to be let out directly or through a fast proxy
rather than store-and-forward.
--
Eric Murray www.lne.com/~ericm ericm at the site lne.com PGP keyid:E03F65E5
On Wed, Apr 19, 2000 at 05:35:20PM -0400, David Honig wrote:
At 02:41 PM 4/19/00 -0400, ericm wrote:
A finger can change, so perhaps the key can be encrypted with multiple
"near matches" and those copies also stored.
Declan wrote that, not me.
--
Eric Murray www.lne.com/~er
thing that increases
the entropy is good.
A final note is that since the keystroke biometric s/w has to run in
the low-level driver, this can't be used for remote authentication, only
local.
--
Eric Murray www.lne.com/~ericm ericm at the site lne.com PGP keyid:E03F65E5
Security consult
orithms and can be run
as part of a pipe with a small wrapper script.
--
Eric Murray www.lne.com/~ericm ericm at the site lne.com PGP keyid:E03F65E5
Security consulting: security models, reviews, protocols, crypto.
f the spam...
--
Eric Murray www.lne.com/~ericm ericm at the site lne.com PGP keyid:E03F65E5
Security consulting: security models, reviews, protocols, crypto.
SP discussion above ("Dude...") a number of them
would be removed from the network soon after the attack started.
Besides, the FBI already has a way of shutting down ISPs that _would_
actually work: a court order. Sure it's slow, but it uses a system
that the FBI hacks better than th
o discover more kiddie porn and terrorists to justify more money
Rather than agency cooperation, expect more agency mission-creep
as they invade each other's turf.
--
Eric Murray http://www.lne.com/ericm ericm at lne.com PGP keyid:E03F65E5
Security consulting: secure protocols, securi
something at it,
but for that, water would do just as well.
--
Eric Murray http://www.lne.com/ericm ericm at lne.com PGP keyid:E03F65E5
Security consulting: secure protocols, security reviews, standards, smartcards.
the national security apparatus from appropriating your patents.
--
Eric Murray http://www.lne.com/ericm ericm at lne.com PGP keyid:E03F65E5
Security consulting: secure protocols, security reviews, standards, smartcards.
on what deals the responder has accepted in the past.
Hence, the evolution of fairness, similarly to the
evolution of cooperation, is linked to reputation"
This also mentioned in the Economist in the last couple weeks.
Their article made the obvious ebay/auction tie.
--
Eric Murray http
e IT
depts force them to.
List members should be aware of this new attack on the CDR.
What makes you think that the virus was specifically an attack on the CDR?
--
Eric Murray Consulting Security Architect SecureDesign LLC
http://www.securedesignllc.com
e not spam.
% echo "info cypherpunks" | mail [EMAIL PROTECTED]
This is the only list I am subscribed to that i get
spammed on.
You're fortunate!
A third option is to run a program that recognizes spam
contents. I've written one: www.lne.com/ericm/spammaster.
--
Eric Murray
It looks like cryptome.org's lost it's name:
% ericm(pts/1)# whois crytpome.org
[whois.internic.net]
Whois Server Version 1.3
No match for "CRYTPOME.ORG".
Last update of whois database: Thu, 29 Mar 2001 08:24:30 EST
The Registry database contains ONLY .COM, .NET, .ORG, .EDU domains and
On Wed, May 02, 2001 at 12:34:50AM -0500, Harmon Seaver wrote:
Greg Broiles wrote:
Hmm. Can you identify any problems with log files as evidence which aren't
also present in, say, eyewitness testimony, audiotape recordings, video
recordings, fingerprints, photographs, tool die marks,
On Mon, Jul 16, 2001 at 06:41:22PM -0500, Aimee Farr wrote:
Companies with products or applications relevant to defense are wary of
email from certain sovereigns. This is because they don't want clueless reps
giving away bacon in an email pretext attack. The government has been
harping on it
On Thu, Jul 26, 2001 at 11:47:03AM -0400, Trei, Peter wrote:
When cyberpass started messing up a few weeks ago,
I unsubbed there and resubbed at minder.net
Several times, I've noticed that messages I sent were
replied to long before I ever saw the original message
come back.
Yesterday
I've been seeing some duplicate messages from some of the CDRs.
I suspect that the massive increase in traffic has caused
one or more CDRs to overflow their procmail msgid cache.
