Hackaday Columns

4560 Articles

This excellent content from the Hackaday writing crew highlights recurring topics and popular series like Linux-Fu, 3D-Printering, Hackaday Links, This Week in Security, Inputs of Interest, Profiles in Science, Retrotechtacular, Ask Hackaday, Teardowns, Reviews, and many more.

Hackaday Links Column Banner

Hackaday Links: February 16, 2020

February 16, 2020 by 13 Comments

Have you heard the exciting news about Betelgeuse? It’s been hard to miss these days, with reports of the red supergiant star suddenly dimming, and speculation growing that the star will go supernova sometime in the next 10,000 years. But the exciting part is that astronomers have gotten together and scheduled the Betelgeuse supernova for February 21, 2020. Or at least that’s how at least a half-dozen poorly written articles make it sound. We thought that seemed odd, so we dug a bit and the real story is more complicated and more interesting. Betelgeuse is normally a variable star that goes through complex cycles of brightening and dimming. Its current dimming is unprecedented in magnitude, but the timing coincides with its normal cycle. If this dimming is just a deepening of its normal cycle, the star should start brightening again on February 21. If it doesn’t, it could mean the star is entering the next phase in its evolution. We’d love to see a star so bright it’s visible in daylight and casts shadows at night, but we’ll just have to see what happens on Friday.

One of the last two factories in the world that makes the lacquer master discs needed to make vinyl records burned to the ground last week. Luckily nobody was hurt, but it took 82 firefighters hours to get the blaze under control. It remains to be seen how this loss will impact the vinyl record market, but since the appearance of a new star in the sky has long been seen as a bad omen and a portent of doom, if Betelgeuse does go boom next week, expect to hear the hipsters gnash their teeth and rend their man-buns. In the meantime, enjoy perhaps your last look at the fascinating vinyl manufacturing process.

Rent it once, rent it for life? Apparently, at least if you rent a Ford vehicle from Enterprise and install the FordPass app on your phone. That was the experience of one Masamba Sinclair when he rented a Ford Expedition in October and found that even five months later, the app – which he never unpaired from the rental vehicle – allowed him to start and stop the car’s engine, unlock the doors, and even track its location. The same thing even happened again this month when he rented a Mustang. Ford and Enterprise might both want to rethink the security model here; leaving it up to the customer to unlink the car from the app is a recipe for disaster.

Don’t forget that we have a really interesting contest going on right now: the Train All The Things machine learning contest. With so many different machine learning platforms and frameworks available today, you can surely find a way to build something that really shines. The early entries are interesting, with everything from an intelligent bat detector to sunglasses that give you control of the world. The contest is sponsored by Digi-Key and runs through April 7, so get started on your AI masterpiece and send it in.

Speaking of Digi-Key, they’ve put together a handy list of vendors from their line card who are reporting impacts from the Covid-19 outbreak in China. We wondered about supply chain effects from the outbreak recently, and this is confirmation that we’re starting to see a pinch. As of this writing, there are 62 vendors listed, with the majority reporting impacts from the extension of the Chinese New Year holiday. We’ll stay on top of this story, and of course we continue to wish our friends in China well.

It Ain’t Over ‘Til The Paperwork Is Done: Test Driving TiddlyWiki

February 14, 2020 by 25 Comments

Working on projects is fun. Documenting them is often not so much. However, if you want anyone to duplicate your work — or even just want to remember what you were doing a few years ago when something needs upgrading or repairing.

There’s a ton of ways to keep track of the details of your projects. We love seeing how things come together and of course we’re happy to suggest documenting on Hackaday.io. But sometimes, you just want to keep your own notes to yourself. There’s always a notebook, of course, but that seems kind of old fashioned. A lot of projects are on Wikis but you hate to stand up a web server and a Wiki instance just to keep notes. But what if you could have a local Wiki with minimal setup?

I recently came across TiddlyWiki and decided to take it for a spin. Join me after to break to see what it’s all about.

Continue reading “It Ain’t Over ‘Til The Paperwork Is Done: Test Driving TiddlyWiki”

Hackaday Podcast 054: Xenomorph Cookies, 101 Uses For Hot Glue, Rolling Robots, And A Clippy Computer

February 14, 2020 by 8 Comments

Hackaday editors Elliot Williams and Mike Szczys reflect on great hacks of the past few days. Strain relief is something every electronics geek encounters and there’s a spiffy way to make your hot-glue look like a factory connector. There’s something in the air and it seems to be recreating early computers. Did you know astronauts are baking cookies they’re forbidden to eat? And did you hear about the 3D printer that’s being fed oil from the deep fryer?

Take a look at the links below if you want to follow along, and as always tell us what you think about this episode in the comments!

Take a look at the links below if you want to follow along, and as always, tell us what you think about this episode in the comments!

Direct download (60 MB or so.)

