[ cyb / tech / λ / layer ] [ zzz / drg / lit / diy / art ] [ w / rpg / r ] [ q ] [ / ] [ popular / ???? / rules / radio / $$ / news ] [ volafile / uboa / sushi / LainTV / lewd ]

tech - God bless the AMD

2nd chances
Name
Email
Subject
Comment
File
Password (For file deletion.)

BUY LAINCHAN STICKERS HERE

STREAM » LainTV « STREAM

[Return][Go to bottom]

File: 1448174131354.png (10.71 MB, 1859x1004, thermoptic.png) ImgOps iqdb

 No.14126

Hey guys.

I recently came across this website, which some of you are probably familiar with -

http://jinteki.industries/index.html

In it there was a link to this website "the gentoomans library" -

http://g.sicp.me/books/

Sounds ridiculous, but having a look at it, there is a huge fuarrrking wealth of knowledge in there. It seems like it would be amazing to add to a collection.

However, I'm hesitant to download anything unless i know it to be safe. I did some searching about the collection, and i found a few people complaining about viruses, others arguing that it doesn't have any viruses, etc, etc. Some of these people might be being truthful, or they could be trolling, who knows.

I'm running Linux which makes it less likely to get viruses, but it definitely isn't virus proof. iirc, there was some recent ransom type of virus that went around encrypting people's soykaf and demanding bitcoin in exchange the key to decrypt your stuff.

This kind of thing seems too good to be true, although I've seen many say good things about it.

Anyone here have experience with it? Seems like a goldmine for learning material, although again, I'm not so sure if i can trust the source.

What are your thoughts?
>>

 No.14131

There are a few viruses in it, but nothing you won't find with a virus scan. Otherwise, it is great. If you don't like that site, you can probably find a different torrent of it.

>>

 No.14132

>>14131
It's not that i dislike the site. I don't know much about it other than it seems popular on 8ch /cyber/ and /tech/ boards.

Is there another place in particular you would recommend downloading it from?

>>

 No.14133

I think you'll be safe if you use a non-standard (i.e. not Adobe's) PDF reader. I don't think anyone would waste time on finding exploits in other PDF readers.

>>

 No.14135

>>14133
Are viruses found frequently in PDF files?

I'm interested to understand how that works. it looks for vulnerabilities in the reader?

Would something like evince do? Maybe zathura?

What if i sent some of the PDF files to a tablet device?

This is kind of confusing me, but i find it interesting at the same time.

>>

 No.14140

>>14135
>Are viruses found frequently in PDF files?
I would think it depends on where you get them.

>I'm interested to understand how that works. it looks for vulnerabilities in the reader?

Typically, yes. Readers can be vulnerable to uncommon declarations and whatnot.
Adobe readers even let PDFs execute Javascript.

>Would something like evince do? Maybe zathura?

I use MuPDF. I don't actually know how it works, but I doubt anyone would bother specifically targeting it.

>What if i sent some of the PDF files to a tablet device?

It depends on the software on the tablet. I wouldn't worry about it, since owning a tablet is already asking for it.

>This is kind of confusing me, but i find it interesting at the same time.

The languages used to denote the formats is what interests me the most.

>>

 No.14141

>>14135
>Are viruses found frequently in PDF files?
I don't think so.

>I'm interested to understand how that works

You can use Javascript in your PDFs, which means there's a Javascript interpreter in (compliants) PDF readers, which means that there'll always be a bug in said intereter that someone dedicated enough could find and use to execute malicious code.
I'm also pretty sure you could do weird things with fonts and execute malicious code too, it has already been done.
The simple answer to this is to use a non-standard pdf reader on a non-standard OS, attackers won't bother trying to give viruses to the 1% of people that don't use Adobe Acrobat + Windows.
>Would something like evince do? Maybe zathura?
YOu seem to be using GNU/linux so you should be safe already.
I have a small preference for mupdf and xpdf, but that simply because they come with really few dependencies.

>What if i sent some of the PDF files to a tablet device?

Again, it depends on the software you use. You're never safe when using a computer, the only solution is to be uninteresting enough for potential attackers.

>>14140
Heh, I your post appeared the moment I was going to click on "Post".

>>

 No.14143

>>14140
>>14141
Thanks guys. I appreciate the advice.

I didn't even know that viruses could be used in PDF files until a couple months ago or so with that Firefox vulnerability involving PDF files.

>It depends on the software on the tablet. I wouldn't worry about it, since owning a tablet is already asking for it.


It was a hand me down ipad 3 gifted from my sister. I can't exactly say no to that. It's undated completely to IOS9 or something. I'm not into apple too much, the only thing i really liked from them were the ipod classic 168GiB models.

