Re: [Cryptography] Snowden fabricated digital keys to get access to NSA servers?
[John here. Let's try some speculation about what this phrase, fabricating digital keys, might mean.] My own, personal guess is that it is obfuscation which translates as using passwords or accessing a portal over SSL plus we're too embarrassed to admit that it was that easy. -- http://dropsafe.crypticide.com/aboutalecm ___ The cryptography mailing list cryptography@metzdowd.com http://www.metzdowd.com/mailman/listinfo/cryptography
Re: Photos of an FBI tracking device found by a suspect
Original post with nicer pics: http://www.reddit.com/r/reddit.com/comments/dmh5s/does_this_mean_the_fbi_is_after_us/ Semi-relevant government pricelist: http://www.google.co.uk/search?q=st820ec+site:.gov -a -- alec.muff...@gmail.com - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to majord...@metzdowd.com
OTR splicer for Skype ?
I found the following Adium-based solution for layering OTR atop Skype IM: http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2008-06/msg00224.html ...and was wondering whether anyone has generalised this by creating some open-source, standalone, simple application which talks to the Skype client API and splices OTR into the channel? Just wondering. -a -- alec.muff...@gmail.com http://www.crypticide.com/dropsafe/ - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to majord...@metzdowd.com
Re: FileVault on other than home directories on MacOS?
In Disk Utility - New Image, select size, properties and encryption type (AES 128 or 256) and Create. Then mount and use your encrypted disks as needed. Just as an aside: on 10.5 and upwards I have taken to using encrypted sparse bundles rather than simple images; the advantage of doing this is that if you are creating a encrypted filesystem on (say) a 16Gb FAT-32 USB stick, then: a) you are not constrained to a 4Gb encrypted image (otherwise to FAT32) b) when using the sparse image, your files can be 4Gb c) you do not eat the entire stick all at once d) there can be (is?) a degree of garbage collection e) the stick is still usable as FAT32 - alec -- alec.muff...@gmail.com http://www.crypticide.com/dropsafe/ - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to majord...@metzdowd.com
From Ivory Tower to Iron Bars: Scientists Risk Jail Time for Violating Export Laws
Perry: plasma physics is wildly OT but I believe the relevance will be obvious to those who remember the crypto wars, especially when they hit the fifth paragraph: It’s a difficult subject: many people I interviewed felt Roth showed blatant disregard for the law — he was warned his work fell under the State Department’s munitions list — but they expressed deep frustration with the ambiguity of the laws. http://www.wired.com/dangerroom/2009/09/from-ivory-tower-to-iron-bars-academics-risk-jail-time-for-violating-export-laws/ short: http://is.gd/3pd0d There but for the grace of Bernstein? Or something like that... :-) -a - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to majord...@metzdowd.com
Re: Why the poor uptake of encrypted email?
