Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror

Comment Re:Still extortion... (Score 2) 320 320

Quite easy, even eaiser these days - all modern dns severs do DNSSEC signing and key re generation for you. You still need to know what to put in the zone files (e.g. which records do what), the O'Reilly book is good, or you can pick it up from wikipedia / the bind admin guide / stack overflow etc..

Comment Re:Netscape tonight (Score 5, Insightful) 168 168

Quite the opposite. If modern sites had old weak cipher suites enabled then a mitm attack could force your browser to use them (a downgrade attack). Sites that have disabled the old cipher suites are doing the right thing and should be praised for being diligent.

Comment Re:Didn't Trillian do this? (Score 1) 242 242

You can use an xmpp client with facebook chat. You can also use an XMPP client with MSN messenger (if you implement microsoft's auth goop). unfortunatly neither facebook or microsoft have enabled federation with there xmpp servers so they are still walled gardens, just walled gardens you can bring your own client to.

https://www.facebook.com/sitetour/chat.php
http://www.macnn.com/articles/11/12/15/ichat.now.able.to.connect.to.all.im.networks/
http://blog.process-one.net/details_on_msns_xmpp_server/

XMPP is the way to go, run your own server with ejabberd, prosody or openfire.

Comment Re:DNSSec (Score 1) 35 35

No it wouldn't of done - if you hack the registrar you can change the ds records as well as the ns records. dnssec makes no difference in this case. browser side certificate pinning and forcing sites to be https only would help - then the attackers wouldn't be able to set up fake sites. The real sites would still be broken tho!

Comment Re:Encoded string (Score 2) 287 287

I get:

AOAKN HVPKD FNFJU YIDDC
RQXSR DJHFP EOVFN MIAPX
PABUZ WTYNP CMPNW HJR?H
NLXKE M?M?K ONOIB A???Q
UAOTA RBQRH DJOFM TPZLH
LKXEH REEHT JRZCQ FNKTQ
KLDTS EQIRU AOAKN

The F's are quite square, but the E's are rouned.

note that it starts and ends with AOAKN to tell whoever is decoding it how to generate the key.

SOE used "Poem codes":

http://en.wikipedia.org/wiki/Poem_code

Comment Re:Keep nuclear tech out of the hands of the unsta (Score 1) 131 131

I was at an event in London recently about Iranian Internet censorship run by small media: http://www.wired.co.uk/news/archive/2012-09/27/403-forbidden-iranian-internet http://smallmediafoundation.com/ They said that watching which Iranian blogs get censored was a good way of seeing how power struggles were playing out in the Iranian government, and that at the moment right-wing nationalist blogs that were pro-Ahmadinejad were being censored showing that he was increasingly out of favour with the clerics...

A slow pup is a lazy dog. -- Willard Espy, "An Almanac of Words at Play"

Working...