All i use the tablet for is reading PDF files for when I'm not with my laptop, and podcasts.

>YOu seem to be using GNU/linux so you should be safe already.


Yes i run Debian on one machine, Although my main Laptop runs Arch.

I know it's a lot safer, but didn't you hear about those ransom attacks specifically targeted at Linux based OS's?

>only solution is to be uninteresting enough for potential attackers.


That's a shame. There is so much material there that I'd love to get. I just go into super paranoid tinfoil hat mode when it comes to things like viruses, even though i haven't had one since i started using Linux.

>>

 No.14144

It's a pretty shitty collection, full of duplicates and low-quality books.

>>

 No.14145

File: 1448183175436.jpg (9.85 KB, 320x320, 11094506_484266415058639_1….jpg) ImgOps Exif iqdb

>>14144
It's the best I've seen out there. Albeit i haven't really seen that many collections before.

>>

 No.14150

>>14144

It's shitty comparing to what library?
You don't even arg right. It's like a kid "i know better than u olol".
Holy shiit dude.

>>

 No.14166

Why download the full archive and not find books as you go along the path of learning?

>>

 No.14176

Wait so this guy is hosting viruses??
What a douche. Stop linking his soykaf here. You're only helping him infect Anons.

>>

 No.14178

>>14132
No, the version I have has viruses, and all the others probably do also. There are a few magnet links floating around that you could try, if they are different from the ones on jinteki and g.sicp.me. 8/tech/ has one on their resources page, and 8/cyber/ has at least one in their data dump thread. I don't know if they are any different from the ones you linked, though.

>>

 No.14186

Took me a few months to put the gentoomans library into Calibre (sorting out covers and metadata) but I finally did it.

Had a few viruses but nothing serious.

>>

 No.14189

File: 1448227361390.png (8.66 MB, 1859x1004, 1448174131354.png) ImgOps iqdb

>>14126
I could not help but notice your png was not optimized lainon.
I have optimized your png.
Your png is now optimized.

>>

 No.14190

>>14189
omg you browse lainchan? hahahaha

>>

 No.14191

>>14190
Occasionally.

>>

 No.14193

>>14189
Thanks.

Although what made it not optimized? I don't know much about images.

>>

 No.14194

>>14176
>What a douche. Stop linking his soykaf here. You're only helping him infect Anons.

In title
>How can i be sure it's safe?

A paragraph
>However, I'm hesitant to download anything unless i know it to be safe. I did some searching about the collection, and i found a few people complaining about viruses, others arguing that it doesn't have any viruses, etc, etc. Some of these people might be being truthful, or they could be trolling, who knows.

>>

 No.14196

>>14193
There was a more efficient way to (losslessly) compress (ie represent) the image data.

PNG compression more or less works like this.
-Every scanline has a filter applied, ideally transforming its data to a more compressible state. Filter 0 leaves the it as is.
-The result is run through a DEFLATE algorithm.

If an image has less than 256 colors, it can be paletted. Which means storing the values in an index (PLTE chunk) in the file's header, then all colors can referenced with only <=8 bits (16 for grayscale with alpha). Some programs do this better than others and sort the index by which colors are most common, or their relative positions, so you'll end up with long contiguous streams of a more compressible pattern. Like 00000000, 11111111 etc. 1 bit per pixel files are possible if there's only two colors. Images can be treated as grayscale, if possible. Empty alpha channels a lot of programs tend to attach, can be stripped.

That's more or less it. With more time devoted to it, your image (which is 48 bpp for whatever reason) could probably be compressed further.

>>

 No.14198

>>14196
you were my favorite meme on /g/

>>

 No.14199

>>14196
I should probably change how my media client takes scrots then.

it is set u like this:

>screenshot-format=png

>screenshot-png-filter=0
>screenshot-png-compression=0

Being honest, i don't understand most of what you said. How should i change these take make it more efficient?

>>14198
So that was just pasta? If so, i haven't seen pasta like that before, although if it is, it kind of reminds me of the /mu/ one on Flac.

>>

 No.14201

>>14199
it isn't pasta. it is one dude who optimizes peoples png's

>>

 No.14202

>>14199
What client are you using?

>screenshot-png-filter=0

Can't say much without knowing how it works (or what library it uses for compression / handling formats). png uses 5 filters (0-4). Using a single filter is usually not the best approach. Look through the documentation for if it'd treat "5" as a mixed mode.

>screenshot-png-compression=0

It probably uses zlib for compression. The setting likely accepts 0-9.

>>

 No.14203

File: 1448234874441.jpg (62.8 KB, 566x433, 1444579624739.jpg) ImgOps Exif iqdb

>>14131
>>14178
>>14186

You guys are seriously okay with downloading viruses?

