I cannot believe that 4chan was brought down by postscript executed by an obsolete version of ghostscript. That's somewhere between

And

I can't understand how it took so long.

TIPS and TRICKS for LAWYERS:

judst fuck of

作弊条：将不规则尺寸的图片转换成信纸大小的 PDF

在日常文档处理中，我们时常会遇到需要将不规则尺寸的 PDF 文件调整为北美标准信纸大小（8.5英寸 x 11英寸）的需求，特别是在处理原始扫描的 PDF 时。本文将介绍如何借助 ImageMagick 和 GhostScript 软件来完成此转换，并确保文件保持较小的体积和清晰的质量。

本文假定输入的文件名为 input.pdf，只有 1 页，四边已 crop 好��文字内容周围留有足够的空白、无需进一步调整，直接缩放不会显著影响质量。

具体步骤

1. 将 PDF 转换成无损格式的高分辨率 TIFF 图片

使用以下命令将 PDF 文件转换为 300 DPI 的 TIFF 格式：

$ convert input.pdf -density 300 -resize 2550x3300 temp.tiff

此命令生成的 temp.tiff 文件尺寸最大为 2550x3300。其中，“宽为 2550 像素”及“高为 3300 像素”两个条件至少满足一条。将原始 PDF 转换为精度为 300 DPI 的无损 TIFF 图片格式，对于大部分印刷文本、图片需求，已足够清晰，并避免压缩过程中图像质量的损失。

2. 将调整好尺寸的 TIFF 图片转换成 PDF

$ convert temp.tiff -gravity north -extent 2550x3300 output.pdf

其中，-gravity north 使文件顶部对齐。也可以选择其他方向（northwest、center 较为常用）。-extent 参数补足 PDF 尺寸，原文件缺失的部分，默认以白色补足。

3. 压缩 PDF 文件

第二步生成的 PDF 文件尺寸较大（约 20MB），不便于传输、应用。可用 GhostScript 工具重新采样、压缩。

$ gs -sDEVICE=pdfwrite -dCompatibilityLevel=1.4 -dPDFSETTINGS=/printer -dNOPAUSE -dQUIET -dBATCH -sOutputFile=output_compressed.pdf output.pdf

其中 PDFSETTINGS 可选的参数有：

/screen: 72 DPI

/ebook: 150 DPI

/printer: 300 DPI

/prepress: 高分辨率并且包含色彩信息

/default: 默认，效果介于 /screen 和 /printer 之间。

此步骤结束后输出的文件 output_compressed.pdf 即符合打印要求的文档。如果 PDF 内容以黑白文字为主，大小应在 1MB 以内。

注 1：如希望修改 ImageMagick 生成的 PDF 中的默认 metadata，可以这样操作：

首先建立一个名为 metadata.pdfmark 的文本文件，参考内容如下：（请适当修改）

[ /Title (Frank's Very Important Document) /Author (Frank Lin) /Subject (Frank's experiments with pdfmark) /Creator (https://linshuang.info/) /ModDate (D:20241101000000+01'00') /Producer (A 'pdfmark' trick with Ghostscript) /Keywords (Metadata, Ghostscript, PDF) /CreationDate (D:20241101000000+01'00') /DOCINFO pdfmark

（注意，文件末尾是“pdfmark”，不能以 ] 关闭）

将第三步中的 gs 命令后面增加一输入文件，即可覆盖 output.pdf 中的 metadata。

$ gs -sDEVICE=pdfwrite -dCompatibilityLevel=1.4 -dPDFSETTINGS=/printer -dNOPAUSE -dQUIET -dBATCH -sOutputFile=output_compressed.pdf output.pdf

生成的文件在 Chrome 中看起来是这样的：

注 2：对于多页的 PDF，可写脚本对每页内容按类似方法处理，具体步骤��略。

This is such a funny attack for the first stage alone, but I'm dying to know what the mistaken suid binary was. Inb4 their copy of ping was also from 2012.

yeah that'll do it

Please Start Archiving in the US

With current events, I think it is prudent that everyone, that is able to, needs start archiving shit. I am a former library worker but I do not know much about cybersecurity. If you do want to go down that route please research and keep you and your archive safe :). The more copies that are preserved, then the more likely it is that the media will survive. Even if you save only 2 files that is still important!

First, I will list how to create an computer archive and best practices, then I will provide a list of known targets and suggested materials to add.

