Hearing The Unhearable

August 7, 2021 by Elliot Williams 51 Comments

My wife was watching a crime drama, and one of the plot twists involved a witness’ hearing aid malfunctioning so that he could hear electromagnetic waves around him. It’s not so implausible, if you think about it. Many hearing aids have a t-coil, which is essentially an inductor that’s designed to couple with the speaker in a telephone. If that went haywire, maybe you could hear all the changing magnetic fields around you, and if you could escape the constant hum of the mains power line, it might even be interesting.

So of course, she turns to me and says “we need to make one!” It shouldn’t be hard at all — a big inductor and an amplifier should do the trick. In fact, it’ll probably be easy enough that it’ll make a good introduction-to-electronics project for my son. But there are also enough unknowns here that it’ll be interesting. How big a coil? How close? How sensitive? What about that mains frequency bit? Ferrite core or not?

None of this is rocket science, for sure, but it will probably be full of kludges, discoveries, and straight-up exploration. In short, the perfect weekend project. And in the end, it’ll expose something that’s normally invisible, and that’s where the fun lies.

This must be the same urge that drove Faraday and Marconi, Volta and Maxwell. There’s something amazing about directly sensing, seeing, hearing, and understanding some of the stuff that’s outside of our limited hearing and eyesight, and yet is all around us. I can write down the equations that describe it — I learned them in school after all — but there’s no substitute for poking around in your own home. Who knows, maybe in a few more weekends we’ll build ourselves an all-band receiver.

What’s your favorite super power?

Hackaday Podcast 130: Upside Down 3D-Printer, Biplane Quadcopter, Gutting A Calculator Watch, And GitHub CoPilot

August 6, 2021 by Mike Szczys No comments

Hackaday editors Elliot Williams and Mike Szczys get charged up on the best hacks the week had to offer. The 3D printer design gods were good to us, delivering an upside-down FDM printer and a hack that can automatically swap out heated beds for continuous printing. We look at a drone design that builds vertical wings into the frame of a quadcopter — now when it tips on its side it’s a fixed-wing aircraft! We chew the artificially-intelligent fat about GitHub CoPilot’s ability (or inability?) to generate working code, and talk about the firm future awaiting solid state batteries.

Take a look at the links below if you want to follow along, and as always, tell us what you think about this episode in the comments!

Direct download (60 MB or so.)

Places to follow Hackaday podcasts:

Continue reading “Hackaday Podcast 130: Upside Down 3D-Printer, Biplane Quadcopter, Gutting A Calculator Watch, And GitHub CoPilot” →

This Week In Security: Insecure Chargers, Request Forgeries, And Kernel Security

August 6, 2021 by Jonathan Bennett 13 Comments

The folks at Pen Test Partners decided to take a look at electric vehicle chargers. Many of these chargers are WiFi-connected, and let you check your vehicle’s charge state via the cloud. How well are they secured? Predictably, not as well as they could be.

The worst of the devices tested, Project EV, didn’t actually have any user authentication on the server side API. Knowing the serial number was enough to access the account and control the device. The serial numbers are predictable, so taking over every Project EV charger connected to the internet would have been trivial. On top of that, arbitrary firmware could be loaded remotely onto the hardware was possible, representing a real potential problem.

The EVBox platform had a different problem, where an authenticated user could simply specify a security role. The tenantadmin role was of particular interest here, working as a superadmin that could see and manage multiple accounts. This flaw was patched within an impressive 24 hours. The ~~EVBox charger~~, as well as several other devices they checked had fundamental security weaknesses due to their use of Raspberry Pi hardware in the product. Edit: The EVBox was *not* one of the devices using the Pi in the end product.

Wait, What About the Raspberry Pi?

Apparently the opinion that a Raspberry Pi didn’t belong in IoT hardware caught Pen Test Partners some flack, because a few days later they published a follow-up post explaining their rationale. To put it simply, the Pi can’t do secure boot, and it can’t do encrypted storage. Several of the flaws they found in the chargers mentioned above were discovered because the device filesystems were wide open for inspection. A processor that can handle device encryption, ideally better than the TPM and Windows Bitlocker combination we covered last week, gives some real security against such an attack. Continue reading “This Week In Security: Insecure Chargers, Request Forgeries, And Kernel Security” →

Linux Fu: The Windows X11 Connection

August 5, 2021 by Al Williams 38 Comments

The life of a Linux user can be a bit difficult. Sometimes you have to — or want to — run Windows. Why Windows? Sometimes you have a work computer or a laptop that Linux doesn’t support well. Or it might be software. Although there are plenty of programs that can edit, say, Word documents, there’s always that one document that doesn’t quite translate correctly. Things like videoconferencing software sometimes works on Linux but might have fewer features.