>nothing you won't find in a virus scan


How do you know? Your scan may have found 99% of them, but that %1 could still be there, waiting for the perfect opportunity to gain root access and add you to some corps botnet.

How are you guys okay with that?

>>

 No.14205

>>14202
MPV

It seems to be one of the more popular clients these days. I was clueless that it even had a config file until about a week ago even though i had been using it for months.

>>

 No.14212

>>14203
It's pretty old I think, so most of the exploits are probably publicly known. Also, I will never read most of it, so not many of the files are an actual threat. You can also make it less of a threat by not executing scripts. And what you said can be said of any file downloaded from the internet.

>>

 No.14218

Pssh! Read whatever inside a virtual machine that you regularly cycle and you'll be all good (unless it escalates outside of the VM and gets access to your machine!).

>>

 No.14225

>>14218
I've never had to use virtual machines before.

Any advice on doing this? Any good documentation for doing this? Or is it fairly straight forward.

>>

 No.14227

>>14225 It's incredibly simple! I think that it would be a rewarding experience for you to try to work this out on your own. You could start with Virtualbox, it's free.

Btw when I say 'cycling', I mean creating a 'snapshot' (as they're commonly called) and reverting back to it between sessions.

>>

 No.14352

File: 1448568533984.jpg (26.08 KB, 350x417, L-G.jpg) ImgOps Exif iqdb

I am downloading the whole archive, I don't give a fuuuarrrkkkk!

Hardcore Linux User here, I will notify you others if I find it safe 8-)

>>

 No.14360

File: 1448579374751.png (341.31 KB, 1280x1024, Screenshot from 2015-11-26….png) ImgOps iqdb

>>14352
Still scanning, going to bed now but found one Trojan at least

>>

 No.14361

>>14360
I doubt any of these could actually effect a GNU/Linux system, right?

>>

 No.14362

File: 1448582078597.jpg (6.67 KB, 208x249, 1415418281982s.jpg) ImgOps Exif iqdb

>>14352
>>14360
Godspeed lainon. This is a generous thing of you to do.

Depending on the amount of files infected, do you think you could give us a heads up on which ones to avoid?

>>

 No.14363

>>14361
A few probably can. It's just not as likely to effect a GNU/Linux system compared to a windows one.

Doesn't mean that Linux cannot be infected however.

>>

 No.14369

>>14363
The scary thing about the web becoming the new "OS" of choice is that you can do serious damage even without rooting/getting meaningful control over the system. If an exploit in the browser engine allows untrused code to run with addon privileges you can do all sort of mischief like reading saved passwords and draining your bank account. That's without even user level access, much less root.

It's a brave new world out there.

>>

 No.14374

>>14369
I await the time when every software will be its little sandbox

>>

 No.14382

>>14203
so do you lock yourself in a room all day because you worry going outside will expose you to the small chance you get struck by lightning. or do you not get vaccines because a small percentage of the time they backfire and cause you to get ill?

>>

 No.14397

File: 1448663683427.jpg (79.37 KB, 1920x1080, mpv-shot0032.jpg) ImgOps Exif iqdb

>>14352
>>14360
Did he get killed by the viruses?!?

>>

 No.14407

>>14397
Sorry everyone,

I am not home over the weekend, I will check the rest out when I get home =)

>>

 No.14416

I got the gentoomen library a year ago (maybe more, I'm not sure) and it's pretty outdated. It's nice for entry-level stuff (like programming basics and conceptual soykaf), but you will probably get mad if you're looking for professional knowledge (the most recent android dev book there is aimed at Froyo). Also, I couldn't find any exploit, but I use Sumatra (it has no support on JS or Flash).

>>

 No.14423

>>14416
There is thousands of books on there. They're not all going to be outdated.

Also it greatly depends on the subjective needs of the reader.

>>

 No.14443

why download an archive that you'll probably never read? it's better to grow organically and add books as you go along.

>>

 No.14455

>>14443
Seeding is always a nice thing to do.

>>

 No.14464

File: 1448884427114.png (1.44 MB, 1280x1024, Screenshot from 2015-11-30….png) ImgOps iqdb

>>14407
Ok you all, here are all the infected files.
>>Game Development/Programming/Programming AI by Example Source Code.zip: Win.Adware.Bho-1482 FOUND
>>Misc/O'Reilly Internet Forensics.chm: HTML.Phishing.Bank-162 FOUND
>>Security/Hack_Attacks_Revealed_A_Complete_Reference_With_Custom_Security_Hacking_Toolkit.chm: BAT.FromatC-2 FOUND
>>Security/Gray Hat Hacking~The Ethical Hacker's Handbook, 3e [2011].pdf: Exploit.HTML.MHTRedir-8 FOUND

Happy leeching :>

>>

 No.14466

File: 1448886056431.jpg (99.72 KB, 400x400, 58812669.jpg) ImgOps Exif iqdb

>>14362 I am not sure, but I think you have to install this on your system "Win.Adware.Bho-1482" trough a program to get infected.





