-->

Monday, February 28, 2022

many worded

Before I start this harangue, I want you to know that it is with very creepy feelings that surface whenever someone is super-vague about how technology works, and in meetings we'll never be a part of, someone has said, 

"ah, shit. Fucket, nevermind" or the executive version "Forget it, nevermind"




https://arstechnica.com/gadgets/2021/08/how-to-go-from-stolen-pc-to-network-intrusion-in-30-minutes/

I don't know if you glossed over that blue line but please don't.

It's a cat-in-the-hat-level primer on how to destroy TPM's.

I'm not sure WHY the publisher published it, except maybe he got real tired of Sheldon-level snobs.

I'm still reading the very comprehensible article (that means, if I read slow, it makes sense)

Except for one teeny bit:

If you're using a CPU with an embedded TPM, doesn't that negate some of their doom gloom and nihilism?

I mean, we're all fucked, sure, but hacking into a CPU might be harder than getting into a cheapo TPM-chip.

If this were some class and I were raising my hand, I'd be pissing off the teacher because I interrupted his two-week 500-page lecture,

But yeah, which is better, FTPM vs TPM? Ble-ble-ble (harrUMPH! FOO-bah) AHEM)

just as good (with exceptions) AMD just fine! (on the other hand) (IOW "don't worry your pretty little head" buy Intel)

Guy with accent, Aug 2021

Which is better for hackers, which one is better for you (a non-hacker)?
Why are they pushing the Mysterious "El,"

What is the secret of 'pcr7'?

Who is it for?



Get a cushy job preventing hackers. Leave yourself a back door.
When / if these slenderman-biggiefoot hackers arrive you'll be long gone.
(What?) No they didn't say that, I did.

The cute picture above isn't revealing my thoughts well...an endless committee of elderly know-it-alls are constantly upstaged by younger brighter people.
And if you *hire* these younger brighter people, they'll take your money and run, the punks.
Their friend will write an article about how easily the system was broken into, heaping dung onto the gaping sore of an insult.

Conformal-coat your circuitry (coat it with epoxy, amber, whatever)
Your secretaries will either have wifi and facebook, 
(maybe on their BYO-(trendy name)"D" or they won't, any actual work is isolated, 1963-style.
Fucket, I don't have to be Sheldon to lock down your system.
(OK the trojan-horsies, but whatever)










https://docs.microsoft.com/en-us/windows/security/information-protection/tpm/switch-pcr-banks-on-tpm-2-0-devices, maybe they think it's cute, trendy or badass talking this way.

Or maybe (and this is what they want me to think) I'm so backwards that every sentence sounds like a terrible Algebra teacher

Yeah but How can I identify which PCR Bank is being used??

What we have here, is *failure* to communicate.

I ask,
 "which one,"
 and You respond to which Type (sha-1 or sha-256), as referenced by the hash-algorithms bit-field table 21 of version 1.27 of (o nvm)

My algae-ID is 0xb (11d) so....uh....does anyone care? 

An sha-256 registry which is probably "11" but don't quote me.

And this I need to know, because worlds would collide if I didn't.

pcr7 is or is not active bee cuz.

period.
end of bullshit.
But nooooooo

" Yes, no, maybe" is all that is required, or "Buy *this*. 

https://docs.microsoft.com/en-us/windows-hardware/design/device-experiences/modern-standby-vs-s3
https://docs.microsoft.com/en-us/windows/security/information-protection/tpm/tpm-recommendations

Or in other words, "TPM or FTPM, is there a difference?"
You misconstrue your powers of persuasion, you're no beautiful woman with long black hair and shiny lips, which move and occasionally pucker.
No, you are annoying and write too much.
Is F in the TPM a deal-breaker for *some* things?

And what's all this then about "Modern Standby?"
is it a thing or a myth you fat people made up ("slenderman")

Now I refuse to wax bombastic, you'd make fun.
Is it a *thing* you buy, a technology a company owns, 
A fence to deter bounders and social climbers, I wanna know (for five seconds)
And why is slenderman White and thin, is it more PC to be black and pear-shaped?

