Forgot your password?

Comment: Re: Wireless security (Score 1) 75

by LiENUS (#47796935) Attached to: Wi-Fi Router Attack Only Requires a Single PIN Guess

Aha, so you missed the original quote, i'll try bolding the relevant parts this time.

Also, WPA2-Enterprise is pretty secure if you only use TLS auth, not TTLS where you use a username/password combo (too easy for a MITM)

I was specifically replying to that part, as TLS and TTLS both have the same degree of mitm vulnerability with properly configured clients.
If the server cert fails in TLS or TTLS then MITM is a possibility, you dont need the username/password or client cert to mitm a TLS connection, just the server cert.

Comment: Re: Wireless security (Score 1) 75

by LiENUS (#47793779) Attached to: Wi-Fi Router Attack Only Requires a Single PIN Guess

Actually for that matter wouldnt a compromised server certificate leave you vulnerable to a proxy attack anyway where you would use the compromised server cert to pretend to be the access point communicating with the proper radius server thus giving MITM on TLS or TTLS the same? You might not get the actual client cert on TLS but you would have their traffic all the same.

Comment: Re:Why? (Score 1) 92

by LiENUS (#47533437) Attached to: New SSL Server Rules Go Into Effect Nov. 1

Not to mention hardware cost, server license cost, maintenance cost...etc.

I dont think a cert server works the way you think it does.

I mean technically it has costs... but theres not a lot of reason you can't use a $300 convertible tablet pc handle your ca cert virtually indefinitely, it doesn't have to be turned on after you finish signing certs until its time to sign another batch...


Microsoft Settles With No-IP After Malware Takedown 83

Posted by timothy
from the semi-mulligan dept.
Trailrunner7 (1100399) writes It's been a weird couple of weeks for Microsoft. On June 30 the company announced its latest malware takedown operation, which included a civil law suit against Vitalwerks, a small Nevada hosting provider, and the seizure of nearly two dozen domains the company owned. Now, 10 days later, Microsoft has not only returned all of the seized domains but also has reached a settlement with Vitalwerks that resolves the legal action. Some in the security research community criticized Microsoft harshly for what they saw as heavy handed tactics. Within a few days of the initial takedown and domain seizure Microsoft returned all of the domains to Vitalwerks, which does business as On Wednesday, the software giant and the hosting provider released a joint statement saying that they had reached a settlement on the legal action. "Microsoft has reviewed the evidence provided by Vitalwerks and enters into the settlement confident that Vitalwerks was not knowingly involved with the subdomains used to support malware. Those spreading the malware abused Vitalwerks' services," the companies said in a joint statement. "Microsoft identified malware that had escaped Vitalwerks' detection. Upon notification and review of the evidence, Vitalwerks took immediate corrective action allowing Microsoft to identify victims of this malware. The parties have agreed to permanently disable Vitalwerks subdomains used to control the malware."

Comment: Re:criminal defense attorney and programmer here (Score 1) 560

by LiENUS (#47393075) Attached to: Mass. Supreme Court Says Defendant Can Be Compelled To Decrypt Data

Cop executing search warrant: "it's asking for a password"

Wouldn't the cop executing the search warrant have just lost the case at this point? Seems to be dicking around on computers containing evidence outside of a forensics lab would ruin the chain of custody.

Comment: Re:Who owns them? (Score 1) 474

If Comcast was doing the Google Fiber setup, it would be more like 4tb of customer bandwidth sharing 4tb of "node" bandwidth.

Also to clear this up google fiber is more like 256GB of customer bandwidth sharing 40gb of "node" bandwidth. Google fiber is GPON and not actual dedicated ethernet links.

Comment: Re:Who owns them? (Score 1) 474

Looking at comcast's website the highest speed internet they offer is 105Mbps while the slowest docsis 3 modems are capable of 171mbps. Most isps are pushing 8 channel modems now which can pull over 300mbps. Comcast could offer at least 60mbps without affecting your speed in any meaningful way.

Comment: Re:Apple Actually Cares About Privacy (Score 1) 323

by LiENUS (#47203845) Attached to: iOS 8 Strikes an Unexpected Blow Against Location Tracking

I imagine that most people don't. What percentage of home APs support 802.1x, especially integrated modem/router/APs provided by local DSL, cable, or fiber ISPs?

I've never had an integrated modem/router/AP and while I suspect those don't support it all of the home routers i've purchased in the past have supported 802.1x even before I started getting mikrotik/unifi gear. It's just called WPA-Enterprise in the settings.

Comment: Re:It worked before (Score 1) 475

by LiENUS (#47012175) Attached to: Comcast Predicts Usage Cap Within 5 Years

is $40 a reasonable price? if so Keep in mind that site is a product listing and site and not an actual web store, check out the how to buy link at the top to actually purchase them. Those routers can do everything from round robin connections to actual BGP. Although at the $40 price point you'd have a hard time even maxing out the 100mbit ports it has but step up to the $99 model....


New Shape Born From Rubber Bands 120

Posted by Unknown Lamer
from the sproingees dept.
sciencehabit (1205606) writes "Physicists playing with rubber bands have discovered a new shape. In an attempt to create a spring that replicates the light-bending properties of cuttlefish ink sacs, a team of researchers suspended two rubber strips of different lengths. Connecting the bottoms of the two strips to a cup of water, the shorter band stretched to the same length as the longer one. After gluing the two stretched strips together, the researchers gradually drained the water from the cup. As the bands retracted and twisted from the reduced strain, the researchers were shocked to see the formation of a hemihelix with multiple rainbow-shaped boundaries called perversions. The team hopes their work inspires nanodevices and molecules that twist and transform from flat strips into predetermined 3D shapes on demand." There are several videos attached to the original paper, and all can be viewed without flash.

"Silent gratitude isn't very much use to anyone." -- G. B. Stearn