11 month ago
nelson : Storm superworm - The other way to build a supercomputer
Rod Begbie : Gathering 'Storm' Superworm Poses Grave Threat to PC Nets - Analysis of the "Storm" worm. Cunningly designed to be as undetectable as possible, it's a frightening vision of what modern malware can be. [via] #
# copy
17 month ago
Matthew M. Boedicker : Knuth, Stallman, Schneier t-shirts and stickers - (via wmf.editthispage) [via]
Rod Begbie : Product listing - Geekz Shop - T-shirts and stickers emblazoned with the likes of Richard Stallman, Donald Knuth and Bruce Schneier. I ordered a couple of the Schneier stickers for my laptops. [via] #
# copy
18 month ago
Rod Begbie : Schneier on Security: CYA Security - I U+2665 Bruce Schneier. "Much of our country's counterterrorism security spending is not designed to protect us from the terrorists, but instead to protect our public officials from criticism when another attack occurs." [via] #
Matthew M. Boedicker : Schneier essay on how CYA behavior leads to ineffective security
# copy
19 month ago
43folders : Why Vista's DRM Is Bad For You - Forbes.com - "...we're stuck with DRM systems that interfere with all of our computer use--even the uses that have nothing to do with copyright." [via: Daring Fireball]
# copy
20 month ago
wearehugh : Dark Reading - Desktop Security - Schneier On Schneier - Security News Analysis
# copy
20 month ago
wearehugh : Schneier on Security: Choosing Secure Passwords - give up now. technology will win this one.
Rod Begbie : Schneier on Security: Choosing Secure Passwords - Choose better passwords through understanding how brute-crackers work these days. #
Simon Willison : Choosing Secure Passwords - Choosing Secure Passwords. Bruce Schneier describes the state of the art in password cracking software.
# copy
21 month ago
wearehugh : Schneier on Security: Real-World Passwords
Simon Willison : Real-World Passwords - Random passwords phished from MySpace are surprisingly decent.
Rod Begbie : Schneier on Security: Real-World Passwords - Bruce Schneier breaks down the password data gathered by a MySpace phishing attack. Notable fact: When the site insists upon including letters and numbers in the password, folks just append "1" to their usual password. (And, in my experience, when forc [via] #
# copy
25 month ago
Rod Begbie : Schneier on Security: Last Week's Terrorism Arrests - Bruce Schneier on the futility of banning liquids from carry-on luggage in the long-term. I imagine that that's not going to stop the TSA, though. #
jkottke : Bruce Schneier on the liquids ban at the airport and "the difference between effective security and security theater" - Bruce Schneier on the liquids ban at the airport and "the difference between effective security and security theater". "And if you want to know what you can do to help? Don't be terrorized."
jimray : Bruce Schneier on last week's terrorism arrests - "None of the airplane security measures implemented because of 9/11 ... had anything to do with last week's arrests. Instead, the arrests are a victory for old-fashioned intelligence and investigation."
# copy
30 month ago
Rod Begbie : Schneier on Security: Airport Passenger Screening - Another good Bruce Schneier article. Worth it for the sentence "Although we should all be glad that Richard Reid wasn't the 'underwear bomber.'" #
Jeremy Zawodny : Airport Passenger Screening - Airport Passenger Screening: "It seems like every time someone tests airport security, airport security fails. In tests between November 2001 and February 2002, screeners missed 70 percent of knives, 30 percent of guns and 60 percent of (fake) bombs.
# copy
33 month ago
Rod Begbie : Wired News: Airline Security a Waste of Cash - Excellent article by Bruce Schneier on the futility of current airport "security". [via] #
Nelson Minar : Airline security farce - Great Schneier essay (via BoingBoing)
# copy
33 month ago
kayodeok : The Human Side of Security - The species Homo sapiens supports a wide range of intellectual capabilities such as speech, emotion, rational thinking etc. Many of these components are enabled by default - though to differing degrees of success.
# copy
35 month ago
jimray : Sign Language - "Don't let the CAT out of the bag!" No wonder we can't fucking find Osama.