You need somewhere to store your data most people will use their computer's storage drive but you need to have backups! Do not rely on cloud storage solutions, they require internet connection are vulnerable to data breaches, and the companies that store that data must follow any laws that the government may decide to pass. USBs or external hardrives are best options. CDs can be used in a pinch, but are more likely to degrade as well as having lower storage capacity then the previous options. Use whatever you have lying around, you do not need to spend money if you don't want to.

When saving data use file formats that are common and able to be read without use of a special software. (that means no .docx) PDF/A is the gold standard for archiving. It is a subtype of pdf that contains metadata, such as typefaces and graphical info, that ensure the files are read properly in the future. Adobe Acrobat is able to save and convert documents into PDF/A. PDFTron, DocuPub, and Ghostscript are all free or have free versions that create pdf/a files. PNG, JPEG2000, .txt, MP3, wav, are other common file types that the Smithsonian recommends for data storage. For a full list of types to use and avoid, see the sources cited at the bottom.

What are we archiving?

Please gather both fiction and nonfiction resources. Nonfiction collection ideas: Current news clips, local history of marginalized communities, interviews, biographies, memoirs, zines, and art pieces. Saving scientific research is incredibly important! In 1933, one of the first places they targeted was the Institute of Sexual Science. Lots of what was stored there was never recovered. Environmental science, trans and intersex health, and minority history will likely be targeted first. For fiction, the most commonly challenged books last year were: 1) GenderQueer by Maia Kobabe 2) All Boys Aren't Blue by George Johnson 3) This Book is Gay by Juno Dawson 4) The of Being a Wallflower by Stephen Chbosky 5) Flamer by Mike Curato 6) The Bluest Eyes by Toni Morrison 7) Me and Earl and the Dying Girl by Jesse Andrews 8) Tricks by Ellen Hopkins 9) Let's Talk about it (Teen guide to sex, relationships, and being a human) by Erika Moen and Matthew Nolan 10) Sold by Patricia McCormick I present this list so you have an idea of what is normally targeted. Books that describe racism and queer identities are most common, but other targets include any depictions of violence, drugs, sex. Use your personal archive to accumulate data that you personally are passionate about. The more niche a topic the more likely it is that other people will not have it in their storage.

Lastly, please remember as an archivist you are not there to determine if a piece is worthy of being saved. Just because you do not like or agree with the message does not mean it will be saved from being banned. All artworks amateur or professional are worthy of being archived.

Sources: ALA 2023 Banned Books https://www.ala.org/bbooks/frequentlychallengedbooks/top10

How to create a PDF/A file https://www.research.gov/common/attachment/Desktop/How_do_I_create_a_PDF-A_file.pdf

Smithsonian Data Management Best Practices and File Formats https://siarchives.si.edu/what-we-do/digital-curation/recommended-preservation-formats-electronic-records https://library.si.edu/research/best-practices-storing-archiving-and-preserving-data

Tell me about printer protocols o3o

off the top of my head....lesgoooooo

Bonjour isn't a printing protocol but it is a service protocol...idk if it does all device discovery or just printers. apple thing. anyway, uh pretty sure apple also use CUPS, or parts of it. which again, service protocol. that's that good Common UNIX Printing System. okay.

so we got a CUPS an we got a printer. an they gotta talk. idk how it used to work, but since at least the mid 00s printers typically use something called PostScript. or maybe GhostScript. which could jus be PS but a funnye FOSS version ???? special language that the microcontroller in a printer can convert into what colours it gotta mix and put where. i gotta start looking all this up bc it's been a hot min.

assuming the printer is physically plugged to the computer this is all done as a serial connection. since USB is serial. we don't talk about the parallel port. idk how network stuff affects this but presumably it's just wrapped in IP packets ?

printers are brats. and this is fine. this was fine. until companies started making them dystopian as fuck. i can handle a printer being a bit of a dick sometimes, selectively working. i can't handle ink-subscription-based DRM. or cloud print only. or any of that shit.

tbh i would be happy saving to a usb drive, walking to the printer room and plugging that drive in. no fuckery required. if you want stuff to print out remotely that's what fax is for. we should bring back fax.

you might be able to tell i've watched a lotta CRD

this got a bit off topic lmao but if u want me to re-inform myself on how printer talk then i can do

frenchie-centric fic recs (mostly including kimiko)

Hi everyone so as an AVID frenchie fan and fic reader who has scrolled through the ENTIRE frenchie ao3 tag i thought i would compile a list of my fave fics! most of these are quite short/ one-shots, and they're in no particular order 🫶🫶🫶

-> don't think about the past (always there, anyway) by @abed_with_a_knife

this one is a sweet gift to the frenchie fandom in the way it's not sweet at all and actually so heart-wrenching. hughie wondering about frenchie's past and his coping mechanisms + why no one seems to like be concerned. also little nina angst shiii 😮‍💨 almost 10k too!!

