Kpsa4 Posted July 30, 2024 Posted July 30, 2024 (edited) Guys, it is good to be paranoid, but there is nothing fake on the commandcontrolQ one. If you check that Github page there is clearly written: This is an archive of the VxKex repository from the user 'vxiiduu', whose account was deleted on the 21st of July 2024 for reasons currently unknown. I am not planning on maintaining VxKex any time soon, so I will be disabling the Issues page. So somebody just reuploaded and clearly written its just reupload from the original account. What is fake about it? And you can always compare hashes with your local archived version or archive.org version if they are available to be sure its not somehow tampered. And it was actually me who posted the other fake one, but I have clearly written it is just info from that ycombinator.com website. And then I also posted its marked as fake on the i486 repo. But according your logic the i486 one where was written the second one is fake is fake as well, because the i486 user is just somebody who was very active in the previous original repo, but not the original owner. Imho nobody in this topic wanted to post here any fake or harmful info, but as @vxiiduu didn't make any official statement here, we can just speculate what happened. Edited July 30, 2024 by Kpsa4
D.Draker Posted July 30, 2024 Posted July 30, 2024 11 hours ago, Kpsa4 said: And it was actually me who posted the other fake one, but I have clearly written it is just info from that ycombinator.com website. And then I also posted its marked as fake on the i486 repo. Good! Thanks for coming out with the confession, then the supervisor will keep an eye on you, too. 4
D.Draker Posted July 30, 2024 Posted July 30, 2024 11 hours ago, Kpsa4 said: Guys, it is good to be paranoid, but there is nothing fake on the commandcontrolQ one. No one is "paranoid", we are just being on the safe side. I mean, do you realise how serious is to install kernel from unknown, non-developer sources!? MSFN only hosts and provides 100% clean originals. The same with external links. We can't just take someone's word for it, sorry. 3
Dixel Posted July 30, 2024 Posted July 30, 2024 (edited) 11 hours ago, Kpsa4 said: And you can always compare hashes with your local archived version or archive.org version if they are available to be sure its not somehow tampered. Compare with what? What if the user is new, and doesn't have any of these from before? Since the original repo is gone, as you wrote yourself. Edited July 30, 2024 by Dixel typo 4
Dixel Posted July 30, 2024 Posted July 30, 2024 11 hours ago, D.Draker said: MSFN only hosts and provides 100% clean originals. The same with external links. Agree! Only good PR for MSFN. 4
Dixel Posted July 30, 2024 Posted July 30, 2024 11 hours ago, Kpsa4 said: archived version or archive.org version if they are available It doesn't let me to download. https://web.archive.org/web/20240727151625/https://github.com/i486/VxKex/releases/tag/Version1.1.1.1375 4
Kpsa4 Posted July 30, 2024 Posted July 30, 2024 41 minutes ago, D.Draker said: Good! Thanks for coming out with the confession, then the supervisor will keep an eye on you, too. No problem. Feel free to keep an eye on me here. I don't care and as you can see I have nothing to hide here and that's why I made this "confession". Quote No one is "paranoid", we are just being on the safe side. I mean, do you realise how serious is to install kernel from unknown, non-developer sources!? MSFN only hosts and provides 100% clean originals. The same with external links. We can't just take someone's word for it, sorry. Might be language barrier, as I'm not native English speaker, but by "it is good to be paranoid" I actually mean it is good you don't trust any random person on internet. I'm not here against you. And of course I know it's serious to install kernel or any similar software from unknown source. But basically anything might be infected. Even "known" source. What is known anyway? There are tons of software on Github and tons of various forks. Not everything is clean. You always need to use common sense. And you can check the sources if you have the skill or debug it. But it this case only what you need to do is compare the hashes or compare the files binary by content. I'm sure many people got the local archived version from the previous source to do it. And if they don't have it, there is archive.org. And there is no way to provide original source if the source has been deleted included the original account. If we cannot discuss here such new external links. I see no point of this topic at all as the original developer might inform us in the original topic about VxKex if he wants. 43 minutes ago, Dixel said: Compare with what? What if the user is new, and doesn't have any of these from before? Since the original repo is gone, as you wrote yourself. Compare with archive.org versions if you don't have your own copy and of course they are available. here: https://web.archive.org/web/20240712131314/https://github.com/vxiiduu/VxKex/releases 38 minutes ago, Dixel said: It doesn't let me to download. https://web.archive.org/web/20240727151625/https://github.com/i486/VxKex/releases/tag/Version1.1.1.1375 The download from there works just fine for me. Must be problem on your side or in your browser, but I don't know why are you trying to download i486 archived version and not the original vxiiduu version from the archived link I provided above.