Plus, I must know my place in the firmware of life:

Yah, hmm, I "powercfg -h off" because it takes up soo much room on my teeny partition on my 1TB drive.
It's a thing, buy an oversized whatchacall-drive, cut it down or leave it as is and pretend to be decadent.
Well I refuse to be a powershell-puppet, dancing on the strings of those power people.
So they've said, "He's old, he's white, let him lose his 'S0' "
Because, "bleh"
Bleh!!
(What would "Slenderman" say??)
Can I kiss you Now??

"Yew are either a worm or slumming with vermin, either way, do not bother us with your perversions" 


Yew pissants, Yew turkeys.

"working standby" or what I call working-standby, has been around since ages past, it's a way of having fans run while the PC sleeps.
In my case, my PC (this one here, not the ages-past one) will look totally "On", motherboard lights on, BIOS messages on Full, but the screen is blank and my wireless mouse is off (I think).
It's like the proverbial "sleeping with one eye open."
But None of these theatrics matter unless that old Bitch "MSinfo32" is convinced, and I doubt she is.
But that is my next step.
I'm still a cad and a bounder, but I'm a *modern* one, arriviste

I've gotten rid (buried) the others now I'm coming after YOU, "PCR7"
A horse, a horse, my kingdom for a horse

You're welcome but please use the servants' entrance
and you're never allowed upstairs
Welcome, thou good and faithful.
(Prepare my bath, there's a good slave)
Those who never got an AA degree are treated kindly but like dirt.
You need to BUY something, I'm not sure what.
*I* am not worthy, EOT

https://docs.microsoft.com/en-us/answers/questions/630969/tpm-is-not-usable-pcr7-binding-is-not-supported-ue.html
Trying to rise above our station, are we? Weird.
Upgrade or be belittled.

They write the logs (to the tune of Barry Manilow)


They KNOW why, it's a state-secret. You must buy and Join, or be ignored.
If there's an extra key, erase it. write the logs so they can be read by mere humans.
If anyone says 0,2,4 11 is just as good, prove it, delete the hoity-toity bull on PCR7.
But no, this will all be deprecated in a couple years. So this blog will be a cute anachronism to tell kids how hard a time Gramps had.

"You just don't understand me"
"(grr) WHAT do you WANT??!!"



The TPM written by someone who thinks like a woman, plainly states pcr7 is impossible, makes no effort to fix it, and does not say why it's impossible.
O sure, take her side.
it's MY PC, but she has custody.
If the TCG log is invalid:
Disable-enable bitlocker.
The TPM is going bad.
So saith wisdom of the ages, qualified by "But I don't really know"








For the record, the above is useless and pointless, abandon all hope 
(for the record)


Much blather, many long tomes of text, History-of-world-stuff,
Only PCA 2011 certificates need apply, all others are bounders cads and wannabes.

Fine, says everyone and their cat, where are these certificates?




Using ass-pulling logic, I'm gonna guess that when you prepopulate a TPM with keys from your motherboard manufacturer (in the case of a FTPM) you're ruining any hope of being PCR-7 worthy.
The distinction is a subtle one because, you may not be able to trace your lineage back to the Mayflower and PCA 2011, but you can still encrypt a drive (and isn't that what you wanted anyway??)
You won't be able to marry above your station, but you can exist and have some pissant little job somewhere.

There is a succinct procedure to populate a TPM with keys, which I have not found.
That's secret-society stuff, Black-hoods and crows

It *looks* happy, IDK. Lights on, no one home, but that's a biggie guess.


There's this link that does not go into WHY but it's fairly clear about HOW.

1. "Platform" is the new trendy thing to have, it differentiates from the decrepit fogies in "1.2"
2. "Endorsement" is for the paranoid.
3. "Storage", a holdover from 1.2, is feeble and can be disabled.
Now (this here is from me) if two keys conflict as Ms. Feng suggests,
Couldn't we disable part of the hierarchy-trinity to resolve the conflict, and assuage PCR7???

The TPM-preparation program is contradicting itself, as if it had a deep-seated revulsion that was difficult to overcome.
But with "Storage Hierarchy" DISabled, "Prepare the TPM" is no longer grayed out, and "prepare" can proceed, but with little effect.
In other words, everything is going through the motions, but nothing is done.
But PCR-7 is still impossible, which was the whole point of this little exercise.
BitLocker determined that the TCG log is invalid for use of Secure Boot. 
Why, is it pregnant, PMS, Menopause, *what*???
Cancer.
Gotta be.



