News

3614 Articles

Decentralized Chaos In Germany

December 28, 2022 by 17 Comments

When you’re planning an event with 15,000 hackers in a tight space these days, the COVID logistics can take the wind right out of your sails. And so the Chaos Computer Club decided, for one more year, to put aside plans for the traditional year-end Chaos Communications Congress. In it’s place this year? Everyone is doing their own thing, together but apart, for the “Dezentrale Jahresendveranstaltungen”.

Some local clubs are putting on local events, some of them have talk streams, and it’s all happening everywhere and at once. If you’re not near one of the roughly 30 locations in Europe that are doing something live – check out the streams. But be warned, there’s a lot to process!

Maybe it’s best to start with the schedule, where you can see what’s coming up next. Live streams are going on throughout, until Dec 30. If you missed a talk, you can check out the pre-release versions on Relive, but note that start times and end times are approximate, so you might need to seek around. And once they’re edited and polished up, they’ll show up on the permanent event playlist, which is still just getting started as we write this.

Right now, we’re watching a talk in German about how to program laser shows, but yesterday there were some great talks on subjects as varied as the history of the C language, how perimeter cybersecurity is dead, how to find the Norwegian prime minister in an “anonymous” dataset, and how Hackaday friend [Dave Darko] made his LED dodecahedron that he was showing off at Supercon.

In short, there’s a lot going on. Check it out.

Non-Replaceable Battery? Not If This Proposed EU Law Passes!

December 24, 2022 by 104 Comments

A disturbing trend in consumer electronics has been a steady disappearance of replaceable batteries on our devices. Finding a mobile phone with a swapable battery is a struggle, and many other devices follow the trend by sealing in a Li-Po cell. The result is an ever-shorter life for electronics, and a greater problem with devices going to recycling or worse still, landfill. Hope is at hand though, thanks to a proposed European Union law that would if passed make batteries in appliances “designed so that consumers can easily remove and replace them themselves“.

In case any readers in the rest of the world wonder what it has to do with them, the EU represents such a huge market that manufacturers can neither ignore it, nor in most cases afford to make separate EU and rest-of-world versions of their products. Thus if the EU requires something for sale in its territories, in most cases it becomes the de facto norm for anything designed to be sold worldwide. We’ve already seen this with the EU’s right to repair legislation, and while we have not doubt that manufacturers will do their best to impede this new law we don’t think they will ultimately prevail.

Via 9to5Mac.

A Hacker’s Christmas Story

December 24, 2022 by 11 Comments

Twas the night before Christmas, and because I decided to make everyone’s presents myself this year, I’m still working like mad to get everything done before the big deadline. Why do I do this to myself? Well, partly because I enjoy the process.

My wife had this idea that we can make the older folks some fun decorative blinky things, and picked some motives. My son then drew them out on paper, and I scanned those drawings in and traced them over in CAD. We then cut the shapes out of wood on the CNC router, which turned out to be incredibly successful. (Now that I’ve done it, I wouldn’t be surprised if all of those “quirky” decorative objects that the Swedish flat-packers sell aren’t initially sketched out by third graders.)

Then my son painted them, and it’s my job to insert the twinkling. I bought some of those three-wire “fairy lights” for the purpose, and they’re really fun to hack on. They’re like WS2812s, only instead of using four pins and shifting the data downstream, they’re on a bus, each with a hard-coded address – they know where they are in the string and each LED only listens for the Nth set of 24 bits. This means sending 200 color codes just to light up the 4 LEDs in Aunt Micki’s decorative tree, but so be it.

Last stop, and still to do as of the 23rd, route out some kind of wooden battery case, wedge in the LiPo and the charging circuits, and solder on an on/off switch. It’s down to the last minute, but isn’t that always the way?

Definitely would have been easier just to order something online. But is that the spirit of giving? No! The DIY way brings the family together, gets me some quality time with the CNC machine, and tones up my FreeCAD skills. My son even looked over my shoulder as we were coding some of the LED animations. And nothing says Christmas like hand-coded blinkies.

Happy Holidays, y’all!

This article is part of the Hackaday.com newsletter, delivered every seven days for each of the last 200+ weeks. It also includes our favorite articles from the last seven days that you can see on the web version of the newsletter. Want this type of article to hit your inbox every Friday morning? You should sign up!

How To Restore A Musical Amiga

December 24, 2022 by 21 Comments

Despite the huge strides in computing power and functionality that have been achieved in the past few decades, there are still some things that older computers can do which are basically impossible on modern machines. This doesn’t just include the ability to use older hardware that’s now obsolete, either, although that is certainly a perk. In this two-part restoration of an Amiga 500, [Jeremy] shows us some of these features like the ability to directly modify the audio capabilities of this retro machine.