>>14464
Conclusion;

I googled for these viruses and they where nothing mayor, and if you are on Linux, smoke a bowl and not give a fuarrrk!

Anyhow I will keep all the malware for learning purposes, they are old as fuarrrk.

>>

 No.14471

we need to compile a textpunk library that's just plaintext .txt files - then you can be sure it's safe with no viruses.



>>

 No.14477

>>14464
>>14466
Thanks man

>>

 No.14491

>>14471
Or, you know, something that's possible to read for any extended period of time.

>>

 No.14523

I'm going run an autistic scan with clamd set to maximum paranoia. Be back in a couple hours.

>>

 No.14525

>>14523

Sorry, wrong thread.

>>

 No.14526

>>14523
>>14525

Nevermind, it was the right thread.

-------------------------------------------------------------------------------

Gentoomen Library/Gentoomen Library/Networking/CSS & HTML/DevGuru_XHTML_Quickref.pdf: BC.Exploit.CVE_2012_4148 FOUND
Gentoomen Library/Gentoomen Library/Networking/CSS & HTML/DevGuru_HTML_Quickref.pdf: BC.Exploit.CVE_2012_4148 FOUND
Gentoomen Library/Gentoomen Library/Programming/JavaScript/DevGuru_JavaScript_Quickef.pdf: BC.Exploit.CVE_2012_4148 FOUND
Gentoomen Library/Gentoomen Library/Misc/O'Reilly Internet Forensics.chm: HTML.Phishing.Bank-162 FOUND
Gentoomen Library/Gentoomen Library/Misc/O'Reilly Internet Forensics.chm: HTML.Phishing.Bank-1195 FOUND
Gentoomen Library/Gentoomen Library/Misc/O'Reilly Internet Forensics.chm: HTML.Phishing.Bank-491 FOUND
Gentoomen Library/Gentoomen Library/Misc/O'Reilly Internet Forensics.chm: HTML.Phishing.Bank-162 FOUND
Gentoomen Library/Gentoomen Library/Misc/O'Reilly Internet Forensics.chm: HTML.Phishing.Bank-1195 FOUND
Gentoomen Library/Gentoomen Library/Misc/O'Reilly Internet Forensics.chm: HTML.Phishing.Bank-491 FOUND
Gentoomen Library/Gentoomen Library/Game Development/Programming/Programming AI by Example Source Code.zip: Win.Adware.Bho-1482 FOUND
Gentoomen Library/Gentoomen Library/Security/Hack_Attacks_Revealed_A_Complete_Reference_With_Custom_Security_Hacking_Toolkit.chm: BAT.FromatC-2 FOUND
Gentoomen Library/Gentoomen Library/Security/Gray Hat Hacking~The Ethical Hacker's Handbook, 3e [2011].pdf: Exploit.HTML.MHTRedir-8 FOUND
Gentoomen Library/Gentoomen Library/Security/Gray Hat Hacking~The Ethical Hacker's Handbook, 3e [2011].pdf: Exploit.HTML.MHTRedir-8 FOUND
Gentoomen Library/Gentoomen Library/Security/Gray Hat Hacking~The Ethical Hacker's Handbook, 3e [2011].pdf: Exploit.HTML.MHTRedir-8 FOUND
Gentoomen Library/Gentoomen Library/Security/Gray Hat Hacking~The Ethical Hacker's Handbook, 3e [2011].pdf: Exploit.HTML.MHTRedir-8 FOUND

----------- SCAN SUMMARY -----------
Known viruses: 4130760
Engine version: 0.98.7
Scanned directories: 224
Scanned files: 3617
Infected files: 7
Data scanned: 50185.34 MB
Data read: 33527.88 MB (ratio 1.50:1)
Time: 4025.752 sec (67 m 5 s)

>>

 No.14534

>>14526
Damn.
Whoever runs that website, fuarrrk you.

>>

 No.14535

>>14534
It's a compilation from different sources, mang. The admin is probably not even aware of the viruses.



Delete Post [ ]
[ cyb / tech / λ / layer ] [ zzz / drg / lit / diy / art ] [ w / rpg / r ] [ q ] [ / ] [ popular / ???? / rules / radio / $$ / news ] [ volafile / uboa / sushi / LainTV / lewd ]