NGINX developer Igor Sysoev's former employer Rambler Group has entered a claim to ownership over the software's codebase leading to a police raid on NGINX's Moscow offices (archived). NGINX was initially released in 2004, and Sysoev started a commercial venture around the code when he left Rambler Group in 2011. When San Francisco based F5 networks spent 670 million USD to acquire Sysoev's firm earlier this year, it seemed to raise issues with Rambler's management as to what exactly Sysoev had been doing while on their payroll.
Monthly Archives: December 2019
Hell Freezing Over: AFL-CIO Endorses Trump Trade Agreement
AFL-CIO boss and de facto leader of the US labor movement Richard Trumpka announced this week that the organization would be endorsing the trade agreement US President Donal Trump has pushed as a replacement for NAFTA (archived). As Pantsuitist opposition candidates challenging Trump continue to wank over intersectionality and other matters of concern only to ever smaller interest groups, the local labor movement's pivot towards Trump and MAGA suggests the leadership is catching up to their critically endangered blue collar membership's preferences.
Greek Government Introduces Fines For Not Spending Income Electronically Through Captive Channels
The criminal organization calling itself the Greek Government is mandating that 30% of all income be spent through electronic methods with Greeks that refuse to do so being fined 22% of their shortfall (archived). The government is nominally pursuing this draconian measure impair the actual Greek economy that the Government criminals have been shut out of while at the same time trying to force activity to pick up in the much smaller portion of the economy that the Government has captured. Can you see the tyrants unmasking themselves yet? Sorry for your loss.
One Week After Grave Vulnerability Revealed, WireGuard Moving Into Linux Kernel For 5.6
Linux kernel network stack maintainer and GCC steering committee member David S. Miller has committed WireGuard VPN into the net-next tree all but assuring that the VPN software will become part of the Linux 5.6 kernel release (archived). This comes less than one week after revelations that most VPN implementations, including WireGuard, are vulnerable to session hijacking on most *nix network stacks. At this time WireGuard is being implemented into kernel as a standalone module with CONFIG_WIREGUARD and CONFIG_WIREGUARD_DEBUG menu options.
Linus Torvalds stepped down from his former position actively shaping Linux kernel development back in September 2018 after he took his intersectional daughter's suggestions seriously.
Saudi Air Force Lieutenant Shoots Up Naval Air Station Pensacola
A Saudi Air Force Lieutenant assigned to US Naval Air Station Pensacola reportedly killed 3 and wounded 8 before being gunned down by local police (archived). Six Ten other Saudi nationals were taken into custody (archived). Three of the detained Saudis allegedly filmed the assault. The late Mohammed Saeed Alshamrani published something resembling a manifesto on Twitter declaring his hatred for American crimes against Muslims and humanity several hours before commencing his attack.
Alshamrani was 9 months away from completing a three year "Foreign Military Sales training program" purchased by the Saudi government.
Oracle Sues US Department Of Labor Over Existence Of "Administrative Courts"
Oracle is suing the USG Department of Labor over the existence of the Department's "administrative courts" where Oracle is being sued for alleged pay discrimination (archived). Since 2017 the Department of Labor has been suing the firm over an alleged 400 million USD underpayment of wages to women and colored people. Oracle's response this week raises the Department's stake in attempting to innovate new common law by cutting at the dubious constitutional legitimacy of the administrative court itself.
Unnamed "experts" inside the zone are writing off the possibility Oracle's suit suceeds in trimming the US federal bureaucracy as "unlikely" in comments to Pantsuitist media though in a common law system, anything can happen without regard for what the laws actually say. An Oracle win would gut this particular system and provide precedent for cutting at numerous other "administrative" dockets.
VPN Breaking Zero Day Effective Against Many *nix Systems Burned
A zero day that allows nearby network actors to detect and inject payloads into VPN tunnels has been revealed (archived). All VPN implementations appear to be affected including allegedly "hardened" ones like WireGuard and IKEv2/IPSec while the vulnerability hits numerous *nix TCP/IP stacks including those by Apple, Google, OpenBSD, and Linux. Linux appear to be most gravely affected when running versions of systemd published after November 28th, 2018 when the default "reverse ip path filtering" default was changed to more easily facilitate hijacking VPN sessions in this manner.
The original disclosures to the Openwall oss-security mailing lists are presented in full below: Continue reading
Some Key Stealing Libraries Found in Python Package Index
Two key stealing libraries were found in the PyPi Python Package Index (archived). One mimicked the dateutil library by prepending a "python3-" so that suckers could stumble into python3-dateutil. The other, mimicked the jellyfish library but swapped a lowercase L for a capital i. Both were allegedly uploaded by the same user and exfiltrated data to the same destination. This is not the first time PyPi has had to remove malware mimicking popular packages, but they remain open to all comers and continue to exercise little actual control over the namespace they index.
Chicago Police Chief Fired
Chicago Police Chief Eddie Johnson was fired by Mayor Lori Lightfoot today (archived). Allegations of deception concerning an October episode where Johnson was found sleeping in his car are being presented as the reason for his firing. Johnson had already been scheduled to retire in several weeks. Anything less than a felony conviction will preserve the burden he presents to the insolvent pension system in Illinois.
Notably Johnson was the highest level official in the city of Chicago advocating for the prosecution of hate hoaxer Jussie Smollet. Instead, the 16 felony charges Jussie was indicted for by a Grand Jury were administratively dropped.
Montevideo Goes To The Beach After Second Week Of Clashes Between Navy And Rebels Leaves Kilometers Of Broken Glass
For the second week in a row Uruguayan Naval forces were attacked by youth along the Rambla Charles De Gaulle in the early morning hours. Roughly 12 hours earlier, the same location had hosted a victory celebration for Uruguay's president elect Luis Lacalle Pou which was attened by several tens of thousand Uruguayos and Uruguayas (archived).
The violence allegedly began as members of Uruguay's Naval Prefectura were providing protection for transit inspectors carrying out a fairly routine operation. The mood of this sort of operation in the past has usually been rather jovial with youth in attendance laughing at the misforune of their compatriots suffering the indignity of seeing their ambiguously owned and dubiously roadworthy vehicles hauled away on flat bed trucks. This time the transit inspector's naval protection force was met with rocks and bottles thrown by rebels who escaped naval jurisdiction by crossing the street and continuing their campaign of destruction before scattering. Continue reading