I have been using formail -D 12800 msgid.cache
(cache size = 1280).Should we raise that?
Eric
On Fri, Jul 27, 2001 at 06:36:53PM -0400, Arnold G. Reinhold wrote:
[..]
If you read the language carefully, you will see that 1201g only
permits *circumvention* as part of cryptographic research (and then
only under limited circumstances). There is nothing in the law that
allows
On Sat, Aug 04, 2001 at 01:30:03AM -0400, Declan McCullagh wrote:
You fool. One of the cypherpunks nodes removed the attachment.
Sending attachments to the distributed cypherpunks list when at least
one node remove them is about as useful as, well, arguing with Choate.
-Declan
On Sat,
On Mon, Aug 06, 2001 at 11:51:46AM -0400, Trei, Peter wrote:
[EMAIL PROTECTED][SMTP:[EMAIL PROTECTED]] wrote:
I am unable to reconcile Black Unicorn's recent post, where he denounces
almost the entire cypherpunk program as illegal by current legal standards
and a manifestation of
On Tue, Aug 07, 2001 at 11:51:57AM -0400, Riad S. Wahby wrote:
Ray Dillinger [EMAIL PROTECTED] wrote:
Simple answer: turn off javascript and java. It is generally not
used except to make ads more annoying.
Certain browsers (*ahem* Konqueror) allow you to just disable the
window.open()
On Tue, Aug 07, 2001 at 11:07:14AM -0700, [EMAIL PROTECTED] wrote:
On 7 Aug 2001, at 8:51, Lance M. Cottrell wrote:
The [EMAIL PROTECTED] node of the cypherpunks list will be
closing on Friday August 10.
You should ensure that you are subscribed to a different node of the
On Mon, Aug 13, 2001 at 10:30:14AM -0400, Trei, Peter wrote:
If MS ever decided that they were losing money due to poor security,
they would get good at it, fast. How many fewer copies of WinXP will
they sell due to Code Red I, II, and III? Not many. A few (a very few)
sysadmins may decide
On Mon, Aug 13, 2001 at 11:33:36PM -0500, [EMAIL PROTECTED] wrote:
On Tue, 14 Aug 2001, Jared Mauch wrote:
No, I'm not talking about the spammers who were caught in maps, I'm
referring to the INNOCENTS who were caught in MAPS. If the LEO community
acted like MAPS does, there would
On Tue, Sep 04, 2001 at 12:40:22PM -0700, Bill Stewart wrote:
Infonex.com is the same system as cyberpass, so it's presumably dead now.
[EMAIL PROTECTED] will let me subscribe to cypherpunks, so
it might still be alive.
I'm CCing [EMAIL PROTECTED], perhaps they
can fill us in on their status.
On Wed, Sep 05, 2001 at 05:26:43PM -0400, Declan McCullagh wrote:
[I'm not saying I believe these arguments, of course.]
At 05:17 PM 9/4/01 -0700, Tim May wrote:
And let me play Devil's Advocate to this DA position:
Not to sound overly Choatian, but there is nothing in the First Amendment
Someone pointed me to some Usenet posts containing encrypted gibberish.
Doing a deja search on the words Alejandro transports from this
post shows that there's thousands of these posted to all kinds of
Usenet newsgroups. It looks like some sort of stego text system.
Judging from the words
On Wed, Sep 12, 2001 at 01:04:18PM -0700, Dynamite Bob wrote:
.
Maybe it wasn't Osama, it was a conspiracy between Amtrack +
office-space realtors..
the owners of the Empire State building wanted to
regain the tallest building in New York title.
On Wed, Sep 26, 2001 at 01:42:19AM -0700, Karsten M. Self wrote:
I'm not set up to run same, but I'm interested in finding one that
doesn't demime.
http://www.lne.com/cpunk
has an up-to-date list of the different CDRs and their policies.
Eric
On Wed, Oct 03, 2001 at 02:35:25PM -0700, Karsten M. Self wrote:
I'm getting mail w/o a To line of:
To: [EMAIL PROTECTED]
I'm looking for an effective procmail filtering rule. As I'm subscribed
to LNE, I'm currently filtering on:
:0:
* ^Sender: [EMAIL PROTECTED]
On Mon, Oct 22, 2001 at 08:44:09AM -0700, Tim May wrote:
Sure, unions are good is not at all obvious to me. Why do you claim
this?