Where to Follow Hackaday Podcast

Places to follow Hackaday podcasts:

Continue reading “Hackaday Podcast 054: Xenomorph Cookies, 101 Uses For Hot Glue, Rolling Robots, And A Clippy Computer”

This Week In Security: Robinhood, Apple Mail, ASLR, And More Windows 7

February 14, 2020 by 10 Comments

First off this week, a ransomware named Robinhood has a novel trick up its sleeve. The trick? Loading an old known-vulnerable signed driver, and then using a vulnerability in that driver to get a malicious kernel driver loaded.

A Gigabyte driver unintentionally exposed an interface that allows unfettered kernel level read and write access. Because it’s properly signed, Windows will happily load the driver. The ransomware code uses that interface to turn off the bit that enforces the loading of signed drivers only. From there, loading a malicious driver is trivial. Robinhood uses it’s kernel-level access to disable anti-virus applications before launching the data encryption.

This is a striking example of the weakness of binary signing without a mechanism to revoke those signatures. In an ideal world, once the vulnerability was found and an update released, the older, vulnerable driver would have its signature revoked.

The last Windows 7 Update For Real This Time, Maybe

More news in the ongoing saga of Windows 7/Server 2008 reaching end-of-life. KB4539602 was released this patch Tuesday, fixing the black background problem introduced in the last “final” round of updates. Surely that’s the last we’ll hear of this saga, right?

Not so fast. Apparently that patch has led to multiple Windows Server 2008 machines failing to boot after install. According to Microsoft, the problem is a missing previous patch that updates SHA-2 support. Continue reading “This Week In Security: Robinhood, Apple Mail, ASLR, And More Windows 7”

Sky Is New Limit For Dot Com Domain Prices

February 13, 2020 by 68 Comments

Earlier this week, domain name registrar Namecheap sent out an email to all customers advising them of a secret deal that went down between ICANN and Verisign sometime late last year. It has the potential to change the prices of domain names drastically over time, and thus change the makeup of the Internet as we know it.

Domain names aren’t really owned, they’re rented with an option to renew, and the annual rate that you pay depends both on your provider’s markup, but also on a wholesale rate that’s the same for all names in that particular domain. This base price is set by ICANN, a non-profit.

Officially, this deal is a proposed Amendment 3 to the contract in place between Verisign and ICANN that governs the “.com” domain. The proposed amendment would let Verisign increase the wholesale rental price of “.com” domain names by 7% per year for the next four years. Then there will be a two-year breather, followed by another four years of 7% annual hikes. And there is no foreseeable end to this cycle. We think it seems reasonable to assume that the domain name registrars might pass the price gouging on to the consumer, but that really remains to be seen.

The annual wholesale domain name price has been sitting at $7.85 since 2012, and as of this writing, Namecheap is charging $8.88 for a standard “.com” address. If our math is correct, ten years from now, a “.com” domain will cost around $13.50 wholesale and $17.50 retail. This almost-doubling in price will affect both small sites and companies that hold many domain names. And the increase will only get more dramatic with time.

So let’s take a quick look at the business of domain names.
Continue reading “Sky Is New Limit For Dot Com Domain Prices”

How To Get Into Cars: Basic Maintenance

February 12, 2020 by 84 Comments

So, you’ve decided you want to get into cars. After much research and deliberation, you’ve bought yourself a sweet project car, and can’t wait to get down to work. First things first – it’s time to learn about basic maintenance!

Get It Right For A Good Time

Doing necessary maintenance on time is key to enjoying your project car. Too many gearheads know the pain of a neglected beast that spends more time up on jackstands than out on the road. Buying the right car, and keeping a close eye on what needs to be done, will go a long way to improving your experience and relationship with your ride.

If you’ve just bought a car, no matter how good things look, it’s a good idea to go through things with a fine-tooth comb to make sure everything’s up to scratch. This can avoid expensive damage down the line, and is a great way to get your feet wet if you’re new to working on cars. Here’s a bunch of easy jobs you can tackle as a novice that will keep your ride in tip-top condition. Continue reading “How To Get Into Cars: Basic Maintenance”

HackIt: Why Aren’t We Hacking On The LED Printer?

February 11, 2020 by 54 Comments

Strings of LEDs are a staple of the type of project we see here at Hackaday, with addressable devices such as the WS2812 in particular having changed beyond recognition what is possible on a reasonable budget. They’ve appeared in all kinds of projects, but are perhaps most memorable when used in imaging projects such as screen-like arrays or persistence-of-vision systems. There’s another addressable LED product that we haven’t seen here, which is quite a surprise considering that it can be found with relative ease in junk piles and has been on the market for decades. We’re talking about the LED printer, and the addressable LED product in question is a very high density array of LEDs the width of a page, designed to place an image of the page to be printed on the toner transfer drum.

Continue reading “HackIt: Why Aren’t We Hacking On The LED Printer?”