D.Draker Posted July 30, 2024 Posted July 30, 2024 (edited) 11 hours ago, Kpsa4 said: Might be language barrier, as I'm not native English speaker, but by "it is good to be paranoid" I actually mean it is good you don't trust any random person on internet. I'm not here against you. And of course I know it's serious to install kernel or any similar software from unknown source. But basically anything might be infected. Even "known" source. What is known anyway? There are tons of software on Github and tons of various forks. Not everything is clean. You always need to use common sense. No, on the contrary, your English is good. I wish many others had at least your level. Today, I wanted to stick forks in my eyes when I saw "maded" written by a dude who claims to be a "developer", lol. So, I just made you a compliment, as you see, I'm not here "against you", either. What I wanted to tell, we know that Kernel developer from here, he is a member, I don't trust github either, I trust MSFN. Edit. Nothing personal, it's just we had some MSFN haters joined as of lately. So some folks may be a bit agitated and over-protective. Edited July 30, 2024 by D.Draker 2
Kpsa4 Posted July 30, 2024 Posted July 30, 2024 19 minutes ago, D.Draker said: No, on the contrary, your English is good. I wish many others had at least your level. Today, I wanted to stick forks in my eyes when I saw "maded" written by a dude who claims to be a "developer", lol. So, I just made you a compliment, as you see, I'm not here "against you", either. What I wanted to tell, we know that Kernel developer from here, he is a member, I don't trust github either, I trust MSFN. Edit. Nothing personal, it's just we had some MSFN haters joined as of lately. So some folks may be a bit agitated and over-protective. All fine. Also nothing personal from my side. As you can see I'm not much active here. I'm here for 2 years with just few posts and half of them in last days in this topic. That's why I don't know about the haters. I also know that the original vxkex developer got account here, but looks like he was not much active here recently. But with my reply I just wanted to make it clean, that the first "fake" post was made by me, but there is easy way to verify it is not somehow tampered at least in this case if it's also on web archive. And even that fake one deleted now got the binaries binary the same as the original. You can still verify that on web archive here: https://web.archive.org/web/20240723221328/https://github.com/VxKex/VxKex/releases But I fully agree with you, that everybody needs to be cautious when installing anything from internet and specially if it's new or unknown source and the target software got high level of system access. 1
AstragonQC Posted August 1, 2024 Posted August 1, 2024 Maybe VxKex repo itself was not the target. AFAIK in Vx's account (WM snapshot), there was a repo called NotepadEx that contained code allegedly coming from the leaked XP source code. It may be probable that, because that code had no reason being there (due to his nature as leaked code), some entity may have reported it, then the account got wiped out. This is my theory, maybe I'm wrong and something else happened that lead to the account to disappear/get terminated?
Klemper Posted August 2, 2024 Posted August 2, 2024 (edited) On 7/31/2024 at 7:32 PM, FuzzleSnuz said: Something interesting to note: the handful of VxKex forks on github still exist (most are pointless forks with zero commits). Github said all of these forks originated from vxiiduu/VxKex, before the VxKex repo takedown. That has changed. Now github strangely says all these forks originate from win32ss/VxKex. The code here is circa the 0.0.0.1 release. It's weird that win32ss has apparently inherited ownership of the VxKex fork network. His fork isn't even listed on the vxiiduu/VxKex/forks page. If this was a Microsoft attack (which feels very probable, but there are other possibilities) with the intent to scrub VxKex and vxiiduu from existence, then they did a poor job, by failing to scrub the github forks. Why would you intentionally post fakes on the forum, even after the others here asked not to. Edited August 5, 2024 by Klemper
Dixel Posted August 2, 2024 Posted August 2, 2024 On 7/31/2024 at 1:32 PM, FuzzleSnuz said: If this was a Microsoft attack (which feels very probable, but there are other possibilities) with the intent to scrub VxKex and vxiiduu from existence, then they did a poor job, by failing to scrub the github forks. It can't be classified as an "attack" in either of the cases, Microsoft has the right to defend what's theirs. Closed source Kernel modifications aren't allowed in the US, 3
Dixel Posted August 2, 2024 Posted August 2, 2024 On 7/31/2024 at 1:32 PM, FuzzleSnuz said: It's weird that win32ss has apparently inherited ownership of the VxKex fork network. His fork isn't even listed on the vxiiduu/VxKex/forks page. Nothing weird, I always suspected win32 stood behind all Kernel releases to begin with, it's just my personal opinion after looking at the code. Not seeking an argument over it. 4
Dixel Posted August 2, 2024 Posted August 2, 2024 On 7/31/2024 at 9:15 PM, AstragonQC said: Maybe VxKex repo itself was not the target. AFAIK in Vx's account (WM snapshot), there was a repo called NotepadEx that contained code allegedly coming from the leaked XP source code. It may be probable that, because that code had no reason being there (due to his nature as leaked code), some entity may have reported it, then the account got wiped out. This is my theory, maybe I'm wrong and something else happened that lead to the account to disappear/get terminated? My developer friend on github said they usually send an official letter demanding to remove the content in question, so not likely the case. 3
NotHereToPlayGames Posted August 2, 2024 Posted August 2, 2024 (edited) 1 hour ago, Dixel said: they usually send an official letter Sending an official letter and receiving the official letter are two different things. I have never been a fan of "extended kernels" but do acknowledge that there is a "communal need" for them. To me, even POSReady2009 is a "leaked" entity being ILLEGALLY used by "thousands". I myself would never provide GitHub with a "real" email address if I were publishing "extended kernels" of a Microsoft Operating System on a Microsoft-owned web site. I'd be better served customizing a shirt with a bullseye symbol and walking around with a picket sign to offend anybody and everybody that would see me carrying the picket sign. Edited August 2, 2024 by NotHereToPlayGames
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now