So what do you do? You can dual boot, of course, but that’s not very handy. You can run Windows in a virtual machine if you have enough horsepower. There’s also Wine, but that often has its own set of problems with features and stability of complex programs. However, recent versions of Windows provide the Windows Subsystem for Linux (WSL).

With WSL, you can have most of what you like about Linux inside your Windows session. You just have to know how to set it up, and I’m going to show you one way that works for me with reasonably stable versions of Windows 10. Continue reading “Linux Fu: The Windows X11 Connection” →

We’re Hiring: Come Join Us!

August 4, 2021 by Mike Szczys 11 Comments

You wake up in the morning, and check Hackaday over breakfast. Then it’s off to work or school, where you’ve already had to explain the Jolly Wrencher to your shoulder-surfing colleagues. And then to a hackspace or back to your home lab, stopping by the skull-and-cross-wrenches while commuting, naturally. You don’t bleed red, but rather #F3BF10. It’s time we talked.

The Hackaday writing crew goes to great lengths to cover all that is interesting to engineers and enthusiasts. We find ourselves stretched a bit thin and it’s time to ask for help. Want to lend a hand while making some extra dough to plow back into your projects? We’re looking for contributors to write a few articles per week and keep the Hackaday flame burning.

Contributors are hired as private contractors and paid for each article. You should have the technical expertise to understand the projects you write about, and a passion for the wide range of topics we feature. You’ll have access to the Hackaday Tips Line, and we count on your judgement to help us find the juicy nuggets that you’d want to share with your hacker friends.

If you’re interested, please email our jobs line (jobs at hackaday dot com) and include:

One example article written in the voice of Hackaday. Include a banner image, at least 150 words, the link to the project, and any in-links to related and relevant Hackaday features. We need to know that you can write.
Details about your background (education, employment, interests) that make you a valuable addition to the team. What do you like, and what do you do?
Links to your blog/project posts/etc. that have been published on the Internet, if any.

What are you waiting for? Ladies and Gentlemen, start your applications!

Inputs Of Interest: SafeType™ Vertical Keyboard With Mirrors Puts Pain In The Rear-View

August 4, 2021 by Kristina Panos 11 Comments

Yep, this keyboard is another ebay special. I can’t stay away! This is a SafeType™ V801 from probably the early 2000s, although there is no date on it anywhere. I’m basing my guess on the fact that there are so many media buttons. I’ve been eyeing these weirdo mirrored keebs for a while, and when I saw how cheaply this one was going for, I had to have it. That’s just how it goes. I was really excited to clack on it and I’m only marginally disappointed by it. But I can tell you that if my Kinesis were to suddenly die, I would probably reach for this keyboard until the new one showed up.

Yes, mirrors on a keyboard are weird. But if you can’t touch-type the numerals and F keys, they’re absolutely necessary.

So, why does it look like this? There are varying levels of ergonomics when it comes to keyboards. This one fights strongly against wrist pronation and forces you into a position that helps the shoulders and neck as well. You’d think it would be weird to hold your arms aloft at right angles, but it’s actually not that strange in practice because you’re pressing inward to type, kind of like playing an accordion or something.

The weird part is looking in the rear-view mirrors to accurately hit the numerals and F keys, though I’ll be honest: in my test drives, I found myself using the mirrors mostly to make sure my hands were on the home row. And that’s with three homing protrusions apiece on F and J! More about that later.

So yes, some of the keycap legends are backwards so you can read them in the mirror. If you don’t like using the numeral row, there’s a num pad in the center, along with the Home/End cluster, a quartet of comically large arrow keys, and a boatload of dedicated media and program launch buttons. All the buttons in the middle are fairly awkward to reach because you must either pull your hand down and around the bottom, or else go over the top. Continue reading “Inputs Of Interest: SafeType™ Vertical Keyboard With Mirrors Puts Pain In The Rear-View” →

AND!XOR’s DEF CON 29 Electronic Badge Is An Assembly Puzzle

August 2, 2021 by Mike Szczys 3 Comments

For years I’ve looked forward to seeing each new unofficial hardware badge that comes out of the #Badgelife powerhouse known as AND!XOR. A mix of new and interesting components, alternate-reality game, and memes, you never know what they’re going to throw down.

A bubble pack landed on my desk on Thursday with the newest offering, the AND!XOR electronic badge built for DEF CON 29, happening this weekend as a hybrid in-person and online conference. While each previous year upped the ante on complexity and manufacturing magic tricks, it’s no surprise considering the uncertainty of both the global pandemic and global chip shortage that they took a different tack. What we have here is a badge hacking puzzle that challenges you to just figure out how to put the thing together!

Continue reading “AND!XOR’s DEF CON 29 Electronic Badge Is An Assembly Puzzle” →