Most labor unions are simply rent-seeking clubs designed to cement the
status quo. Teacher's unions in the U.S. are a prime example: once the
union got
On Sat, Oct 20, 2001 at 09:15:37AM -0700, Sandy Sandfort wrote:
Hear, hear.
This sort of crap is the inevitable outcome of an unmoderated list. All the
loons come out to play because there are no real negative consequences for
being a loon. And filtering does not do anything besides bury
On Wed, Oct 24, 2001 at 01:17:54PM -0400, Declan McCullagh wrote:
Lne.com, at least based on what I saw, sent no outgoing messages from
about 7 pm ET yesterday until 12 noon today.
We had a sendmail config error, and our network feed had a problem
with some hardware.
Eric
On Wed, Nov 14, 2001 at 05:49:34PM -0800, John Young wrote:
How would the LME work on the interior structure of the plane?
The skin has little structural strength but does streamline the
On modern cars and aircraft the skin is a structural part. There was
a post WWII DeHaviland (the Comet I
On Mon, Nov 26, 2001 at 05:12:38PM -0800, [EMAIL PROTECTED] wrote:
I gave a little bit of thought about what an encrypted email client
should look like for joe sixpack to use. Here's how the DEFAULT
behavior would work:
When you install the software, it generates a public-private key
On Wed, Nov 28, 2001 at 07:14:39PM -, Secret Squirrel wrote:
- The following addresses had permanent fatal errors -
[EMAIL PROTECTED]
(reason: 550 [EMAIL PROTECTED]... User unknown)
- Transcript of session follows -
... while talking to meer.meer.net.:
RCPT To:[EMAIL
On Wed, Dec 05, 2001 at 06:44:54AM -0600, [EMAIL PROTECTED] wrote:
testing lne: ssz appears down hard :-(
Mail to ssz has been backed up at lne since midnight tuesday.
The list of CDRs is at: http://www.lne.com/cpunk/
Eric
On Wed, Dec 05, 2001 at 08:07:47AM -0800, Tim May wrote:
[Retransmission. Due to periodic problems with lne.com, I started
sending my messages to ssz.com a few days ago. Alas, ssz.com has had an
outage. Hence these retransmissions. Sorry for any dupes.]
The problems lne was having have
On Fri, Dec 07, 2001 at 02:09:31PM +, Will Morton wrote:
I always thought that the best strategy would be to look through all
mail folders, find the last email received from the target, and use the
subject from that, adding 'Re: ' at the start. Delete the body of the
mail and
This should have gone directly to the cypherpunks list.
- Forwarded message from Jei [EMAIL PROTECTED] -
Date: Thu, 13 Dec 2001 22:33:28 +0200 (EET)
From: Jei [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
X-Orig-To: [EMAIL PROTECTED]
Subject: FBI Surveillance Software to be Part of Windows XP
On Tue, Dec 18, 2001 at 09:04:46AM -0500, [EMAIL PROTECTED] wrote:
All nite long i've been spammed by the account [EMAIL PROTECTED] I'm
sure we've all seen the numerous messages on here.
Anyway - my autoresponder has been responding to these messages and as a
result a number of bounced
On Tue, Jan 15, 2002 at 10:44:46AM -0600, xganon wrote:
We are interested in the 'encryption' used in these
over-the-air queries...
ARDIS, the protocol the Blackberry uses, does an XOR
with a 32 bit constant of the day.
Eric
This is from the cryptography list:
- Forwarded message from Dan Geer [EMAIL PROTECTED] -
Delivered-To: [EMAIL PROTECTED]
X-Authentication-Warning: world.std.com: geer@localhost didn't use HELO protocol
To: [EMAIL PROTECTED]
Subject: Re: biometrics
In-reply-to: Your message of Wed, 23
On Sat, Jan 26, 2002 at 10:08:21PM -0800, Morlock Elloi wrote:
For some reason lne.com drops my posts ...
drops my posts is hard to debug. A bit of information
would make it easier.
