This Week In Security: Your Car’s Extended Warranty, Seizing The Fediverse, And Arm MTE

August 4, 2023 by Jonathan Bennett 15 Comments

If you’ve answered as many spam calls as I have, you probably hear the warranty scam robocall in your sleep: “We’ve been trying to reach you about your car’s extended warranty.” That particular robocalling operation is about to run out of quarters, as the FCC has announced a nearly $300 million fine levied against that particular operation. The scammers had a list of 500 million phone numbers, and made over five billion calls in three months. Multiple laws were violated, including some really scummy behavior like spoofing employer caller ID, to try to convince people to pick up the call.

Now, that record-setting fine probably isn’t ever going to get paid. The group of companies on the hook for the amount don’t really exist in a meaningful way. The individuals behind the scams are Roy Cox and Aaron Jones, who have already been fined significant amounts and been banned from making telemarketing calls. Neither of those measures put an end to the problem, but going after Avid Telecom, the company that was providing telephone service, did finally put the scheme down.

Mastodon Data Scooped

There are some gotchas to Mastodon. Direct Messages aren’t end-to-end encrypted, your posts are publicly viewable, and if your server operator gets raided by law enforcement, your data gets caught up in the seizure.

The background here is the administrator of the server in question had an unrelated legal issue, and was raided by FBI agents while working on an issue with the Mastodon instance. As a result, when agents seized electronics as evidence, a database backup of the instance was grabbed too. While Mastodon posts are obviously public by design, there is some non-public data to be lost. IP addresses aren’t exactly out of reach of law enforcement, it’s still a bit of personal information that many of us like to avoid publishing. Then there’s hashed passwords. While it’s better than plaintext passwords, having your password hash out there just waiting to be brute-forced is a bit disheartening. But the one that really hurts is that Mastodon doesn’t have end-to-end encryption for private messages. Continue reading “This Week In Security: Your Car’s Extended Warranty, Seizing The Fediverse, And Arm MTE” →

The State Of High Speed Rail, And A Look To Tomorrow

August 3, 2023 by Lewin Day 73 Comments

In the 21st century, the global transportation landscape is in shift. Politicians, engineers, and planners all want to move more people, more quickly, more cleanly. Amid the frenzy of innovative harebrained ideas, high-speed rail travel has surged to the forefront. It’s a quiet achiever, and a reliable solution for efficient, sustainable, and swift intercity and intercountry transit.

From the thriving economies of Europe and Asia to the burgeoning markets of the Middle East and America, high-speed rail networks are being planned, expanded, and upgraded whichever way you look. A combination of traditional and magnetic levitation (maglev) trains are being utilized, reaching speeds that were once the stuff of science fiction. As we set our sights towards the future, it’s worth taking a snapshot of the current state of high-speed rail, a field where technology, engineering brilliance, and visions of a greener tomorrow converge.

Continue reading “The State Of High Speed Rail, And A Look To Tomorrow” →

Truss-Braced Wings Could Bring New Look To Runways Worldwide

August 2, 2023 by Lewin Day 75 Comments

Airliners have looked largely the same for a long time now. The ongoing hunt for efficiency gains has seen the development of winglets, drag reducing films, and all manner of little aerodynamic tricks to save fuel, and hence money.

Boeing now has its eye on bigger, tastier goals. It believes by switching to a truss-braced wing design, it could net double-digit efficiency gains. It’s working together with NASA to see if this concept could change the face of commercial aviation in decades to come.

Aspect Ratio Matters

The ASH 31 glider features wings with an aspect ratio of 33.5, and a lift-to-drag ratio of 56. *Credit: Manfred Munch, CC-BY-SA 3.0*

The key goal of using a truss-braced wing is to enable an airliner to use a wing much thinner and narrower than usual. These “high aspect ratio” wings are far more efficient than the stubbier, wider wings currently common on modern airliners. But why is aspect ratio so important, and how does it help

If you’ve ever looked at a glider, you will have noticed its incredibly long and narrow wings, which stand it apart from the shorter, wider wings used on airliners and conventional small aircraft. These wings are said to have a high aspect ratio, the ratio between the square of the wingspan and the projected area of the wing itself.

These wings are highly desirable for certain types of aircraft, as lift-to-drag ratio increases with aspect ratio. Any wing that generates lift also generates some drag, but this can be minimized through careful wing design. By making the wings longer and narrower, and thus higher in aspect ratio, the wing tip vortices generated by the wing are weakened. This reduces drag on the plane, and quite significantly so. Continue reading “Truss-Braced Wings Could Bring New Look To Runways Worldwide” →

The Past, Present, And Future Of CircuitPython

August 1, 2023 by Tom Nardi 37 Comments

Modern microcontrollers like the RP2040 and ESP32 are truly a marvels of engineering. For literal pocket change you can get a chip that’s got a multi-core processor running at hundreds of megahertz, plenty of RAM, and more often than not, some form of wireless connectivity. Their capabilities have been nothing short of revolutionary for the DIY crowd — on any given day, you can see projects on these pages which simply wouldn’t have been possible back when the 8-bit Arduino was all most folks had access to.

Limor Fried

Thanks to the increased performance of these MCUs, hackers and makers now even have a choice as to which programming language they want to use. While C is still the language of choice for processor-intensive tasks, for many applications, Python is now a viable option on a wide range of hardware.

This provides a far less intimidating experience for newcomers, not just because the language is more forgiving, but because it does away with the traditional compile-flash-pray workflow. Of course, that doesn’t mean the more experienced MCU wranglers aren’t invited to the party; they might just have to broaden their horizons a bit.