"make sure it's uefi, make sure it's GPT, uh..............................................................................................................................................................................................................." (dead thread)


Don't care, don't have to.
begone to the outer darkness where others beg
to be bound (but who are not dressed correctly)
The above was unrelated (unless you count the attitude) but Google lumps a very few hopeless responses as answers.
The Microsoft Penguin-lady, the guy with no TPM and no problems "Be at peace"
and a few others not worth mentioning.

At this point I wonder if TPMs are not all equal.
Or if some are lacking something.
If something *should* work but *doesn't*, all the generic platitudes on earth could not make them work any better.
OK I've already read about the guy who experienced this, went out and bought a TPM for a great price, But got nothing for his trouble.
Still, what else is left?

Plus, there's a special file with a very long list of trusted TPM's available from Microsoft.
You can either import stuff piecemeal or gobble up the entire file using a script.
The script won't run (different blog) but you can make it run anyway, after a warning.
Does this file help?

No.

This pointless display should impress at parties but does little else except prove you've been to the swamp and returned.
It's saying, "Interactive users" is wrong, it should be "Authenticated Users," and it is, so
NVM.


Maybe you're getting the point, there are zilllllllllllions of pages with stuff just like this, and ONE of them says *exactly* what to type to get PCR7 going.
Thought I saw it, but it must have been a mirage.
at No comments:

Sunday, February 20, 2022

memory

 A person measures their glucose, gets an injection, then eats.
Or they could just eat.
Or they could have an injection but feel like they just ate.
Or maybe they're curious what their level is, so they measure without eating or an injection.
"Fine," says the world generally, but I don't seem to always (100% for-sure) remember when I've had an injection, based upon my tested level.
It's high for two weeks, then suddenly it's precisely on target or just below.
Did I slip in an extra injection, I might never know, or is my body reacting well to a drug.
Or did I sleep exactly right.

This next bit might be more topical.
OK you don't see articles on google's front page about Thin-Man (wiry-guy, I'll edit this "Slender man") or Bigfoot, but every day you're bombarded with articles some believe to be true, but they say aren't.
Lotsa stuff might be true that isn't, or false because someone said it was. Why are you concentrating on one single subject?
OK two subjects, politics and Covid.
Kids younger than my lighter talk about "Thin man" Thin-something...
You saying stuff in a facebook page doesn't make it true.
But if you wanna end up on Google's front page, make shit up.
(OK maybe I missed the memo about the masterplan)


They should talk more about Slenderman, the Illuminati, what neo-nazis believe, and the old standards like UFO's and the Mormons

The Illuminati is NOT telling you to kill kids

Yesterday I'm reading about Robespierre and the Jacobins in early-modern France.
Now I imagine that somewhere a guy has named himself Robespierre, and somewhere else a group exists today calling themselves Jacobins.
It's tough arguing a point when you don't know if they're recreating stuff from a movie or a popular book, or referring to dead people.

 (That will probably get edited out, unless you understood that there's history, all crap and boredom, and all the recreated Neo-stuff.)

What was more of a Jet flying overhead than a train-of thought, what if Tucker and sarah, and Rupert and Madoff ("Bernie," "Bernie Madoff" (o nvm) all bought those truth-sites pontificating what's true and what isn't, wouldn't "Truth" be skewed? What is truth? said the famous evil-type administrator.
Bespoke(uhh) Trustworthy-looking
Google's front-page comes thru
("Full coverage")





This blog doesn't allow for footnotes, and I'm not sure you'd want any.
Herod
Herod




 (I'm pretty sure there were at least two) was probably a bad guy or a really badly counselled guy.
Evil wife, whorish daughter, etc.













in trying to be judicious he gets maligned more than any local leader in the history of the world (except maybe Jimmy Carter.)
And him washing his hands of the whole matter (of prosecuting Jesus) was taken as an affront to all of christian-mankind.
It's a footnote, but a related one I swear.
You cannot be agnostic about truth, you either believe their truth or yours, and yours is anathema to theirs (and it really pisses them off if you say otherwise)

gastrinoma (lest we forget)

