Infosec Lurker | Technical Debt Collector
It's not for fun, or any sense of community.
It's just trying to dull the pain.
| Pronouns | he/him |
This BIQU Microprobe fucking sucks, every few prints the measurements are so phenomenally off in some areas the nozzle is scraping over the plate. π
Is there some good extruder design for the Anycubic i3 Mega (or another i3 design I could modify easily) that features the more modern, more accurate sensors where it measures pressure on the nozzle instead of with a probe? At this point I'd rebuilt this once more, I don't want to constantly have my build plates & nozzles destroyed.
#3DPrinting
Just to clear up some misinfo circulating, a BGP hijack was not the cause of
Cloudflare DNS going down today.
At 21:51 UTC, Cloudflare (AS13335) withdrew both 1.1.1.0/24 and 1.0.0.0/24 for an unknown reason.
I suspect AS4755 was always announcing 1.1.1.0/24, when CF went away, it leaked a bit (i.e. "%2").
https://infosec.exchange/@GossiTheDog@cyberplace.social/114854023690856642
relevant items from the bill of materials for RC2014 VGA terminal:
https://rc2014.co.uk/modules/pi-pico-vga-terminal/
1 Raspberry Pi Pico (on hand)
1 RA VGA socket (purchased)
components to confirm on hand:
1 47uf 25v electrolytic
3 8k2 resistor metal
3 3k9 resistor metal
3 2k resistor metal
6 1k resistor metal
3 510 resistor metal
2 47 resistor metal
1 1N5817 Schottky Diode
1 10k resistor
1 22k resistor
TCS? Is that the same...
Yes, it is.
Their contract renewals will be interesting in the next year.
@GossiTheDog @ssamulczyk "alliance" does not mean that they are the same company, Tata Communications and TCS have separate CEOs, separate boards, their employees don't interface with each other
(and to be honest, most that is on their public pages is pure marketing)
@athos @GossiTheDog @ssamulczyk
Or to anyone else for that matter. π
Lately it seems we need that "It was DNS" meme to come with subscript that reads "probably due to BGP".
@DJGummikuh @GossiTheDog @ssamulczyk BGP has no real validation mechanisms for who can advertise which prefixes. There's some stuff bolted on top to help with that but none of it is mandatory, so none of it really protects those IP ranges.
It's all cooperative, basically. Runs on goodwill.
@sambowne @GossiTheDog @ssamulczyk "Cloudflare said that there is an issue with the 1.1.1.1 public resolver, which resulted in many websites hosted on its server being down"
Websites hosted on a DNS resolver... (In the traditional media, anyone can write anything, even without knowing the subject.)
@GossiTheDog I used to follow the BGP sites which list changes. The funniest event was seeing China steal routes to a US business, and seeing the US military steal it back within minutes.
The cyber war is real, fierce, and a spectator sport.
@GossiTheDog @ssamulczyk Ah, the bodacious Tata's are at it again.
(ICANN had to deal with them in the domain name context when they got ticked off at the adjective I used in the prior paragraph.)
@aly @GossiTheDog @ssamulczyk Sure! So Tata (insert reason X) decided to tell the world they were the way to get to 1.1.1.0/24 network, which includes the host 1.1.1.1, Cloudflare's DNS IP. And so the internet listened to Tata and starting updating everyone that they should start sending all the requests for 1.1.1.1 via Tata's network INSTEAD of Cloudflare who is the owner of that "network prefix". There are nerd knobs to turn and encryption which can prevent this, but after literal decades still hasn't been done.
This kind of thing happens much less than the past, but the effects are much larger as the internet is much larger now. Malicious actors like to do it for profit.
For more technical details, this article does a good job explaining: https://www.kentik.com/kentipedia/bgp-hijacking/
The irony behind this Cloudflare site is too much: https://isbgpsafeyet.com/
On the Internet, network devices exchange routes via a protocol called BGP (Border Gateway Protocol). Unfortunately, issues with BGP have led to malicious actors being able to hijack and misconfigure devices leading to security problems which have the potential to cause widespread problems. BGP security can be greatly improved by using technologies such as RPKI to sign Internet routes. This page attempts to track the progress of major Internet players (ISPs, transit operators, and content providers) in their progress to adopt RPKI and other technologies.
@jonw @GossiTheDog @ssamulczyk "Your ISP implements BGP safely. It correctly drops invalid prefixes."
Yay!
@GossiTheDog @ssamulczyk 1. TATA COMM and TCS are separate companies.
2. Cloudflare withdrew both 1.1.1.0/24 and 1.0.0.0/24 announcements due to an unknown reason. So its THEIR fault.
3. The BGP hijack you see is most likely due to a downstream customer of AS4755. Again the outage **isn't caused by TATA** it is caused by Cloudflare themselves.
4. TATA's Tier1 ASN AS6453 filters invalid ROAs but their domestic AS4755 doesn't.
Natasha Nox πΊπ¦π΅πΈ
cR0w 
Doug Madory
People's Permacomputer Project
Kevin Beaumont
Andrew 
greem
Athos
Mark Bryant
Fennix
Hugo Slabbert β οΈ
GrumpSec Spottycat
Sebastian 
aburka π«£
Simon
JP
Eric Goodwin
RootWyrm πΊπ¦
Leak
DJGummikuh
GeneralX β―οΈ
Daniel β
Karsten Johansson
Max Resing
Big Kumera Energy
Hey Gus
Nicolas SAPA 
Sam Bowne 
StΓ©phane Bortzmeyer
slash
Victor Oxyrhynchus
Jay Thoden van Velzen βοΈβπ‘οΈβ
Vicente β
Karl Auerbach
Scio
π± Alyssa π³οΈβπ
Pauliehedron β
βββββ ΚΟΙ³Ο βββββ
Secret Squirrel
Offbeatmammal
Merospit
Sunil
Dreaming of dad jazz.
Shrirang Kahale