smeaggie - Slashdot User

Comment Re:Hmm (Score 1) 95

by smeaggie on Friday July 27, 2012 @04:51AM (#40788215) Attached to: Researcher Wows Black Hat With NFC-based Smartphone Hacking Demo

I cannot believe..........no wait....I cannot understand why these things aren't being made with security at the forefront. Surely anyone with half a brain realises that every point of communication with a phone is a potential point of exploitation. LOCK IT DOWN PEOPLE - FOR BLINKY'S SAKE, THIS HAS BEEN GOING ON TOO LONG.

For the nexus phone, the actual exploit was in the browser, NFC was just used to open the browser without the user being asked to do so. On the nokia, the actual exploit was in the bluethooth stack. This particular implementation allows bluetooth device pairing over NFC even if bluetooth is turned off on the phone, so now with NFC the exploit is reachable without the users knowledge. The exploit in the bluetooth stack allows for root access on the device. So the biggest problem with current NFC implementations is they don't ask the user anything, just act on what the other side is giving you. That is the real problem, because now one may change the payment terminal to hack your phone. If I hold my phone against a payment terminal and it asks me to pair a bluetooth device I'll just deny it, but with the current phones, I'm not asked anything. Info from this site (dutch): http://tweakers.net/nieuws/83354/beveiligingsonderzoeker-waarschuwt-voor-misbruik-nfc.html

Comment Re:42U - Go Big or Go Home (Score 1) 402

by smeaggie on Tuesday May 01, 2012 @06:05AM (#39855209) Attached to: Ask Slashdot: Building A Server Rack Into a New Home?

Like this dutch guy: http://tweakers.net/ext/f/S8yQU57CR777iio7mI1FrcZj/full.jpg

Comment Re:or it is used as a tool (Score 1) 164

by smeaggie on Friday March 23, 2012 @06:05AM (#39448907) Attached to: DoD Networks Completely Compromised, Experts Say

Or, to spin this thread the other way round (and being completely off-topic), the only thing left of the actual pigeon is the brain: http://dsc.discovery.com/news/briefs/20041018/brain.html

Comment Re:Original Source and Actual Paper (Score 1) 462

by smeaggie on Friday October 01, 2010 @11:24AM (#33759440) Attached to: Linux May Need a Rewrite Beyond 48 Cores

I would think they recieved one of these by now: http://www.engadget.com/2010/04/10/intels-48-core-processor-destined-for-science-ships-to-univers/
But maybe the profiling is easier in a simulated environment?

Comment first looks worthless already (Score 1) 327

by smeaggie on Thursday April 24, 2008 @06:45AM (#23180586) Attached to: Next-Generation CAPTCHA Exploits the Semantic Gap

The first test doesn't seem too hard... I downloaded a few samples of the picture, applied a pixelize filter in The Gimp, and the borders of some of the subimages come out very clear. Since you only have to point to the center of a single subimage, a simple program could probably find a good point in no time!
Another flaw in the first test is that there are always subpictures in the corners touching 2 outer borders of the complete picture. This means you only have to detect 2 sides to determine the center of it.
Furthermore, some subimages have a significant different colorpattern than others in the background (ex: bright sky vs. plain black) and the program wich puts these images together doesnt really seem to keep track of this, wich makes the borders very simple to detect.

Leaves us with the second picture, but the first looks worthless already...

Slashdot Top Deals