadgets." - so if you use triple wrapping as per https://www.ietf.org/rfc/rfc2634.txt you are safe. e: To make the claim more precise: you must drop messages which are not triple wrapped and those which are triple wrapped, but inner signer is different from the outer signer.

FrantaH | 7 years ago | on: A new set of vulnerabilities affecting users of PGP and S/MIME

Ok, healthcare messaging in US is based on S/MIME (http://wiki.directproject.org/). According to EFF, it should be shut down now?

FrantaH | 7 years ago | on: Health dangers of sleep deprivation

I wish there was a transcript, it was really full of interesting facts. I personally have a tinnitus so lack of sleep is big a issue for me so I identified myself with a lot of things he said. I'm happy I discovered Tryptophan lately, it really helped me to get good a quality sleep.

Btw, another great episode is http://podcasts.joerogan.net/podcasts/peter-attia

FrantaH | 7 years ago | on: Health dangers of sleep deprivation

http://podcasts.joerogan.net/podcasts/matthew-walker

FrantaH | 8 years ago | on: All of Oculus’s Rift headsets have stopped working due to an expired certificate

Wow, thanks to reading HN headlines in the morning I realized my own cert expired at midnight and I was able to fix it without any damage.

FrantaH | 8 years ago | on: Meltdown and Spectre

https://meltdownattack.com/meltdown.pdf https://eprint.iacr.org/2013/448.pdf

TLDR: Userland process' read access to Ring 0 memory will throw an exception (n.b.: kernel mode memory is actually mapped into process' address space), but before that the instruction reading the memory is actually executed and data are cached. The process can use value of data as an address in userland for another read instruction. Now the process just needs to check range of possible addresses where the data was read from and see how long it takes (using rdtsc) to access them - if it's quick, then we have a match.

Is that correct, or am I missing something? e: write changed to 2nd read