Waitman Gobble - waitman@hub.zilla.tech

That Time 10 Years Ago when Kato thought it was a good idea to interview me.

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sun, 16 Dec 2018 10:59:06 -0800

Interesting Cobain interview

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sun, 16 Dec 2018 09:52:16 -0800

One of Kurt Cobain's Final Interviews - Incl. Extremely Rare Footage
by WatchMojo.com on YouTube

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sun, 16 Dec 2018 09:07:25 -0800

Pink Floyd - Set The Controls For The Heart Of The Sun
by ESHeinrich on YouTube

News from home

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sun, 16 Dec 2018 08:07:49 -0800

Had a Big Mac Attack, literally.

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sat, 15 Dec 2018 18:48:45 -0800

It would suck I guess to have Place of Death:McDonalds on your epitaph.

This happened a couple of miles down the street.

Downtown Los Altos Christmas Lights

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sat, 15 Dec 2018 16:28:30 -0800

San Juan Bautista, California

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sat, 15 Dec 2018 16:27:46 -0800

Waitman Gobble

Sat, 15 Dec 2018 16:34:15 -0800

Hitchcock filmed Vertigo here.

Mike Macgirvin

Sun, 16 Dec 2018 11:45:25 -0800

Was always my favourite of the missions.

France is Qwant-ified

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sat, 15 Dec 2018 16:24:53 -0800 last edited: Sat, 15 Dec 2018 16:25:20 -0800

There's a fireplace and an odd wooden box in my hotel room tonight.

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Fri, 14 Dec 2018 22:31:07 -0800

San Juan Bautista, California.
It's adjacent to Hollister. If you see people wearing those Hollister shirts tell them Hollister is a small farm town, because it is.

Mike Macgirvin

Fri, 14 Dec 2018 22:51:36 -0800

A fireplace? How quaint. Was expecting an oil painting of Marlon Brando on a Harley.

Apparently Cyber Flashing is now a thing

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Wed, 12 Dec 2018 08:03:14 -0800

Pervs are using apples air drop service to send dick pics to their victims.

Unsolicited Dick Pics Prompt Stupid, Unworkable Legislative Response From New York Lawmakers

“In the old days, you had to have a long trench coat and good running shoes,” said Councilman Joseph Borelli, a Republican from Staten Island who is co-sponsoring the anti-flashing bill. “Technology has made it significantly easier to be a creep.”

Any sufficiently advanced technology is indistinguishable from magic a trenchcoat-wearing lurker. Apple's AirDrop app, which allows anyone to share files with anyone else using the app, has become the new way to send unsolicited dick...

Christmas gift ideas

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Mon, 10 Dec 2018 05:19:26 -0800

Dumbest As Seen On TV Items Ever
by Looper on YouTube

mrjive

Mon, 10 Dec 2018 07:22:58 -0800

Tired after a long drive home

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sun, 09 Dec 2018 16:40:14 -0800

mrjive

Mon, 10 Dec 2018 06:19:56 -0800

My son came to DR, we met him in Puerto Plata

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sun, 09 Dec 2018 16:33:50 -0800

Mike Macgirvin

Sun, 09 Dec 2018 16:53:37 -0800

No DNA test needed for that boy.

Sophie

Mon, 10 Dec 2018 08:21:44 -0800

Beautiful photos!

Waitman Gobble

Mon, 10 Dec 2018 10:32:50 -0800

Thanks

Metal Church

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Fri, 07 Dec 2018 04:34:27 -0800

Happy Friday. New album released today

FCC commissioner complains about FCC.. re: Net Neutrality

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Wed, 05 Dec 2018 08:37:59 -0800

What is the FCC hiding? When two reporters ask questions about serious fraud and evidence of Russian intervention in the FCC #NetNeutrality record the agency refuses to provide answers. This is not right. Something is very wrong.

"Instead of providing news organizations with the information requested, in this decision the FCC decides to hide behind Freedom of Information Act exemptions and thwart investigative journalism. In doing so, the agency asserts an overbroad claim about the security of its public commenting system that sounds no more credible than its earlier and disproven claim that the system was the subject of distributed denial of service attack. It appears this agency is trying to prevent anyone from looking too closely at the mess it made of net neutrality. It is hiding what it knows about the fraud in our record and it is preventing an honest account of its many problems from seeing the light of day.

View PDF

Jessica Rosenworcel - Wikipedia

Jessica Rosenworcel (born July 12, 1971) is an American lawyer who currently serves as a member of the U.S. Federal Communications Commission (FCC). She originally served on the FCC from May 11, 2012, until January 3, 2017, and was confirmed by the United States Senate for an additional term on August 3, 2017. Jessica RosenworcelMember of theFedera...

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Wed, 05 Dec 2018 04:14:59 -0800

I think we were having a discussion about copyright awhile ago.. i did not realize the EU issues going on now. It sounds like they want people to somehow prove they own their content. I think some people only want licensed broadcasters operating web sites.