Eric (lne.com bit janitor)
On Wed, Feb 06, 2002 at 05:36:29AM +0200, Jei wrote:
My logic tells me it is best to ensure the widest coverage to issues you
care about, get as many sources as you can, and simply ram down the facts
as many people's troats as you can,
Many people on this list don't appreciate having stuff
On Wed, Feb 13, 2002 at 11:27:50AM -0500, Greg Newby wrote:
On Wed, Feb 13, 2002 at 08:17:19AM -0800, Major Variola (ret) wrote:
[domestic surveillance, brinworld, big bro, pseudosecurity]
NEW YORK (Reuters) - Washington police are building what will
be the nation's biggest network
On Thu, Mar 07, 2002 at 01:13:40AM +0100, Anonymous wrote:
Got this spam recently. This is probably the best way to innoculate public
against the state-run snooping, because the NEXT thing to come is defense against
this snooping. Once everyone is aware of it the effects of snooping are gratly
On Fri, Jan 31, 2003 at 04:50:00PM -0800, Eric Cordian wrote:
http://www.foxnews.com/story/0,2933,77234,00.html
The Feebs are crowing over their latest victory, having just obtained a
conviction against a medical marijuana grower for the city of Oakland.
They went after Ed Rosenthal because
On Mon, Feb 03, 2003 at 05:01:41PM -0600, Harmon Seaver wrote:
The biggest question there is why didn't they inspect it? Seems very
bizarre, since that's what they did in the past.
All the KH-71s were busy mapping Iraq's oil fields
and photographing Saddam's nose hairs.
Eric
On Fri, Feb 14, 2003 at 09:54:33AM -0800, Tim May wrote:
I've been watching the Security Council session this morning. Positions
are established.
The French diplomat gave a wonderful speech, but its all for show.
The real decisions are made in the back rooms.
[..]
* The reason is clear:
Appropriate to the recent media thread, a leaked ClearChannel memo
on some station's war preperations:
http://www.internalmemos.com/memos/memodetails.php?memo_id=1329
They're clearly salivating at the prospect.
Eric
On Thu, Feb 20, 2003 at 11:32:43PM -0500, Major Variola (ret) wrote:
Carburetor? Didn't that connect to the phonograph through a cat's whisker?
Carburetor is French for leave it alone.
While only one of my cars is old enough to have a carb, all but one of
the 10 or so motorcycles in the
On Tue, Mar 18, 2003 at 01:17:21PM -0500, Sunder wrote:
Interesting, lne.com flagged this as spam.
We probably rejected the SMTP connection as coming from
a source that's sent us spam in the past. Read the
bounce message and use the URL to send me the ID code please.
There's no content-based
On Sat, Mar 22, 2003 at 09:40:50AM +, [EMAIL PROTECTED] wrote:
IDEA is listed on the fourth line, so it seems IDEA was installed with
OpenSSL, but MixMaster's install may be improperly detecting that IDEA
is absent. It's when I run the Mixmaster install that I get the
error:
...
On Wed, Mar 26, 2003 at 03:24:01AM -0800, Sarad AV wrote:
it doesnt matter as long as Al-Jazeera is live and
kicking and the camera's are rolling.
Yesterday morning I could get to english.aljazeera.net.
As of yesterday afternoon, it has become unavailable.
Supposedly they are victims of
On Fri, Mar 15, 2002 at 09:39:20AM -0800, Tim May wrote:
On Friday, March 15, 2002, at 09:20 AM, Nomen Nescio wrote:
Please take a moment and properly format your postings.
[EMAIL PROTECTED] (Anonymous) writes:
[Mr. Blair] said he'd put more police on the street. Well the only
Here's the distribution of RSA key sizes in SSL servers, as
recorded by my SSL server survey in June 2000 and June 2001
RSA Server Key size
Key bits2000 2001
2048 .2% .2%
1024 70% 80%
=
... Bear Stearns Mortgage Company. http://www.bearstearns.com/. Budget
Mortgage Bankers,
Ltd. ... com. http://www.mortgageexpo.com/. Murray Financial Associates,
Inc. ...
www.banking.state.ny.us/mortlink.htm - 55k - Cached - Similar pages
Eric Murray: Papers: SSL Server Survey: Detailed Results
On Tue, Apr 09, 2002 at 08:37:05AM +0200, Anonymous wrote:
[Copied to Adam so he doesn't have to wait for some moderator to get
off his fat ass and approve it.