Self righteous people who don't know they're being self righteous, blocking wide aisles, standing on street corners refusing to move 12 inches (or so) or  in cars righteously pissed they might have to steer around you 10 degrees, all this and more relate to the gastrinomas of society.
NVM, if you're self righteous you can bask in your goodness knowing it isn't You I'm remembering fondly in this cryptic little scrawl
So saith

and outdoors in a breeze, when your feet stand their ground self-righteously, in the bitter cold, for a long 90 seconds, you might get hit with a puff (or a covid-type thing)
and so it befalls vaping wretches, the degenerates of society, to apologize in advance for taking a puff
(Am I being a tad self righteous?) (Ahem!) (A-(freaking) HEM!!)


quid est veritas??
(or veritas quod est, or ...)
https://thouarttheman.org/2016/09/10/quod-est-veritas/




I'm not gonna carp on  quid vs quod, but
Fac Iterum!!!

So truth is an adjective, not a thing you can point to.
(Unless we're being all subtle and mystical)
τι είναι αλήθεια, it's all greek to me anyway


Imagine Pontius standing there, a politician ("Prefect,") wondering who to believe.
"What is [the] Truth?" Not some existential statement scholars would pore over for centuries.
I'd rather study "Alice in wonderland" and tweedledum and Tweedledee, contrariwise.















.
Patton's sermon about the Carthaginians and their war makes a really good footnote,
But I am severely unqualified, except maybe that some teachers in school make you learn briefly what the Punic Wars were and where Carthage was.
To save you tons of misery, "Carthage" is "Tunisia" And IDK who the Punic's were.
Where was GC Scott actually standing when he waxed poetic about Carthage?
I'll go look. 

So he wasn't in some drained-swamp in west-Virginia, next to plastic Legos, he was actually close to Carthage (Tunisia)


Thoroughly obfuscated per usual
Phoinix, Poenus, Punicus, Fucket, let's all say "Punic"

And Pilate and his minion Herod were on the opposite end, in a conquered and forgotten backwater town (I made that up but I'll bet it's true)




























at No comments:

Monday, February 14, 2022

Bitlocker, neverending Story (Part 3)

 This might get edited heavily over the next few days.

All I want to say NOW is, without "Legacy" usb-support, no boot drives from USB will work, and the CDROM-drive is useless.

A thousand-guesses came up with this answer (so it could have been other bombastic stuff too, but this selection in BIOS was the only thing that finally worked)


Yes, I reinstalled, yes, Magician says the drive is already "ready" for encryption, but no, it is not actually encrypted, yet.

I wanted to sandwich-in a question about Samsung-Magician, This seems like a good spot.

OK, WHY does their little software-program have to run all of the time? It's creepy.
If it actually did something besides monitor a single drive (of two) no one told me. Yet I'm afraid to disable it, in case I get some hidden benefit they were unclear on, like maybe better encryption.

Not that I'm jumping the gun, champing-at-the-bit, creaming to get it encrypted...

I'm being modern, and a proper guest at parties (so far), not an actual encrypter, not yet. (There is no acceptable word meaning, "A person who encrypts" 

FURIO, spellchecker
https://msrc.microsoft.com/update-guide/en-us/vulnerability/ADV180028

SED drives (Hardware encryption) are vulnerable drives, and one should use software encryption.
*Why*, I don't know.
That whole tcg 2.0 and ieee 1667, is that software encryption??
Would/will sims work better using software?
Please remember, this computer had the system partition encrypted already but the game "sims 4" ran very slowly. Any re-attempts will follow advice, like using "Software encryption" if it is a choice.
Manage-BDE -status
No one is stating soft/hard or IEEE-anything
Interesting Link