Don't Wreck The Net!

Tell European lawmakers to fix the Copyright Directive.

show all 5 comments

h.ear.t | tobias

Wed, 05 Dec 2018 18:09:42 -0800

Waitman Gobble

Sun, 09 Dec 2018 17:04:58 -0800 last edited: Sun, 09 Dec 2018 17:13:25 -0800

And now poppycock on facebook. Poppycock is a good term because it is an example of words which shall no longer be permitted on facebook. Who's got the biggest poppycock now?

Waitman Gobble

Sun, 09 Dec 2018 17:06:20 -0800

Oh buttamuffins

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Mon, 03 Dec 2018 07:42:11 -0800 last edited: Mon, 03 Dec 2018 07:47:08 -0800

Waitman Gobble

Mon, 03 Dec 2018 07:48:12 -0800

Maybe need a resize bypass option? Resizing animated gifs obliterates the animation :)

Mike Macgirvin

Mon, 03 Dec 2018 14:08:08 -0800

It's a tough problem, because PHP and memory management are bitter enemies.

Waitman Gobble

Mon, 03 Dec 2018 14:12:10 -0800

first time its happened to me so its only an idea. :)

building jsodium

Waitman Gobble

Santo Domingo, Dominican Republic, Mon, 03 Dec 2018 05:55:09 -0800

jsodium is listed as java binding for libsodium, on the libsodium web site.

https://github.com/naphaso/jsodium

ref: https://download.libsodium.org/doc/bindings_for_other_languages

couple of issues:

he's shipping a bunch of libraries. https://github.com/naphaso/jsodium/tree/master/native/linux
and linking them into the binary.
not clear why these all need to be linked? linking to random binaries is kinda bad idea in my opinion.

Here's an updated build.sh (for FreeBSD, you can roll your own for your system). That uses the system libraries, instead.


#!/bin/sh
export JAVA_HOME=/usr/local/openjdk8
clang -v -fPIC -shared -I/usr/local/include -I$JAVA_HOME/include/ -I$JAVA_HOME/include/freebsd/ -L/usr/local/lib -lsodium -o ../src/main/resources/libjsodium.so main.c

also, it's checking 'OS' in ./src/main/java/com/naphaso/jsodium/Sodium.java
so, add line for FreeBSD or just loadLibrary("libjsodium.so"); and get rid of the OS check.

then it will build the jar



[h1]gradle build jar[/h1]

:compileJava UP-TO-DATE
:processResources UP-TO-DATE
:classes UP-TO-DATE
:jar UP-TO-DATE
:assemble UP-TO-DATE
:compileTestJava UP-TO-DATE
:processTestResources NO-SOURCE
:testClasses UP-TO-DATE
:test UP-TO-DATE
:check UP-TO-DATE
:build UP-TO-DATE

BUILD SUCCESSFUL in 0s
5 actionable tasks: 5 up-to-date

Waitman Gobble

Tue, 04 Dec 2018 18:53:12 -0800 last edited: Thu, 06 Dec 2018 17:14:27 -0800

After working with jsodium for awhile I realized it's unfinished. it's missing many functions like the blake2 hashing functions. many functions are commented out so it's a work in progress I suppose. But doesn't look like it's been touched for a few years. That and the guy has compiled libraries in the source tree, a person might not know any better and build the library linking against the provided binaries. Which is maybe ok? It's just a bad idea in my opinion. Especially with an encryption library.. They should probably not link to it on the libsodium page.

jsodium is not recommended.

An alternative which is up to date and seems to work pretty good, Kalium

https://github.com/abstractj/kalium/

Gradle install:
add compile "org.abstractj.kalium:kalium:0.8.0" to dependencies..

example hashing


import org.abstractj.kalium.crypto.*
import org.abstractj.kalium.NaCl
import org.abstractj.kalium.NaCl.Sodium.*
import org.abstractj.kalium.encoders.Encoder.HEX
import org.abstractj.kalium.keys.KeyPair

val hash = Hash()
val password = Password()
val DATA: String = "hello"
val PWHASH_MESSAGE: String = "Correct Horse Battery Staple"
val PWHASH_SALT: String = "[<~A 32-bytes salt for scrypt~>]"

//SHA512 - avoid - deterministic/vulnerable to length extension attacks
val tb = hash.sha512(DATA.toByteArray())
println(HEX.encode(tb))
// 9b71d224bd62f3785d96d46ad3ea3d73319
// bfbc2890caadae2dff72519673ca72323c3d
// 99ba5c11d7c7acc6e14b8c5da0c4663475c
// 2e5c3adef46f73bcdec043

//BLAKE2b
val gb = hash.blake2(DATA.toByteArray())
println(HEX.encode(gb))
// 324dcf027dd4a30a932c441f365a25e86b173d
// efa4b8e58948253471b81b72cf