The LNE CDR isn't moderated in the usual sense.
However, postings from new users[1] don't go through until I look at them
(since
On Sat, May 11, 2002 at 04:35:29AM +1000, Julian Assange wrote:
Australia needs your help!
The Howard government is using the `war on terrorism' as justification
to introduce so called `Asian Values' (a euphonism used by Mahathir
to explain his governments removal of rights from the
On Mon, May 13, 2002 at 01:20:35PM -0700, Morlock Elloi wrote:
Go after those who already _know_ they need untraceability. Go after
niches where VALUE COST. Don't try to argue that the world needs to
replace its multi-billion dollar infrastructure of
The question is - are there
On Wed, Jun 12, 2002 at 07:58:49AM +0200, Tom wrote:
speaking of unfiltered - I subscribed to ssz exactly because I don't
want to have anyone moderating for me. however, the spam volume is
deafening.
The LNE node isn't moderated.
All posts from list subscribers, to any CDR, plus
any post
On Fri, Jun 14, 2002 at 09:22:58AM -0700, Khoder bin Hakkin wrote:
SACRAMENTO -- Dismayed by new disclosures of the use of steroids in
Major League Baseball, a state senator wants to force most professional
sports teams to test athletes for performance enhancing drugs if they
play
games in
Please, if your site uses bad word search
software (i.e. below) or fascist black hole listings, subscribe
to the cpunks list through a different email account.
lne.com is listed on a couple of the most
extreme black hole lists (because we are incorrectly
listed as being in a Verio netblock, and
On Sun, Oct 27, 2002 at 06:31:40PM -0800, Tim May wrote:
On Sunday, October 27, 2002, at 01:04 PM, Bill Stewart wrote:
[Hmm. lne.com spam-blocked me on the first attempt.
Can you provide details?
If lne.com is blocking posts, I will have to find another CP node.
Lne has been
This will come as no suprise to people on this list.
- Forwarded message from Perry E. Metzger [EMAIL PROTECTED] -
Delivered-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: The FBI Has Bugged Our Public Libraries
From: Perry E. Metzger [EMAIL PROTECTED]
Date: 05 Nov 2002 18:40:31
On Fri, Nov 22, 2002 at 09:23:57PM +0100, Eugen Leitl wrote:
Question: if you control the traffic layer you can easily disrupt
opportunistic encryption (STARTTLS Co) by killing public key exchange,
or even do a MITM.
An attacker can prevent opportunistic STARTTLS by modifying
the STARTTLS tag
On Sun, Nov 24, 2002 at 03:54:13PM -0800, Bill Stewart wrote:
That, or it's a dot-com that didn't make it,
or an office-space construction that someone hoped to sell to a dot-com
but missed the boom. There's huge amounts of that in SF.
They wouldn't have security if it was empty, and would
I've just been made aware of a bug in my CDR code
that causes MIME-encoded mail that uses the (rare)
Content-Type: multipart/mixed to get dropped into the bit bucket.
I'll fix it soon, but in the mean time please post in plain ASCII.
You should post in plain ascii anyhow since any MIME gets
On Thu, Dec 12, 2002 at 04:11:21PM -0500, Trei, Peter wrote:
I was poking around thinkgeek, and it appears that
the CDR now has it's own tee-shirt.
Suitable for old farts and wannabes alike.
Now available in black!
Peter Trei
http://www.thinkgeek.com/tshirts/coder/57ee/
Not The Fedz
On Sun, Jul 07, 2002 at 07:13:54AM -0700, Optimizzin Al-gorithym wrote:
At 07:05 PM 7/6/02 -0700, Lucky Green wrote:,
Adding the cost of an EMBASSY or SEE environment to the,purchase of
every new PC is more than the market for bare-bones or even,mid-range
PC's will bear.,,--Lucky,
Too bad
On Fri, Jul 12, 2002 at 07:14:55PM +1200, Peter Gutmann wrote:
From a purely economic perspectice, I can't see how this will fly. I'll pull a
random figure of $5 out of thin air (well, I saw it mentioned somewhere but
can't remember the source) as the additional manufacturing cost for the
On Sat, Jul 13, 2002 at 06:34:36PM +1200, Peter Gutmann wrote:
Eric Murray [EMAIL PROTECTED] writes:
On Fri, Jul 12, 2002 at 07:14:55PM +1200, Peter Gutmann wrote:
From a purely economic perspectice, I can't see how this will fly. I'll pull a
random figure of $5 out of thin air (well, I saw
On Sat, Jul 13, 2002 at 07:10:07PM -0500, Harmon Seaver wrote:
On Sat, Jul 13, 2002 at 10:59:23AM -0700, Eric Murray wrote:
Microsoft does not do things simply because they enjoy being evil.
