MISSION: Save Myrient (https://myrient.erista.me/)

DEADLINE: 30 days.

HARDWARE:
- 2500 USD:
--- 1 x Supermicro SSG-6029P-E1CR24L [1]
- 10600 USD: (20 x 530 USD)
--- 20 x HDD 3.5 Seagate Exos 24TB

SOFTWARE:
- FreeBSD along with redundant ZFS (RAIDZ2 or DRAID) with ZSTD compression

TOTAL COST:
- 13500 USD

Maybe some company come with the needed budget.

I can do the FreeBSD/ZFS part for free.

[1] https://ebay.com/itm/375757742355

IRC made me do #curl

https://youtu.be/ohzzGy5K9Dk

I said it before: scale matters, even for digital/intellectual property.

"Careless big-time users are treating FOSS repos like content delivery networks"

https://www.theregister.com/2026/02/28/open_source_opinion/

Illustrative joke:

Little girl: Ice cream man, how much is for an empty cone?
Ice cream man: Oh I'll give that to you for free :)
Little girl: Great, then I'll have 5000 empty cones!

Of course, LLMs are another example of this phenomenon.

Tired me: shit my code doesn't handle this special case, how could I be so stupid?

Me after sleep: The code actually handles the special case, I just commented out the relevant part for some reason...

Also #ProTip: Always `git status` after getting back to your after some time

If I use a LLM on a tiny bit of a 0day exploit, is that an AI enabled cyber weapon?

[RSS] Total Recall - Retracing Your Steps Back to NT AUTHORITY @MDSecLabs

https://www.mdsec.co.uk/2026/02/total-recall-retracing-your-steps-back-to-nt-authoritysystem/

New #NameThatWare challenge. I did repair this today at work.

Please hide your deductions and guesses behind a CW to not spoil it for others. Googling is fair game.

Please don't just write a single word as answer, instead describe your observations and deductions so we all can learn about electronics.

If you are familiar with this kind of device, try to figure out the specific make and model instead of just saying something like 'Audio amplifier'.
Solution will be posted on Monday.

This should be obvious for everyone by now, but if you're not from US you must assume that all your use of US AI services (#ChatGPT, #Claude, #Gemini etc) is fed directly to US intelligence services.

"We may share your Personal Data, including information about your interaction with our Services, with government authorities ... in compliance with the law (i)" (OpenAI)

"We may disclose personal data to governmental regulatory authorities as required by law" (Claude)

"We will share personal information outside of Google ... to: Respond to any applicable law, regulation, legal process, or enforceable governmental request" (Gemini)

The amount of valuable information fed to the systems voluntarily is staggering. It's not a matter of "if" it is happening, but "of course it is". It would be outright negligent if they weren’t capturing and disseminating it all.

https://en.wikipedia.org/wiki/Foreign_Intelligence_Surveillance_Act#Without_a_court_order

#privacy

"Never have, never will." Promise, shmomise.

This is some bullshit, Mozilla.

https://github.com/mozilla/bedrock/commit/d459addab846d8144b61939b7f4310eb80c5470e#diff-a24e74e4595fa85440a2f4e7e5dcfe68aba6e1e593aef05a2d35581a91423847

And the explanation is bullshit, too, and sounds rather annoyed at having to explain to us silly users that *of course* you have to "share some data with our partners".

https://blog.mozilla.org/en/firefox/update-on-terms-of-use/

A very good use of Gorton.

*long drag on cigarette* Kid, this is Mastodon. We're all the algorithm here. You. Me. Everybody. Now get out there and boost somebody's bullshit.

Team member @sigabrt was able to bypass Apache FOP Postscript escaping to reach GhostScript engine.

https://offsec.almond.consulting/bypassing-apache-fop-escaping-to-reach-ghostscript.html

In case anyone was still under the assumption that US Big Tech and the Trump regime aren't one and the same:

The US has ordered its diplomats to lobby against EU attempts to regulate US tech companies 🚨

We need ethical open alternatives.

https://www.reuters.com/sustainability/boards-policy-regulation/us-orders-diplomats-fight-data-sovereignty-initiatives-2026-02-25/

[RSS] From DDS Packets to Robot Shells: Two RCEs in Unitree Robots (CVE-2026-27509 & CVE-2026-27510)

https://boschko.ca/unitree-go2-rce/

A tale in 3 pictures. In which our hero wonders if he can and doesn't stop to ask if he should.

#c #programming

[RSS] Building a Custom Architecture and Platform: Part 2

https://binary.ninja/2026/02/26/quark-platform-part-2.html

#BinaryNinja

[RSS] Reverse Engineering Garmin Watch Applications with Ghidra

https://www.anvilsecure.com/blog/reverse-engineering-garmin-watch-applications-with-ghidra.html

[RSS] Buy A Help Desk, Bundle A Remote Access Solution? (SolarWinds Web Help Desk Pre-Auth RCE Chain

https://labs.watchtowr.com/buy-a-help-desk-bundle-a-remote-access-solution-solarwinds-web-help-desk-pre-auth-rce-chain-s/

[RSS] Intego X9: Why your macOS antivirus should not trust PIDs

http://blog.quarkslab.com/intego_lpe_macos_2.html