IBM’s Early PC Attracts Time Travelers

It wasn’t long ago I was nostalgic about an old computer I saw back in the 1980s from HP. It was sort of an early attempt at a PC, although price-wise it was only in reach for professionals. HP wasn’t the only one to try such a thing, and one of the more famous attempts was the company that arguably did get the PC world rolling: IBM. Sure, there were other companies that made PCs before the IBM PC, but that was the computer that cemented the idea of a computer on an office desk or at your home more than any computer before it. Even now, our giant supercomputer desktop machines boot as though they were a vintage 1981 PC for a few minutes on each startup. But the PC wasn’t the first personal machine from IBM and, in fact, the IBM 5100 was not only personal, but it was also portable. Well, portable by 1970s standards that also had very heavy video cameras and luggable computers like the Osborne 1.

The IBM 5100 had a brief three-year life from 1975 to 1978. A blistering 1.9 MHz 16-bit CPU drove a 5-inch CRT monitor and you could have between 16K and 64K of RAM along with a fair amount of ROM. In fact, the ROMs were the key feature and a giant switch on the front let you pick between an APL ROM and a BASIC ROM (assuming you had bought both).

Continue reading “IBM’s Early PC Attracts Time Travelers”

Optimizing The Mining Of Uranium From Coal Ash And Seawater

Of all the elements that make up the Earth’s crust, uranium is reasonably abundant, coming in at 49th place, ahead of elements such as tin, tungsten and silver. Ever since humankind began to exploit uranium for its fissile properties in energy production, this abundance has also translated into widespread availability for mining. As of 2019, Kazakhstan, Canada and Australia formed the world’s main producers, accounting for about 68% of output.

Considering the enormous energy density of uranium when used as fuel in a nuclear fission reactor, the demand for uranium is relatively low, especially combined with the long (two years on average) refueling cycles of commercial reactors. The effect is that even with the very inefficient once-through fuel cycle – which only uses a fraction of the uranium fuel’s potential energy – uranium market prices have remained relatively low and stable even amidst geopolitical crises.

Despite this, the gradual rise in uranium market prices ($10/lb in 2003, $49/lb in 2022), as well as the rapid construction of new reactors is driving new exploration. Here recent innovations may make uranium fuel even more accessible to all nations, by unlocking the billions of tons of uranium found in plain seawater as well as the many tons of fly ash produced by coal plants every single day.

Continue reading “Optimizing The Mining Of Uranium From Coal Ash And Seawater”

A Brief History Of Drywall Or: How Drywall Came To Dominate The World Of Construction

Drywall is common and ubiquitous in commercial and residential buildings today. Many of us barely think about it until we have to repair a hole smashed in it.

However, drywall has not been around forever, and actually took many years to establish itself as a popular building material. Today, we’ll look at how it came about, and why it went on to dominate the world of construction.

Continue reading “A Brief History Of Drywall Or: How Drywall Came To Dominate The World Of Construction”

Superconference 2022 Hack Chat

Join us on Wednesday, August 24 August 31 at noon Pacific for the Superconference 2022 Hack Chat!

[Sorry folks — due to a scheduling snafu, we’ve got to push this off a week. — ed]

To say that a lot of water has passed under the bridge since 2019 is something of an understatement. When last we met as a group, in Pasadena in November of that year, the Covid-19 pandemic and its fallout were ahead of us. Supercon 2019 was a smashing success, a three-day meetup that brought together the best the hacker community has to offer to exchange ideas, share their projects, and meet up IRL rather than reading about everyone’s exploits and adventures online. It was a fantastic time, but how were we to know that it would be the last meatspace meetup for a painfully long time?

join-hack-chatThankfully, that’s all behind us now, and Supercon 2022 is back, live and in person! Everyone in the hacker community is going to want to be in Pasadena, but since it’s been so long since we’ve met up in person, we thought a Hack Chat focusing on Supercon would be a good idea. We’ve invited Majenta Strongheart on to field your questions, plus hopefully we’ll have a few surprise guests too. But this will mainly be your chance to sort of “pre-network” before the con. If you’re a Supercon first-timer, this is a great way to ask questions about how it all works and whether it’s worth it to attend (answer: it is — go buy tickets now!) For vets, this is your chance to share your stories of Supercons past, or perhaps to reconnect with con-buddies you’ve lost touch with. There’ll be something for everyone, both at the Hack Chat and at Supercon, so drop by the chat and find out what all the hype is about.