They are not so worried about Linux (with its small share of the market)
that they will spend mega
On Tue, Jul 23, 2002 at 09:42:49AM -0400, Trei, Peter wrote:
If you're interested in tunneling other protocols
than HTTP, things get more complex. Assuming
SSL tunneling is allowed you can run other
protocols through it if you can set up the software
at each end appropriatly.
So who's
On Fri, Jul 26, 2002 at 04:56:31PM +0100, Ken Brown wrote:
This is just a test message to see if it gets back to me.
No traffic on lne or ssz though here for 24 hours.
Which after a few 100 in previous 2 days seems odd.
Ssz seems to have gotten itself put in most of the open
relay
On Wed, Jul 31, 2002 at 11:45:35PM -0700, AARG! Anonymous wrote:
Peter Trei writes:
AARG!, our anonymous Pangloss, is strictly correct - Wagner should have
said could rather than would.
So TCPA and Palladium could restrict which software you could run.
TCPA (when it isn't turned off)
On Thu, Aug 01, 2002 at 02:33:43PM -0700, James A. Donald wrote:
According to Microsoft, the end user can turn the palladium
hardware off, and the computer will still boot. As long as that
is true, it is an end user option and no one can object.
But this is not what the content
On Fri, Aug 09, 2002 at 10:05:15AM -0700, AARG! Anonymous wrote:
On Gnutella discussion sites, programmers are discussing a number of
technical proposals that would make access to the network contingent
on good behavior: If you write code that hurts Gnutella, in other
words, you don't
On Tue, Aug 27, 2002 at 11:53:08AM +0200, Eugen Leitl wrote:
I'm getting rather pissed at diverse wiretap legislations making the
global rounds (lately EU is making noises towards storing a one year deep
FIFO of all email and browsing traffic for all users), and would like to
run my own MTA,
On Wed, Aug 28, 2002 at 03:26:47PM +1200, Peter Gutmann wrote:
Eugen Leitl [EMAIL PROTECTED] writes:
(actually, I wrote:)
It's relatively easy to turn on TLS in sendmail. It's not secure against
active attackers that can modify the data in the TCP stream but it's better
than nothing.
It looks like one of the CDRs, possibly algebra, is
changing the Message-ID on cpunks mail and redistributing
it to the CDRs-- I'm seeing two copies of each message, one
of which has an X-Algebra header in it.
Could the algebra maintainer check this out?
Thanks.
Eric
On Tue, Sep 24, 2002 at 07:12:47PM +1200, Peter Gutmann wrote:
James A. Donald [EMAIL PROTECTED] writes:
Increasingly however, we see smartcard interfaces sold for PCs. What for, I
wonder?
A previous company I worked for made a secure smart-card reader
chip/system that used smart cards to
Someone who's sending from a mailer that lne.com blocks because
of spam said:
- Forwarded message from [EMAIL PROTECTED] -
[...]
When Chaumian money comes into wide use, I think that for most
end users we will have to stash
On Wed, Oct 09, 2002 at 11:01:21PM +0100, Ben Laurie wrote:
Bill Stewart wrote:
Somebody backdoored the source code for Sendmail on the official server.
So if you recompile from scratch, your sendmail is 0wned.
Another reason not to run mail systems as root
In this case, as I
On Thu, Oct 10, 2002 at 02:28:26AM -, anonimo arancio wrote:
[..]
But I am wondering if Cypherpunks have mentioned the 'obvious'.
The government knows exactly what it's doing. It wants to discourage the use of
encryption by any means necessary, because of sheer numbers.