//secure password hashing
val opslimit: Int = NaCl.Sodium.CRYPTO_PWHASH_SCRYPTSALSA208SHA256_OPSLIMIT_INTERACTIVE
val memlimit: Int = NaCl.Sodium.CRYPTO_PWHASH_SCRYPTSALSA208SHA256_MEMLIMIT_INTERACTIVE
val pw = password.hash(PWHASH_MESSAGE.toByteArray(), 
 HEX, 
 PWHASH_SALT.toByteArray(), 
 opslimit, 
 memlimit.toLong())
println(pw)
// a2ec8a8ee744e0ff2c26d4fc198ddf7c0
// cd1460b5b6729e0d8518b6577c69acd
// 412491f0913737e64c5c9136c0473154
// 5e756e0a9be35f55337e446c6bbc3a3f

cryptographically secure random bytes


 //random bytes
 val rb = Random().randomBytes(64)
 println (HEX.encode(rb))

Symmetric Encryption w/authentication (using Sodium Secret Box)


 val SECRET_KEY: String = "1b27556473e985d462cd51197a9a46c76009549eac6474f206c4ee0844f68389"
 val BOX_NONCE: String = "69696ee955b62b73cd62bda875fc73d68219e0036b7a0b37"
 val BOX_MESSAGE: String =
 "be075fc53c81f2d5cf141316ebeb0c7b5228c52a4c62cbd44b66849b64244ffc" +
 "e5ecbaaf33bd751a1ac728d45e6c61296cdc3c01233561f41db66cce314adb31" +
 "0e3be8250c46f06dceea3a7fa1348057e2f6556ad6b1318a024a838f21af1fde" +
 "048977eb48f59ffd4924ca1c60902e52f0a089bc76897040e082f93776384864" +
 "5e0705";

var box = SecretBox(SECRET_KEY, HEX)
val nonce: ByteArray = HEX.decode(BOX_NONCE)
val message: ByteArray = HEX.decode(BOX_MESSAGE)

val ciphertext = box.encrypt(nonce, message)
println("Encrypted")
println(HEX.encode(ciphertext))

val cleartext = box.decrypt(nonce, ciphertext)
println("Decrypted")
println(HEX.encode(cleartext))

Asymmeteric Encryption/Decryption (PKI w. Sodium SealedBox)



val AMESSAGE: String = "This is an asymmetric encryption test."
val m: ByteArray = AMESSAGE.toByteArray()
var keyPair = KeyPair()
val sk: ByteArray = keyPair.privateKey.toBytes()
val pk: ByteArray = keyPair.publicKey.toBytes()

println("sk:")println(HEX.encode(sk))println("pk:")println(HEX.encode(pk))

//encrypt
var sb = SealedBox(pk)
val c: ByteArray = sb.encrypt(m);

println("Encrypted Asymmetric")
println(HEX.encode(c))

//decrypt
var sb2 = SealedBox(pk, sk)
val m2: ByteArray = sb2.decrypt(c)

println("Decrypted Asymmetric")
println(String(m2))

however, if you are developing for Android you should look at the libsodium bindings page, there are libraries there for Android. Kalium does not work on Android.

Waitman Gobble

Santo Domingo, Dominican Republic (Map), Sun, 02 Dec 2018 14:38:32 -0800

My weekend goal accomplished. I haven't had a tree since maybe 2004? But i have a new baby so I have to start doing it again. :)
Luckily everyone here decorates at the beginning of October. So everything is at least 50% off. I actually got the last tree at the store I shopped. I went to a different store for ornaments and I bought the last two boxes. In the USA most decorate after Thanksgiving, or at least they used to do it that way.

show all 5 comments

h.ear.t | tobias

Sun, 02 Dec 2018 15:33:23 -0800

Waitman Gobble

Sun, 02 Dec 2018 18:18:07 -0800 last edited: Sun, 02 Dec 2018 18:19:28 -0800

I have one of those animated hollygram :) projector thingies. As a practical joke i might aim it at a neighbors house.

We should have a kickstarter to bring retro games to the hologram projector. I could totally lay on the couch and play defender or missile command or space invaders on the ceiling

h.ear.t | tobias

Sun, 02 Dec 2018 19:44:01 -0800 last edited: Mon, 03 Dec 2018 00:48:13 -0800

Waitman Gobble

Sun, 02 Dec 2018 20:23:35 -0800 last edited: Sun, 02 Dec 2018 20:24:49 -0800

I was reading about defender. It was made by a pinball company concerned with losing the market to space invaders. It was their first video game and did a billion dollars in sales. 55,000 cabinets worldwide.

Sophie

Mon, 03 Dec 2018 00:15:25 -0800

Around here, the tree goes up on Dec 24th and out on Feb 2nd (Maria Lichtmess / Presentation of Jesus at the Temple), but hardly anyone still keeps it that long, nowadays.

hubzilla bug or feature request

Waitman Gobble

Santo Domingo, Dominican Republic, Sat, 01 Dec 2018 07:37:00 -0800

its putting "url' block in a code block that has a url.

so maybe a feature request, "dont mess up my code block" option, or "training wheels option".