On 8 Dec 2008, at 21:13, JOHN GALT wrote: The iconic Paper explaining this is Why Johnny Can't Encrypt available here: http://portal.acm.org/citation.cfm?id=1251435 Orlbaq gur Jul Wbuaal cncre - sbphfvat hcba hfnovyvgl - V guvax gurer vf n uvture ceboyrz bs vagrebcrenovyvgl naq vasbezngvba-npprff ng cynl urer. Gurer pna or ab npprff gb lbhe znvy jvgubhg hfr bs n pyvrag vs lbh ner hfvat pelcgbtencul - rira EBG13 - naq guvf nybar vf n ovt ceboyrz, orpnhfr zrqvngrq npprff gb lbhe r-znvy vf *ernyyl* cnvashy. Sbe fbzr 15 lrnef V hfrq zu/azu/rkzu (ynggreyl jvgu srgpuznvy), gura zbirq gb Znvy.ncc, erpragyl gevrq Guhaqreoveq sbe n srj zbaguf, naq nz er-pbafvqrevat azu sbe ybat-grez nepuvivat bs r-znvy. V nyfb hfr zl vCbq, guerr yncgbcf jvgu inelvat fcrpvrf bs Havk, naq n 3T cubar gb npprff r-znvy. Bppnfvbanyyl V fgvyy pbcl fghss bhg bs /ine/znvy/. V jbhyq unir fhssrerq vzzrafryl jrer V erdhverq gb hfr n cnegvphyne pelcgb-ranoyrq pyvrag gb qrny jvgu zl r-znvy ng rnpu fgntr, be jrer V erdhverq gb hfr uvfgbevpny pelcgb-pyvragf gb npprff byqre znvyf. Nalbar jubfr pbyyrtr gurfvf vf va JbeqCresrpg ba n 5.25 sybccl ng gur onpx bs n pybfrg fbzrjurer, fubhyq haqrefgnaq guvf ceboyrz. Gb guvf qnl Cebwrpg Thgraoret hfrf syng NFPVV nf n ybjrfg pbzzba qrabzvangbe sbezng, naq fvzvyneyl V arrq zl r-znvy va gur fvzcyrfg sbez fb gung V pna terc vg, crey vg, dhbgr vg naq frnepu vg. Fb jul unf rapelcgrq r-znvy snvyrq? V fhfcrpg gung fgngvp qngn rapelcgvba eribygf ntnvafg gur angher bs crefbany pbzzhavpngvba naq gur arrqf bs crefbany vasbezngvba er-hfr. Sbe pbzcnevfba, pbafvqre gur pbairetrapr bs vafgnag zrffntvat naq r- znvy - gurl ner orpbzvat rire zber nyvxr, ohg gur sbezre zbfgyl eryvrf hcba raq gb raq genafcbeg frphevgl, bsgra nffhzvat gung gur cevinpl bs ybtf ng rvgure raq ner ng gur juvz bs *gung* hfre. Sbe fbzr ernfba guvf jbexf engure jryy; nf frphevgl trrxf jr pbzcynva nobhg vg, ohg gurer unir orra znal gvzrf jura Fxlcr unf onvyrq zr bhg bs gebhoyr jvgu vgf novyvgl gb qevyy guebhtu nyzbfg nalguvat naq cebivqr zr jvgu zrffntvat naq svyr-genafsre. Fvzvyneyl NVZ, Wnoore, TPung - nyy bs juvpu V unccvyl eha jvgu BGE - tvir zr arprffnel zbfgyl-frpher pbzzhavpngvba. Va gur jbeyq bs r-znvy gur ceboyrz vf gung gur raq-hfre vaurevgf n oybo bs qngn juvpu jnf rapelcgrq va beqre gb qrsraq gur zrffntr nf vg cnffrf ubc ol ubc bire gur fgber-naq-sbejneq FZGC-erynl (be HHPC?) r- znvy argjbex... ohg gur hfre vf yrsg gb qrny jvgu gur rssrpgf bs fbyivat gur *genafcbeg* frphevgl ceboyrz. Gur zbqry vf byq. Vg vf ohfgrq. Vg vf (gbqnl) jebat. Vg'f yvxr beqrevat ybofgre ovfdhr, naq univat n yvir ybofgre ghea hc ng lbhe gnoyr; jung lbh jnag vf va gurer - urnivyl nezberq - naq lrf lbh pna eraqre jung lbh erprvir vagb jung lbh npghnyyl qrfver; OHG vg'f zrffl naq lbh'er ernyyl fghpx hayrff lbh unir n zbhyv, n fnhprcna naq n fznyy CTC ubgcyngr ng unaq. Naq bs pbhefr lbh unir gb nepuvir pbcvrf bs gur ybofgre, abg gur fbhc. F/ZVZR naq vgf oergurera rkvfg gb fvzhygnarbhfyl nqqerff gur frphevgl bs qngn va zbgvba naq qngn ng erfg - ohg crbcyr qba'g jnag gur ynggre va gur sbez gung vg cebivqrf, orpnhfr vg vauvovgf vagrebcrenovyvgl naq hfnovyvgl ng n yriry nobir gur guvf fbsgjner fhpxf znggre... Naq vs gur qngn va zbgvba raq gb raq frphevgl vffhr vf orvat nqqerffrq ol guvatf yvxr VZ/BGE naq Fxlcr, gura creuncf frpher r- znvy jvyy fbba tb gur jnl bs Gryarg naq SGC? - nyrp ps: if you are stuck, try www.rot13.com - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]
AppleID Security
Disclaimer: Yes, I am referenced, but I've been blarting about this for nearly two years now, and nobody's paid the slighest notice before; the matter of making website security both a) easy and b) better can now only become *more* urgent. http://www.theregister.co.uk/2008/07/24/apple_id_fraud/ - alec ps: hello again everyone; long time no see. - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]