I'm not sure about this next paragraph, so I'm guessing:
The TPM is protecting your PC. If you've backed up your key, um, and don't have a computer to read the text file with your key in it, Then you're screwed. 
But wait, Normally you won't need a key because your TPM is vouching for you, unless maybe you've replaced your CPU (with the TPM in it), or your motherboard (but my TPM is in the CPU, not the motherboard, but nevermind..)
OK so you need a place to stash your Backup text-file with your key in it.
Everything else being equal (your computer has the same ID) then you would hand-type your key into a warning prompt asking for it.
So where to put this text-file?
I think it could be printed, or put onto another computer, or backed up to your microsoft account.
All these solutions are wimpy ones. I mean, anyone with access to your microsoft account could read it, anyone with access to your workspace could read the printout, 
and anyone with access to your phone (for an example) could read the backed up text file on your phone.
If you live next to hackers you're mostly screwed.
you *could* memorize the twenty forty-eight (I can't really look right this second) -digit key, and eat the printout, and destroy the file, hmm.
https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings is an impenetrable jungle. But it explains "Identification field," kind of.
In a perfect-world, only drives that had the identification field of family and friends could be attached to your computer, and all others would be rejected.
Yeahbutt... I missed the class on how to add an identification-field to a drive.




ATA password,wut?
https://www.reddit.com/r/thinkpad/comments/acbyrm/best_full_disk_encryption_setup_for_new_samsung/

ATA passwords are weak, useless: https://security.utexas.edu/education-outreach/BreakingATA
OK, I think I have enough conflicting information to dive off of this cliff.

Msinfo32 is unmoved, (the witch)

So now I went and ran sims 4, and it seemed fine, great.


This bottom line to all this encryption-stuff is, although people get very specific with the type of encryption you should use, there are no indicators
 (from Samsung, from Microsoft, from My PC)
That say which encryption they're using.
So it's all a best-guess for me.
The drive is encrypted, and beyond that, no one is saying much.



BIOS updates and *maybe* even some Windows updates (the major weekly-kind)
could ruin this little setup.
I will leave everything as-is for biggie windows updates, but BIOS and windows are Not friends, and I will have to remember to disable a list of things:
Secure Boot
TPM
Encryption
None of that is in order, and I might fail the first couple times.
Let me guess:
Disable encryption, then
Disable secure_boot
then
Disable the TPM.
The next time I buy a motherboard I might look for one with a more windows-friendly BIOS.
I'm not sure though, that any standalone motherboard would meet the requirements, it might have to be an entire certified PC.
This is all silly considering my secondary drive has all the goodies, 
and the most sensitive stuff the C: drive has is, the registry.

https://www.windowscentral.com/how-suspend-bitlocker-encryption-perform-system-changes-windows-10
Suspend for updates?? oshit.
"Nyah-nyah-nyah-nyah" WTF-not? NVM.
BTW they're making it damn near impossible to follow anyone else's instructions to backup.
Mold was growing on their butt (or something)
https://answers.microsoft.com/en-us/windows/forum/all/how-to-create-a-system-image-in-windows-11-and/036110b8-66bb-4cc7-b9e2-2d66df27d236



After running around not knowing why my external thingies couldn't be read, dredging up old CD-roms and an ancient USB drive,
I got to thinking about USB drives and why I only have one.
An 8GB one.
But it goes and goes, and an 8GB-*3.0* one burned out years ago.
Those phone memory chips nearly killed a phone 10 years ago.
So I've been procrastinating buying a USB stick.
I've read somewhere that slow USB drives last longer, but I don't CARE, I only want a drive to last as long as my Hoary (Promo??) USB drive from an electronics store close by. But that wasn't even it, because I insisted that it should cost less than ten dollars, preferably $5.
Well, I found a 32GB one, it was $7.95 total (with S-H)
so it fits my budget, and even if it doesn't pan out, I haven't lost much!
It's here.
It works, at a glacial speed.
As I write this it's copying a directory and it'll be done, in a half hour.
Nearly 7 gigabytes copying, at a speed slower than my internet.
I have not delved into the philosophy of portable disks.
People seemed excited about ex-fat, until they weren't, and I don't think windows likes exfat (not sure).


Fat32 has limitations. But the drive comes with a fat32 format.
I've just read, fat32 can be humungous but the individual files must be less than 4GB.
NTFS for a flash-drive seems silly, although I'm sure people have reasons.
I think I meant to research "Which is the fastest/bestest format for flash-drives" but I forgot, and now it's too late (It's getting dark.)

