Forgot your password?
typodupeerror

Comment: Re:Laws of reality (Score 1) 116

by pariax (#34615158) Attached to: Privacy Concerns With Android and iPhone Apps

"One iPhone app, Pumpkin Maker (a pumpkin-carving game), transmits location to an ad network without asking permission."

That is flat out impossible. I am an iPhone developer; there is no way for an application to obtain user location without the user being prompted if that is OK.

It makes the rest of the conclusions very suspect to me. Just how would an app get age and gender? Again I cannot think of a way that is even possible on an iPhone without being asked; no-where on my iPhone is my birthday or age stored.

Impossible? Anything's possible. http://blogs.wsj.com/digits/2010/12/19/how-one-apps-sees-location-without-asking/

Security

+ - Trojan responsible for plane crash? FUD or fact?->

Submitted by pariax
pariax (811639) writes "Tired of a week of stories hyping the role the malware infection may have played in the Spanair crash, a security consultant and pilot has dissected the official report on the incident and provides a detailed account of the chain of failures that led to the crash. AV vendors duck and cover!"
Link to Original Source
Security

+ - Cracking PGP in the Cloud->

Submitted by pariax
pariax (811639) writes "So you wanna build your own massively distributed password cracking infrastructure? Electric Alchemy has published a writeup detailing their experiences cracking PGP ZIP archives using brute force computing power provided by Amazon EC2 and a distributed password cracker from Elcomsoft. Full article at http://news.electricalchemy.net/2009/10/cracking-passwords-in-cloud.html"
Link to Original Source

Comment: Re:other PKI options (Score 1) 171

by pariax (#14469747) Attached to: Does Your Company Use a PKI Solution?
Instead of disabling CRL's, you should publish them to a directory, rather than an HTTP server. In the case of MSAD, the CRL will be replicated to every domain controller in the domain. The CRL can specify a ldap:///path_to_crl.crl CRL which will allow a client to lookup the CRL from any domain controller which is up.

Successful and fortunate crime is called virtue. - Seneca

Working...