Basically, the
On Mon, Oct 21, 2002 at 03:37:33PM +0100, David Howe wrote:
at Monday, October 21, 2002 3:14 PM, Trei, Peter
[EMAIL PROTECTED] was seen to say:
I'd be nervous about a availability with centralized servers,
even if they are triple redundant with two sites. DDOS
attacks, infrastructure
On Thu, Sep 04, 2003 at 10:48:55PM -0700, James A. Donald wrote:
On 4 Sep 2003 at 7:56, Eric Murray wrote:
..which means that it [ssh-- ericm] still requires an OOB authentication.
(or blinding typing 'yes' and ignoring the consequences). But
that's another subject.
Not true. Think
- Forwarded message from Geoff Shively [EMAIL PROTECTED] -
From: Geoff Shively [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Blaster / Power Outage Follow up
Date: Wed, 3 Sep 2003 17:31:34 -0700
As suggested the day of the blackout, SCADA / DCS security was
a primary factor in the
On Fri, Sep 12, 2003 at 02:08:00PM -0400, Damian Gerow wrote:
Configure your demime to *not* strip attachments of
application/pgp-signature.
If someone knows how, please tell me.
Eric
ISC is releasing a new BIND to deal with the Verisign land-grab:
http://www.bayarea.com/mld/mercurynews/business/6791550.htm
On Thu, Oct 23, 2003 at 11:59:47AM -0700, Major Variola (ret) wrote:
And virii that infect the immune system can be fun too --imagine a virus
infecting your antiviral program. HIV for Windows.
Or a virus that modifes your other programs to make them appear to
be known virii. You'd have to
- Forwarded message from Eric Blossom [EMAIL PROTECTED] -
Date: Tue, 3 Jun 2003 13:25:50 -0700
From: Eric Blossom [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
X-Orig-To: John Kelsey [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED], EKR [EMAIL PROTECTED],
Scott Guthery
[EMAIL PROTECTED], Rich Salz
PROTECTED]
CC: EKR [EMAIL PROTECTED], Eric Murray [EMAIL PROTECTED],
Scott Guthery
[EMAIL PROTECTED], Rich Salz [EMAIL PROTECTED],
Bill
Stewart [EMAIL PROTECTED], cypherpunks [EMAIL PROTECTED],
[EMAIL PROTECTED]
Subject: Re: Maybe It's Snake Oil All the Way Down
In-Reply-To: [EMAIL PROTECTED
- Forwarded message from Eric Blossom [EMAIL PROTECTED] -
Date: Tue, 3 Jun 2003 15:50:37 -0700
From: Eric Blossom [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
X-Orig-To: John Kelsey [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED], EKR [EMAIL PROTECTED],
Scott Guthery
[EMAIL PROTECTED], Rich Salz
- Forwarded message from Paul Lambert [EMAIL PROTECTED] -
Subject: Re: BIS Disk Full
Date: Mon, 2 Jun 2003 22:50:20 -0700
Thread-Topic: Re: BIS Disk Full
Thread-Index: AcMpAGDW0rLn6AHCQFSmRRWCM9LG7QAkdTWg
From: Paul Lambert [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
X-Orig-To: Declan
On Tue, Jul 08, 2003 at 12:16:36PM -0700, Major Variola (ret) wrote:
Authentication is Something you have / know / are.
[..]
A picture glued into the card could be forged, but a
smartcard (with more data area than a magstripe)
could include a picture of the account holder,
so a thief has no
On Wed, Jul 09, 2003 at 10:23:55AM -0700, Major Variola (ret.) wrote:
Wired has an article on magetic RAM
http://wired.com/news/technology/0,1282,59559,00.html
that fails to mention security implications. Obviously
nonvolitile RAM presents a different security risk than
RAM that forgets
On Thu, Jul 10, 2003 at 04:45:58PM +0200, Thomas Shaddack wrote:
On Wed, 9 Jul 2003, Eric Murray wrote:
I doubt it as well. DRAM also has power-off memory persistence
and nearly everyone in security ignores that as well.
But not the spooks :
The FEI-374i-DRS is a data recovery system
- Forwarded message from Declan McCullagh [EMAIL PROTECTED] -
Date: Wed, 05 Nov 2003 17:01:52 -0500
To: [EMAIL PROTECTED]
From: Declan McCullagh [EMAIL PROTECTED]
Subject: [Politech] FBI visits John Young, asks about anti-government activity [fs]
John Young is a longtime supporter of
1 - 100 of 179 matches
Mail list logo