Every reviewer on the planet must have the below disk, they're all saying it's best, and the curmudgeons on amazon hate everything anyway, so whatever.
"I used to own whatever, but their new model sucks real bad."
A reviewer said this was best. Is it, or is he a shill, bought and paid for.
Yeah it's fast, but does it live long?

If reviews are the same (bad) isn't it better to buy the cheapest?
I'm not happy right now...



Actually, I've been looking at drives that are older than your kid.
Newer ones exist, https://www.storagereview.com/review/kingston-datatraveler-max-review

Did I mention I'm not Happy??


There is an extension cable, a "USB-4"-C-type, that usually holds my thumb-reader.
The dinky-hole it goes in is buried under a spidery-web of wires. 
So this drive, in theory, would dangle in the air, twisting in the slight breeze (face it, it's HOT in here.)
I wrote-erased a statement about USB 2.0 drives being more reliable, but NO one reviews reliability, only a warranty no one ever actually uses.
And for reference, my 512GB SSD drive-on-a-cable gets as hot as toast. It still works. (but it's shaped a lot like a cookie)
And reviewers kind of pointedly remark that, if you don't really care or move around much, 
SSD's beat Flash-drives.
Yeah but I wanted to be trendy....(o poo)
Nothing (but read below) tells you that you actually will get "V2",
 and I should know, having the toasty "V1"
and those 6,249 ratings? "V1"


Old-duffer V1 speeds

-----

"sustained writes" is something to google, if you're into stuff like that.
IOW anything more than the cache can handle, anything compressed, damn near anything, slows a drive down, and it isn't clear (yet) how much of those astronomic speeds are hype-poop.
More obsessed people than you have benchmarked and copied movies, and they all say x-brand gets hot, x-brand slows way down.




My most bombastic entry to date has chosen a brand (western-digital-sandisk)
 and a name within the brand ("Extreme pro")
and nearly a form ("portable SSD," "Solid state flash drive")
and a working theory (so maybe it's true) that the portable SSD-form uses more chips, a larger circuit board. 
WD likes buying companies, and You all know about Sandisk, but there is also a company called G-Drive. It looks like a vented cookie, it goes half as fast as the extreme-pro-portable SSD
(OK Let's face my fears: )
1. A stick named "Extreme Pro"
2. A cookie-shaped-thingy called "Extreme Pro"
3. Another cookie (with airholes) "G Drive Pro"

And the attractiveness factor goes to G-Drive, being rugged and manly (think, "Marlboro" vs "Viceroy" or "Kent") and snooty (It is marketed at Apple snobs)
But the favor in its Plus, it's 30.00 cheaper than extreme pro.
thirty dollars more for a drive marketed mostly for windows.
I choose the Windows!! Beeecause, it's faster and I don't have any sandy-dust or pools of water nearby.
OK I lied about the sandy-dust but I still like the extreme pro better.

























If sex became meaningless (medication or a sims 4 mod,) what would life be like?
Apologies in advance to cats, ladies, copyrighted pictures and you, the lady a few doors down with a cat. But it's a clever picture, one for a different blog-entry.
Man and Mother?
I don't get why there are extension-cords over their heads
Was there a convention before xmas??


This odd link came up (don't ask why) and it Finally gives a freakin' insulin dose.
Basal+carbs-elimination+Sensitivity (high sugar adjustment)
Or Piss on all that,
https://dtc.ucsf.edu/types-of-diabetes/type1/treatment-of-type-1-diabetes/medications-and-therapies/type-1-insulin-therapy/calculating-insulin-dose/
Ahhhh,um, "Total daily" divided by the amount of shots you get in a day.
But their amount is wimpy without that carbs-thing and the sensitivity...If you're bad at math, the page is pretty hopeless, but I'd like to think they tried (and failed) to school me,

My officially given dose (not the one on the prescription on the box) is 75 units daily.
75*4 is how much I weigh (right?)
(Waitasec) Geez, no, I'd be a cow, my chair would break.
But when you add carbs and sensitivity, it kind of gels.
at No comments:
Subscribe to: Posts (Atom)