wintertargeter - Slashdot User

Submission + - Remotely Hacking Cars (autosec.org)

Submitted by Anonymous Coward on Monday August 15, 2011 @11:19AM

An anonymous reader writes: TheTruthAboutCars blogs about a new paper from security researchers at UC San Diego and the University of Washington that demonstrates multiple ways in which a car can be remotely taken over (technical details here). The paper is pretty amazing in general, but they drop the bomb when they take over a car 1000 miles away just by calling it through the car's built-in cell phone interface, upload an IRC client for control (I kid you not! Can you say "car botnet"?) and then track the car via GPS and listen in to everything that is being said inside. James Bond eat your heart out!

Submission + - WPA/WPA2 Cracking with CPUs, GPUs, and the Cloud (tomshardware.com)

Submitted by wintertargeter on Monday August 15, 2011 @11:10AM

wintertargeter writes: Yeah, it's another article on security, but this time we finally get a complete picture. Tom's Hardware looks at WPA/WPA2 brute-force cracking with CPUs, GPUs, and Amazon's Nvidia Tesla-based EC2 cloud servers.

Verdict? WPA/WPA2 is pretty damn secure. Now to wait for a side-channel attack. Sigh....

Comment Re:Pathetic (Score 1) 128

by wintertargeter on Friday July 29, 2011 @12:48AM (#36917788) Attached to: War Texting Lets Hackers Unlock Car Doors Via SMS

They don't even use a salt? or a KDF? seriously people....

Comment doubt (Score 1) 2

by wintertargeter on Friday July 29, 2011 @12:42AM (#36917764) Attached to: New NASA Data Casts Doubt On Global Warming Models

Another back and forth?

Comment Re:So get one with: (Score 1) 5

by wintertargeter on Friday July 29, 2011 @12:38AM (#36917748) Attached to: SSD Failure Rates

According to the experts at XS, it looks like write endurance isn't a problem, random failures due to firmware may be a bigger issue.

Submission + - SSD Failure Rates (tomshardware.com) 5

Submitted by wintertargeter on Friday July 29, 2011 @12:09AM

wintertargeter writes: Looks like Tom's Hardware has posted the first long-term study of SSD failure rates. The chart on the last page is interesting. Based on numbers, it looks like SSDs aren't more reliable than hard drives. http://media.bestofmicro.com/4/A/302122/original/ssdfailurerates_1024.png

Comment Re:Umm... (Score 1) 128

by wintertargeter on Tuesday June 21, 2011 @01:20AM (#36509364) Attached to: Brute-Force Password Cracking With GPUs

Wow you really know nothing about encryption. Sigh.. Everyone is an expert. Zdnet looked at ighashgpu that's unsalted password decryption when you already have a precomputed hash table. TH looked at salted password decryption where you have to perform a SHA-1 transformation invocation thousands of times per every password attempt.

Comment Re:We liked it (Score 1) 201

by wintertargeter on Monday June 20, 2011 @03:37PM (#36504718) Attached to: Review: <em>Green Lantern</em>

Yes, because in this case the end result was just as bad!

Comment Re:I don't think so (Score 1) 371

by wintertargeter on Monday June 20, 2011 @03:26PM (#36504600) Attached to: Court Case To Test GNU GPL

Amen

Comment Re:Why none of this matters! (Score 1) 128

by wintertargeter on Monday June 20, 2011 @03:20PM (#36504520) Attached to: Brute-Force Password Cracking With GPUs

Right... except that anyone who has a desktop gaming system can do what TH did. It's not like they had a supercomputer.

Comment Re:Relevance?! Which client/server can handle that (Score 1) 128

by wintertargeter on Monday June 20, 2011 @03:12PM (#36504394) Attached to: Brute-Force Password Cracking With GPUs

They did this on a desktop gaming system. It wasn't a supercomputer.

Comment Re:So.... (Score 1) 128

by wintertargeter on Monday June 20, 2011 @03:05PM (#36504290) Attached to: Brute-Force Password Cracking With GPUs

rainbow tables only work on unsalted passwords. These were used by microsoft for 'lan' style passwords. IIRC, vista and win7 don't use these. And if you use a 14 character password or longer, even windows xp disables the lan encryption. Your rainbow tables are effectively useless against aes-128, aes-256, and even des. They simply precompute password hashes, and generating the tables takes quite a long time. Using rainbow tables has nothing to do with gpu acceleration.

Comment Re:Umm... (Score 2) 128

by wintertargeter on Monday June 20, 2011 @02:58PM (#36504168) Attached to: Brute-Force Password Cracking With GPUs

No. Zdnet used ighashgpu. That's a hash cracker. WinZip and WinRAR encyption is different because it's based on precomputed password hashes. It looks like TH used AccentZip and AccentWinRAR to decrypt passwords.All three programs are created by Ivan Golubev. His blog is full of posts on cryptography performance.

Comment Re:CPU vs GPU (Score 1) 3

by wintertargeter on Monday June 20, 2011 @03:27AM (#36497234) Attached to: Brute-Force Password Cracking with GPUs

but isn't every new password that you're trying technically different?

Comment CPU vs GPU (Score 1) 3

by wintertargeter on Monday June 20, 2011 @02:50AM (#36497082) Attached to: Brute-Force Password Cracking with GPUs

Interesting article, but I wonder if CPUs are only slower at brute-force attacks because there haven't been new optimized programs.

Slashdot Top Deals