-> you're a pal and a confidant by @listenlisten223

AMAZING exploration of the cherie + frenchie dynamic and some of their backstory. love love love love.

-> drink up your movements (still i can’t get enough) by @nevermesswithteddybears

OH THIS ONE MADE ME SICK!!!!!! angst. communication barriers. kimchie. i was ill at the end.

-> heel by @dickvinci

character study of frenchie, plus just a general exploration of frenchie + little nina and their time together. dickvinci nation rise!!!!

-> adding that to the list by @ghostscript

almost 20k of frenchie being a trainwreck and everyone being worried. my fav typa thing

-> i'm not yours by @rifff123

frenchie getting kidnapped by little nina. angst!! kimiko + mm teamup!! excellence!!

-> chopping block by @embir

S3 rewrite/companion piece. i tried not to include any incomplete fics but this is one is too amazing to not include. perfectly written angst and great exploration of frenchie's whole...thing

-> vendetta by @felldownthelist

mm, frenchie, and kimiko shenanigans

-> Three Times Kimiko Didn't Have To Speak, And Then That One Time Frenchie Didn't Have To by @tonytones

self explanatory. lovely exploration of their dynamic and communication style

-> my angels will watch me burn by @givemecourage

sad sad sad frenchie backstory

-> If You Hold Me Without Hurting Me, You'll Be The First Who Ever Did by @spooky_fan_me

post little nina gate, frenchie and kimiko taking care of each other. short and sweet and presh.

Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript

Source: https://www.securityweek.com/attackers-exploiting-remote-code-execution-vulnerability-in-ghostscript/

More info:

https://codeanlabs.com/blog/research/cve-2024-29510-ghostscript-format-string-exploitation/

https://www.openwall.com/lists/oss-security/2024/07/03/7

「PostScript」や「PDF」を処理するインタプリタの「Ghostscript」の脆弱性について注意が呼びかけられている。3月から5月にかけてリリースされたアップデートで修正済みだという。 現地時間3月6日にリリースされた「同10.03.0」、5月2日にリリースされた「同10.03.1」にて複数の脆弱性が修正されているとして、注意喚起が行われたもの。 5月に「同10.03.1」がリリースされた際は、「CVE」ベースで5件の脆弱性を修正したことが公表されたが、特に脆弱性の言及がなかった「同10.03.0」においても、5件の脆弱性が修正されているという。 具体的には「CVE-2024-29506」「CVE-2024-29507」「CVE-2024-29508」「CVE-2024-29509」「CVE-2024-29511」で7月に入りメーリングリストで報告された。 5月10日のアップデートで修正された「CVE-2024-33871」については、共通脆弱性評価システム「CVSSv3.1」のベーススコアが「8.8」とされるほか、3月に修正された「CVE-2024-29511」が「7.5」と評価されている。ただし、「CVSS」基本値が現状示されていない脆弱性もある。 「同10.03.0」および「同10.03.1」にて修正された脆弱性は以下のとおり。 CVE-2023-52722 CVE-2024-29506 CVE-2024-29507 CVE-2024-29508 CVE-2024-29509 CVE-2024-29510 CVE-2024-29511 CVE-2024-33869 CVE-2024-33870 CVE-2024-33871

【セキュリティ ニュース】「Ghostscript」の脆弱性に注意 - 3月と5月の更新で修正済み（1ページ目 / 全1ページ）：Security NEXT

maybe they could even process them with a version of ghostscript from 2012. imagine seeing what the admin dashboard looks like

we need to have a way to post a pdf directly to tumblr. tumblr should have another post type called "pdf" so we can embed them easily. tumblr will never be the new pdf without this function.

Apparently some [4chan] boards allowed uploading PDF files, but the site never checked if the PDF file was an actual PDF file. Once a PDF file was uploaded it was passed to a version of Ghostscript from 2012 which would generate a thumbnail. So the attacker found an exploit where uploading a PDF with the right PostScript commands could give the attacker shell access.

fucking lol

I hate Adobe I hate the PDF standard I hate Cellebrite I hate the IDF I hate the US court system I hate the Kentucky court system further hate to be issued as warranted.

My decay products include Bash scripts and HTML

Ghostscript 10.05.0未満に深刻な脆弱性8件：CVSSスコア9.8「クリティカル」レベル脆弱性とアップデート対応の緊急性

Artifex…