The restoration starts by fixing some damage and cleaning up the rest of the machine so it could be powered up for the first time in 30 years. Since it was in fairly good shape he then started on the fun part, which was working with this computer’s audio capabilities. It includes a number of amplifiers and filters in hardware that can be switched on or off, so he rebuilt these with new op-amps and added some new controls so that while he is using his MIDI software he can easily change how it sounds. He also restored the floppy disk drives and cleaned up the yellowing on the plastic parts to improve the overall appearance, as well as some other general improvements.

These old Amigas have a lot going for them, but since [Jeremy] is a musician he mostly focused on bringing back some of the musical functionality of his childhood computer, although he did build up a lot of extra features in this machine as well. These types of audio circuits are not something found in modern computers, though, so to get a similar sound without using original hardware you’ll need to build something like this NES audio processing unit programmed in Verilog.

Continue reading “How To Restore A Musical Amiga”

This Week In Security: GitHub Actions, SHA-1 Retirement, And A Self-Worming Vulnerability

December 23, 2022 by 6 Comments

It should be no surprise that running untrusted code in a GitHub Actions workflow can have unintended consequences. It’s a killer feature, to automatically run through a code test suite whenever a pull request is opened. But that pull request is run in some part of the target’s development environment, and there’s been a few clever attacks found over the years that take advantage of that. There’s now another one, what Legit Security calls Github Environment Injection, and there were some big-name organizations vulnerable to it.

The crux of the issue is the $GITHUB_ENV file, which contains environment variables to be set in the Actions environment. Individual variables get added to this file as part of the automated action, and that process needs to include some sanitization of data. Otherwise, an attacker can send an environment variable that includes a newline and completely unintended environment variable. And an unintended, arbitrary environment variable is game over for the security of the workflow. The example uses the NODE_OPTIONS variable to dump the entire environment to an accessible output. Any API keys or other secrets are revealed.

This particular attack was reported to GitHub, but there isn’t a practical way to fix it architecturally. So it’s up to individual projects to be very careful about writing untrusted data into the $GITHUB_ENV file.

Continue reading “This Week In Security: GitHub Actions, SHA-1 Retirement, And A Self-Worming Vulnerability”

Your Own Santa? Thermal Camera Roundup

December 22, 2022 by 51 Comments

With Christmas and other end-of-year celebrations, there are gifts. The problem is that your loved ones don’t really know what to get you. Who can blame them? Do you want an Arduino, a Raspberry Pi, or a Blue Pill? Is that 3D printer on sale better than the one you have? Do you even want a second printer? They don’t know. In the best case, they’ll give you gift cards. But sometimes you just have to buy yourself something nice. [Wired] has a suggestion: a phone-based thermal camera. Which one? They have four suggestions ranging from about $150 to $200.

Different people have different reasons for wanting a thermal camera. You can see hot spots in electronics, for example. Or pick out hot water pipes behind walls. The resolution is limited. The highest in the [Wired] review is only 206×136. For the digital camera buffs, that’s 0.028 megapixels! Some cameras have even less resolution. For example, one of the cameras has an 80×60 resolution but uses an optical camera to give the illusion of a higher resolution.

Continue reading “Your Own Santa? Thermal Camera Roundup”

The Physics Behind The Collapse Of A Huge Aquarium

December 20, 2022 by 144 Comments

At the end of last week Aquadom, the world’s largest cylindrical aquarium, unexpectedly shattered and caused an emergency as it flooded both the Berlin hotel that housed it and the surrounding streets. From an engineering perspective it’s a fascinating story, because its construction was such that this shouldn’t have happened. We have an analysis of what might have gone wrong from [Luis Batalha] (Nitter), and from it we can learn a little about the properties of the plastic used.

The aquarium was made of an acrylic polymer which has an interesting property — at a certain temperature it transitions between a glass-like state and a rubber-like one. Even at room temperature the acrylic is well below the transition temperature, but as the temperature drops the acrylic becomes exponentially more brittle. When the outside temperature dropped to well below zero the temperature also dropped in the foyer, and the high water pressure became enough to shatter the acrylic.

Sadly few of the fish from the aquarium survived, but fortunately nobody was killed in the incident. News coverage shows how the force of the water destroyed the doors and brought wreckage into the street, and we’re guessing that it will be a while before any other hotel considers such a project as an attraction. Meanwhile we’ve gained a little bit of knowledge about the properties of acrylic, which might come in handy some day.

Header: Chrissie Sternschuppe, CC BY-SA 2.0.