psychosis - Slashdot User

Comment Re:Best Part (Score 1) 174

by Helevius on Tuesday February 01, 2011 @02:09PM (#35071074) Attached to: World's Worst Hacker?

Some intruders download Windows service packs to check the bandwidth available.

Comment Re:Want to buy (Score 1) 175

by psychosis on Sunday May 30, 2010 @03:44PM (#32399986) Attached to: Reproducing an Ancient New World Beer

Theobroma hit retail availability two years ago, and is pretty widely carried. When in season, it's not hard to find - ask your retailer to ask their distributor to get some stock. Follow @dogfishbeer on twitter to know when they're brewing which recipe.

Comment Re:Want to buy (Score 1) 175

by psychosis on Sunday May 30, 2010 @03:38PM (#32399948) Attached to: Reproducing an Ancient New World Beer

... retail locations, all in Delaware.

Their products are available (almost*) nationwide, and in some international locations.

* Except for a small number of states that do not permit distribution of regular-ABV beers.

Palm WebOS Hacked Via SMS Messages 99

Posted by Soulskill on Monday April 19, 2010 @12:26PM from the and-a-sausage dept.

gondaba writes "Security researchers at the Intrepidus Group have hacked into Palm's new WebOS platform, using nothing more than text messages to exploit a slew of dangerous web app vulnerabilities. The white hat hackers found that the WebOS SMS client did not properly perform input/output validation on any SMS messages sent to the handset, leading to a rudimentary HTML injection bug. Coupled with the fact that HTML injection leads directly to injecting code into a WebOS application, the attacks made possible were quite dangerous (especially considering they could all be delivered over an SMS message)."

Comment BlockHosts (Score 2, Informative) 497

by psychosis on Saturday March 06, 2010 @08:12PM (#31385266) Attached to: Coping With 1 Million SSH Authentication Failures?

We started using BlockHosts to feed iptables rules, and our failure logs went from 30-50k per day to 100. Basically, with more than 'x' failed logins within 'y' time frame, the source IP is blocked for 'z' time period. Since it uses iptables, you could block it from just the ssh port, or the entire system (we do the latter).
All three variables are configurable, and we also have whitelisted a few select standby IPs for contingency use. (As another poster said, you **will** lock yourself out eventually.)

Comment Re:Won't someone please think of the children (Score 1) 256

by Helevius on Saturday February 06, 2010 @12:32PM (#31046522) Attached to: FBI Pushing For 2-Year Retention of Web Traffic Logs

You said

"HTTPS only works one IP per host, so that gives a positive track to where they were going."

That is not correct. If you inspect HTTPS traffic you'll see that clients issue something like the following:

CONNECT www.myawesomehost.net:443 HTTP/1.1
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5
Proxy-Connection: keep-alive
Host: www.myawesomehost.net

The same IP address can host www.myawesomehost.net and plenty of other Web sites. With HTTPS the Feds would just track the CONNECT and Host: fields since those are in the clear.

Comment Re:Thanks! (Score 1) 216

by Helevius on Tuesday September 01, 2009 @06:14PM (#29279555) Attached to: The Myths of Security

"I know the book has pissed some people off, especially when I take on their particular sacred cows (e.g., intrusion detection)."

"Sacred cows" have nothing to do with it. The book just isn't that interesting.

Comment Richard Bejtlich's Observation of CDX 2009 (Score 1) 219

by Helevius on Tuesday May 12, 2009 @07:49AM (#27920523) Attached to: NSA Wages Cyberwar Against US Armed Forces Teams

Richard Bejtlich from the TaoSecurity Blog was invited by NSA's Tony Sager to visit the CDX in person:

http://taosecurity.blogspot.com/2009/05/thoughts-on-2009-cdx.html

Bejtlich mentions that CDX participants were given a budget for the exercise. This means it cost them "marks" (in exercise language) to replace the Windows images NSA provided with alternative systems like FreeBSD or Linux. That decision caused the team to have less resources for other tasks.

The Army didn't win just because they used Linux. Bejtlich posts reasons why they won here:

http://taosecurity.blogspot.com/2009/05/lessons-from-cdx.html

Comment Linked pdf is not the result of the 60 day study (Score 1) 133

by Helevius on Saturday April 18, 2009 @07:04PM (#27631607) Attached to: DHS Seeks "Ethical Hackers" To Protect Federal Net Infrastructure

Watch for a report from Melissa Hathaway, who is leading the effort. The linked .pdf is from GAO and was published 10 March.

Comment Association of Former Information Warriors (Score 1) 426

by Helevius on Saturday March 14, 2009 @06:10PM (#27196303) Attached to: How Do Militaries Treat Their Nerds?

As a result of this discussion, the Association of Former Information Warriors was created.

LinkedIn Group:

http://www.linkedin.com/groups?about=&gid=1847393

Blog:

http://aofiw.blogspot.com/

Bookmark Cox To Begin Throttling P2P, Software Updates (gallopinc.com)

by tlhorset on Thursday January 29, 2009 @01:39PM

Bookmark Another Reason to Ditch your Land-Line (gallopinc.com)

by tlhorset on Tuesday January 27, 2009 @07:04PM

Bookmark Top 10 Personal Technology Services Of 2008 (gallopinc.com)

by tlhorset on Monday December 29, 2008 @01:12PM

Comment Only Free Alternatives (Score 1) 2

by tlhorset on Thursday December 18, 2008 @12:08PM (#26161603) Attached to: NY Planned Budget - How is Tech Affected?

Yeah, but the problem is that they're even taxing digital downloads so Netflix, iTunes might not even work. The good news is that since tax is a percentage of price, if price is $0 so is the tax. So Hulu might be an alternative to TV, Skype, iChat, Google Video might be alternatives to phones, but it'll be hard to avoid the tax altogether.

Bookmark NY Planned Budget - How is Tech Affected? (gallopinc.com)

by tlhorset on Wednesday December 17, 2008 @06:05PM

Slashdot Top Deals