To learn more about this interesting paradigm shift, we invited the fine folks at Adafruit to the Hack Chat so the community could get a chance to ask questions about CircuitPython, their in-house Python variant which today runs on more than 400 devices.

Continue reading “The Past, Present, And Future Of CircuitPython” →

Timeline of the universe. A representation of the evolution of the universe over 13.77 billion years. The far left depicts the earliest moment we can now probe, when a period of "inflation" produced a burst of exponential growth in the universe. (Size is depicted by the vertical extent of the grid in this graphic.) For the next several billion years, the expansion of the universe gradually slowed down as the matter in the universe pulled on itself via gravity. More recently, the expansion has begun to speed up again as the repulsive effects of dark energy have come to dominate the expansion of the universe. The afterglow light seen by WMAP was emitted about 375,000 years after inflation and has traversed the universe largely unimpeded since then. The conditions of earlier times are imprinted on this light; it also forms a backlight for later developments of the universe. (Credit: NASA)

ESA’s Euclid Space Telescope And The Quest For Dark Energy

July 31, 2023 by Maya Posch 30 Comments

Most of what humankind and other mammalian species on Earth experience of the Universe is primarily restricted to the part of the electromagnetic spectrum which our optical organs can register. Despite these limitations, we have found ways over the centuries which enable us to perceive the rest of the EM spectrum, to see both what is incredibly far away, and what is incredibly small, to constantly get a little bit closer to understanding what makes the Universe into what we can observe today, and what it may look like in the future.

An essential element of this effort are space telescopes, which gaze into the depths of the Universe with no limitations imposed by the Earth’s atmosphere, or human activity. Among the many uses of space telescopes, the investigation of the expansion of the Universe is perhaps the most fascinating, as this brings us ever closer to the answers to the most fundamental questions about not only its shape, but also to its future, which may include hitherto unknown types of matter and energy.

With the recently launched Euclid space telescope, another chapter is being opened in the saga on dark energy and matter, and their nature and effects on the Universe, as well as whether they exist at all. Yet how exactly do you use a space telescope to ferret out the potential effects of dark energy?

Continue reading “ESA’s Euclid Space Telescope And The Quest For Dark Energy” →

Hackaday Links: July 30, 2023

July 30, 2023 by Dan Maloney 14 Comments

A couple of weeks ago, we noted with interest that the space shuttle Endeavour (OV85) would be set up as a full-stack launch configuration display, complete with external fuel tank and solid rocket boosters. We predicted that this would result in some interesting engineering, not least of which will be making the entire 20-story stack safe from seismic activity. Looks like we were right on all counts, with this story about the foundation upon which the display will stand, which has been under construction for quite a while now. The base has six seismic isolators that support the 2.4-m thick slab of reinforced concrete that will serve as a perch for the full stack. The 1,800-ton slab will be able to move a meter or so from its resting position during earthquakes. Or perhaps more accurately, the foundation will allow Los Angeles to move as much as it wants while Endeavour rides it out.

If like us you’re worried that seismic loads are vastly different than the loads the spacecraft was actually designed for, relax — it turns out that the flight loads are far in excess of predicted loads from seismic stress. The plan is to build the booster stacks first — the aft skirts, which will support the entire stack, were just bolted in place — then lift the external tank in place between the boosters, and finally hoist the actual orbiter into place. After the stack is complete, the rest of the building will be built around it. We’re really looking forward to seeing some video on this project.

Continue reading “Hackaday Links: July 30, 2023” →

The Right Benchmark For GPT

July 29, 2023 by Elliot Williams 41 Comments

Dan Maloney wanted to design a part for 3D printing. OpenSCAD is a coding language for generating 3D objects. ChatGPT can write code. What could possibly go wrong? You should go read his article because it’s enlightening and hilarious, but the punchline is that it ran afoul of syntax errors, but also gave him enough of a foothold that he could teach himself enough OpenSCAD to get the project done anyway. As with many people who have asked the AI to create some code, Dan finds that it’s not as good as asking someone who knows what they’re doing, but that it’s also better than nothing.

And this is where I start grumbling. When you type your desires into the word-follower machine, your alternative isn’t nothing. Your alternative is to fire up a search engine instead and type “openscad tutorial”. That, for nearly any human endeavor, will get you a few good guides, written by humans who are probably expert in the subject in question, and which are aimed at teaching you the thing that you want to learn. It doesn’t get better than that. You’ll be up and running with your design in no time.

Indeed, if you think about the relevant source material that the LLM was trained on, it’s exactly these tutorials. It can’t possibly do better than the best of them, although the resulting average tutorial might be better than the worst you’ll find. (Some have speculated on what happens when the entire Internet is filled with these generated texts – what will future AIs learn from?)

In Dan’s case, though, he didn’t necessarily want to learn OpenSCAD – he just wanted the latch designed. But in the end, he had to learn enough OpenSCAD to get the AI code compiling without error. He spent an hour learning OpenSCAD and now he’s good to go on his next project too.

So the next time you hear someone say that they got an answer back from a large language model that wasn’t perfect, but it was “better than nothing”, think critically if “nothing” is really the right benchmark.

Do you really want to learn nothing? Do you really have no resources to get started with? I would claim that we have the most amazing set of tutorial resources the world has ever known at our fingertips. Compared to the ability to teach millions of humans to achieve their own goals, that makes the LLM party tricks look kinda weak, in my opinion.