supersloshy writes "Facebook Chat has so far only been meant to be used in a web browser, and instant messaging applications have had a hard time implementing its undocumented protocol. Today, Facebook is making this job much easier by enabling support for XMPP to access its chat service. AOL's AIM and the Empathy Instant Messenger are also including pre-set Facebook options, due to already supporting XMPP." Here are instructions for setting up XMPP Facebook chat with popular instant messaging clients, including Pidgin and Adium.

alimo20 writes "Researchers at the Royal Holloway, University of London have discovered a flaw in Version 4.7 of OpenSSH on Debian/GNU Linux. According to ISG lead professor Kenny Patterson, an attacker has a 2^{-18} (that is, one in 262,144) chance of success. Patterson tells that this is more significant than past discoveries because 'This is a design flaw in OpenSSH. The other vulnerabilities have been more about coding errors.' The vulnerability is possible by a man-in-the-middle intercepting blocks of encrypted material as it passes. The attacker then re-transmits the data back to the server and counts the number of bytes before the server to throws error messages and disconnects the attacker. Using this information, the attacker can work backwards to figure out the first 4 bytes of data before encryption. 'The attack relies on flaws in the RFC (Request for Comments) internet standards that define SSH, said Patterson. ... Patterson said that he did not believe this flaw had been exploited in the wild, and that to deduce a message of appreciable length could take days.'"