DrDevil - Slashdot User

Comment Willing to help (Score 1) 102

by DrDevil on Friday October 10, 2014 @02:42AM (#48109259) Attached to: Ask Slashdot: Capture the Flag Training

I'm also a comp sci prof and have played many cybersec ctfs. If you want to have a chat on the phone pm me and I can give some tips.

Best
Gareth

Comment Details of bug (Score 5, Informative) 101

by DrDevil on Saturday February 22, 2014 @07:27AM (#46310205) Attached to: Apple Fixes Dangerous SSL Authentication Flaw In iOS

The bug is that the cn hostname from the certificate is not verified. So it's possible to use your own website SSL cert as a cert for any other site and Apple devices will accept it no question. Of course, to exploit, you'd need to modify a tool like webmitm to serve a fixed certificate.

Very very dangerous, seems to be a result of switching away from OpenSSL although details are still flaky.

Comment Link to coroner's report (Score 1) 1

by DrDevil on Saturday January 04, 2014 @07:53AM (#45864379) Attached to: Barnaby Jack died of drug overdose

Link to coroner's report
http://cdn2.sbnation.com/assets/3803095/barnaby_jack_autopsy_report_san_francisco_medical_examiner.pdf

Submission + - Barnaby Jack died of drug overdose (bbc.co.uk) 1

Submitted by DrDevil on Saturday January 04, 2014 @07:51AM

DrDevil writes: Barnaby Jack, the computer security expert who was due to give a presentation on hacking pacemakers at last year's Blackhat died of a drug overdose. The coroner withheld the report which led to much speculation given the timing of his death.

Mr Jack appears to have taken a cocktail of drugs and was found dead by his girlfriend. His girlfriend stated that he had used drugs regularly.

Submission + - Anonymous intercepts FBI conference call (telegraph.co.uk)

Submitted by DrDevil on Friday February 03, 2012 @11:32AM

DrDevil writes: A member of the computer hacking group Anonymous has hacked into a telephone conference between the FBI and Scotland Yard (London Police) and posted it on the internet.

The Daily Telegraph has a comprehensive article on the hack at http://www.telegraph.co.uk/technology/news/9059580/Anonymous-hackers-intercept-conversation-between-FBI-and-Scotland-Yard-on-how-to-deal-with-hackers.html.

The audio of the call can be heard at http://t.co/vrdop7No.

Comment Re:Screen recorder (Score 1) 107

by DrDevil on Sunday December 04, 2011 @06:49PM (#38260604) Attached to: GCHQ Challenge Solution Explained

The screen recorder is Camtasia - Linux is running in a VM under Windows.

Submission + - GCHQ Challenge solution explained (blogspot.com)

Submitted by

DrDevil

on Sunday December 04, 2011 @12:45PM

DrDevil writes: ""The British spy agency GCHQ recently published a puzzle on www.canyoucrackit.co.uk (as featured on slashdot), now just a few days later an academic at the University of Greenwich in England has posted a full video explanation of the puzzle. The puzzle has three stages and is not at all simple — likely to challenge even the best computer science graduates.

Solution and explanation at http://gchqchallenge.blogspot.com/""

Slashdot Top Deals