Gainax - Slashdot User

Comment 15 years... (Score -1, Offtopic) 50

by Gainax on Thursday July 31, 2014 @06:14PM (#47577853) Attached to: Why TiVo's Founders Crashed and Burned With Qplay

for a first post.

Comment Re:Skype worth half the value of Marvel? (Score 1) 125

by Gainax on Tuesday September 01, 2009 @11:53AM (#29274349) Attached to: EBay Sells Skype To Marc Andreessen

(revenue = making money) ~= profit.

Comment SpiderOak (Score 1) 421

by Gainax on Tuesday June 23, 2009 @06:21PM (#28446387) Attached to: How Do You Sync & Manage Your Home Directories?

Disclosure: SpiderOak is my primary contractor, I do stuff to help their infrastructure. That said, we do versioned, encrypted, zero-knowledge backup of Linux, Mac, and Windows machines.

Comment TL;DR - mitigation here (Score 2, Informative) 231

by Gainax on Friday May 22, 2009 @07:34AM (#28051509) Attached to: Flaw Made Public In OpenSSH Encryption

To mitigate on clients and servers: in /etc/ssh/sshd_config and /etc/ssh/ssh_config and/or any ssh clients you use, add:
Ciphers aes256-ctr,aes192-ctr,aes128-ctr MACs hmac-sha1
To verify:
ssh -v host
look for the output:
debug1: kex: server->client aes128-ctr hmac-sha1 zlib@openssh.com debug1: kex: client->server aes128-ctr hmac-sha1 zlib@openssh.com You are particularly interested in the aesXXX-ctr segment. If that specifies a CBC mode, then you probably need to change that server's config. For the blowfish-using type, I'm uncertain of the attack's applicability to blowfish-cbc. YMMV. For server testing, you probably want to make sure your ssh client isn't forcing the CTR mode. To test that, do
ssh -v -o Ciphers=aes256-cbc,aes192-cbc,aes128-cbc,aes256-ctr,aes192-ctr,aes128-ctr
and look for similar debugging output as above.

Slashdot Top Deals