Our Hack Chats are live community events in the Hackaday.io Hack Chat group messaging. This week we’ll be sitting down on Wednesday, August 31 at 12:00 PM Pacific time. If time zones have you tied up, we have a handy time zone converter.

Hackaday Links Column Banner

Hackaday Links: August 21, 2022

As side-channel attacks go, it’s one of the weirder ones we’ve heard of. But the tech news was filled with stories this week about how Janet Jackson’s “Rhythm Nation” is actually a form of cyberattack. It sounds a little hinky, but apparently this is an old vulnerability, as it was first noticed back in the days when laptops commonly had 5400-RPM hard drives. The vulnerability surfaced when the video for that particular ditty was played on a laptop, which would promptly crash. Nearby laptops of the same kind would also be affected, suggesting that whatever was crashing the machine wasn’t software related. As it turns out, some frequencies in the song were causing resonant vibrations in the drive. It’s not clear if anyone at the time asked the important questions, like exactly which part of the song was responsible or what the failure mode was on the drive. We’ll just take a guess and say that it was the drive heads popping and locking.

Continue reading “Hackaday Links: August 21, 2022”

Dream Projects Face Reality

Do you ever get a project stuck in your mind? An idea so good you just keep thinking about it? Going over iterations and options and pros and cons in the back of your mind, or maybe on paper, but having not yet subjected it to the hard work of pulling it into reality? I’ve had one of those lurking around for the last couple weeks, and it’s time for me to get building.

And I’ve got to get started soon, because it’s rare that any project makes the leap from thought to reality unscathed, and when I hold on to the in-thought project too long, I become far too fond of some of the details and nuances that just might not make the cut, or might get in the way of getting a first pass finished. When I really like a (theoretical) solution to a (theoretical) problem, I’ll try to make it work a lot longer than I should, and I can tell I’m getting attached to this one now.

The only cure to this illness is to get prototyping. When the rubber hits the road, and the bolts are tightened, either the solution is a good one or it’s not, and no amount of dreaming is going to change that. Building is a great antidote to the siren song of a dream project. Although it feels now like I don’t want the fantasy to have to adapt to reality, as it inevitably will, I know that getting something working feels a lot better. And it frees me up to start dreaming on the next project… To the workshop!

This Week In Security: Secure Boot Bypass, Attack On Titan M, KASLR Weakness

It’s debatable just how useful Secure Boot is for end users, but now there’s yet another issue with Secure Boot, or more specifically, a trio of signed bootloaders. Researchers at Eclypsium have identified problems in the Eurosoft, CryptoPro, and New Horizon bootloaders. In the first two cases, a way-too-flexible UEFI shell allows raw memory access. A startup script doesn’t have to be signed, and can easily manipulate the boot process at will. The last issue is in the New Horizon Datasys product, which disables any signature checking for the rest of the boot process — while still reporting that secure boot is enabled. It’s unclear if this requires a config option, or is just totally broken by default.

The real issue is that if malware or an attacker can get write access to the EFI partition, one of these signed bootloaders can be added to the boot chain, along with some nasty payload, and the OS that eventually gets booted still sees Secure Boot enabled. It’s the perfect vehicle for really stealthy infections, similar to CosmicStrand, the malicious firmware we covered a few weeks ago.
Continue reading “This Week In Security: Secure Boot Bypass, Attack On Titan M, KASLR Weakness”