# copy
35 month ago
Nelson Minar : Printer fingerprints 2 - Images showing the dots.
kayodeok : Secret Forensic Codes in Color Laser Printers - DocuColor Tracking Dot Decoding Guide: This guide is part of the Machine Identification Code Technology project. It explains how to read the date, time, and printer serial number from forensic tracking codes in a Xerox DocuColor color laser printout
# copy35 month ago
kayodeok : Phishing Without Computers: Beijingers fall victim to SMS scam - A Beijing resident surnamed Wang never thought a text message on his mobile phone would cost him more than 150,000 yuan (US$18,500)
# copy
35 month ago
Jeremy Zawodny : The Airline Screening Playset - The Airline Screening Playset: Hours of Fun!
jimray : The Airline Screening Playset: Hours of Fun! - I'm waiting for the Tom Ridge LEGO set...
# copy
36 month ago
kayodeok : Privacy Enhanced Computer Display - The privacy-enhanced computer display uses a ferroelectric shutter glasses and a special device driver to produce a computer display which can be read only by the desired recipient, and not by an onlooker
Rod Begbie : Privacy Enhanced Computer Display - "It is also possible to use the system to "underlay" a private message on a public display system." Anyone else reminded of "They Live"? [via] #
plasticbag : Privacy Enhanced Computer Display - A lovely bit of tech this one that makes what's on your monitor only visible through special glasses. Reminds me of the LCD screen that's completely unreadable from the sides...
# copy
36 month ago
kayodeok : The Six Dumbest Ideas in Computer Security - Let me introduce you to the six dumbest ideas in computer security. What are they? They're the anti-good ideas. They're the braindamage that makes your $100,000 ASIC-based turbo-stateful packet-mulching firewall transparent to hackers
Simon Willison : The Six Dumbest Ideas in Computer Security - Thought provoking.
Eric Meyer : The Six Dumbest Ideas in Computer Security - Indeed, quite a bit of thought was provoked. [via Simon] [via]
Milo Vermeulen : The Six Dumbest Ideas in Computer Security [via]
# copy39 month ago
kayodeok : The Battle against phishing: Dynamic Security Skins - Dynamic Security Skins allows a remote web server to prove its identity in a way that is easy for a human user to verify and hard for an attacker to spoof.
# copy
39 month ago
kayodeok : MD5 Collisions: Attacking Hash Functions by Poisoned Messages - "The Story of Alice and her Boss" - Via Bruce Schneier: "Two researchers from the Institute for Cryptology and IT-Security have generated PostScript files with identical MD5-sums but entirely different (but meaningful!) content"
Steve Cook : CITS - MD5 Collisions - The breaking of MD5 continues, as two meaningful documents have been generated with identical hashes. (via Bruce Schneier)
# copy
39 month ago
kayodeok : Cracking the Bluetooth PIN - This paper describes the implementation of an attack on the Bluetooth security mechanism. Specifically, we describe a passive attack, in which an attacker can find the PIN used during the pairing process. We then describe the cracking speed we can achieve
# copy
40 month ago
kayodeok : Protecting SSH using known_hosts Hashing - If you use SSH, your ssh client stores within your home directory a list that maps the host names and IP addresses of every remote host you have connected to with each host's public key...It is also possible that worms could use known_hosts data to identi
Rod Begbie : Secure Shell Shock - SSH's "known_hosts" file could aid worm propogation. This page gives steps to reduce that risk. [via] #
# copy
41 month ago
kayodeok : Airline Security Threat: Penguins - Two Seaworld penguins flying out of San Diego airport are sent walking through the metal detector. Better safe than sorry
Rod Begbie : Penguins going through Airport Security - Can't say as I blame the TSA -- Have you *seen* the Batman films? [via] #
# copy
41 month ago
kayodeok : A Model Regime of Privacy Protection (Version 2.0) - Paper by by Daniel Solove and Chris Hoofnagle. This version incorporates and responds to the many comments that we received to Version 1.1, which we released on March 10, 2005
# copy
41 month ago
kayodeok : How To: Building a BlueSniper Rifle - Part 1 - "he gun, which is called the BlueSniper rifle, can scan and attack Bluetooth devices from more than a mile away."
# copy
42 month ago
kayodeok : Ideas for Privacy Reform - "EPIC just published a very good paper by Daniel Solove and Chris Hoofnagle that offers suggested proposals for privacy reform in the wake of all the recent privacy breaches (ChoicePoint, Lexis/Nexis, Bank of America, DWS, etc.)"
# copy
