Security
Racial Profiling For Terrorists
On The McLaughlin Group yesterday, there was a lot of ridiculous sophistry regarding racial profiling as a valuable and necessary tradeoff between liberty and security. Bruce Schneier has written many …
Lt Strike Gt Security In Airlines Lt Strike Gt Airline Insecurity
When people tried to evacuate during Hurricane Katrina, airline security prevented many from being able to leave before the airport had to be shut down. This is where a threat model would have helped …
Judges Order Publishing Of Breathalyser Source Code
-code LiveAmmo Security Blog: Drunk drivers granted access to breathalyser source code If only I was able to be granted the source code for the laser detector that incorrectly clocked me over the …
High Tech Safecracking
This link wasn’t working at the time of posting, but it is interesting to see how you can use infrared to determine a combination from a recently-used keypad. There must be some equipment that …
Richard Stallman Quot Foils Quot Rfid Quot Security Quot-
quot- GNU project founder foils UN security Glad my passport does not expire for many years to come. Perhaps by then passports won’t have RFID tags in them any longer. But if they do, I guess …
Serious flaws in wiretapping equipment
Signaling Vulnerabilities in Wiretapping Systems Ahh, too bad I don’t work for a telecom compnay anymore (actually, it is good). This might be fun to test out… In a research paper …
Isakmp The Standard For Incompatibility
Peter Gutman wrote a great summary of the lengths that many have to go to in order to get ISAKMP implementations to interoperate. I had a hell of a time trying to get Windows 2000/XP IPSec to work …
Internet Security Tips
https://www.eweek.com/article2/0,1759,1883072,00.asp?kc=EWRSS03129TX1K0000614
Md4 And Md5 Collision Generators
There are still not known attacks against encryption schemes that make use of these, but certainly anything relying on these hashes for integrity protection should switch to alternate mechanisms. …
Password Hash Dash
-dash Rainbow Crack is a time/memory tradeoff tool that can break passwords knowing just the password hash. So, those people who still think that disclosing password hashes is not a big deal… …