The Cyber Commission has loose ties with each of the remaining presidential campaigns, yet members admit they don’t expect all of their recommendations to be followed. [From Black Hat Conference: Experts Develop Cybersecurity Recommendations For Next President]
Browsing Posts published on February 20, 2008
David Axe has an excellent contribution to Wired’s Danger Room on the military struggles to leverage open source medium for networking ideas and discussion. His suggestion caught my attention. I’m not saying that Army forums should be totally unprotected from insurgent snoopers. But they should be expanded, and loosened, to allow students, academics, journalists and, yes, even members of the [From Open Source, Professionals, Military Content, and the Future]
There are going to be some great stories to tell, or hear, assuming some of this gets declassified when the satellite shot completes. We remain impressed with how much effort the Navy is putting into this show. All those reporters in Virginia are probably oblivious to what is happening right under their noses, or frustrated they can’t see it. We call it a show because in many ways, that is what [From US 193 Prep Continues]
Ten years after Back Orifice, the Cult of the Dead Cow hacker group has again published a hacker tool with classic potential: Goolag Scan searches Google systematically for tell-tale information. [From Cult of the Dead Cow turns Google into a vulnerability scanner]
Back in August, [h1kari] presented an analysis of the A5 crypto spec used in GSM systems. Almost all GSM conversations in the US and Europe are encrypted using this standard. At the time they were still in the planning stages of building their rainbow table of shift register states. Today we heard an update on the progress. The whole space is 2^58 in size and would take a standard PC 33,235 years to calculate. Not being patient people they built a box containing 68 express card based FPGAs. Each one is capable of doing 72 billion operations per second. So far they’re one month into the 3 month process. Once the table is completed any person can crack a GSM conversation in 30 minutes using 1 FPGA and the 2TB table. They do have plans for building an optimal system that would be based on solid state drives and 16 FPGAs that should do the crack in just 30 seconds.
Role-based access control (RBAC) is a general security model that simplifies administration by assigning roles to users and then assigning permissions to those roles. Learn how RBAC in SELinux acts as a layer of abstraction between the user and the underlying TE model, and how the three pieces of an SELinux context (policy, kernel, and userspace) work together to enforce the RBAC and tie Linux users into the TE policy.
Lawmakers let surveillance law lapse [From Brief: Lawmakers let surveillance law lapse]
bsdphx writes “OpenSSH developers Damien Miller and Markus Friedl have recently added a nifty feature to make life easier for admins. Now you can easily lock an SSH session into a chroot directory, restrict them to a built-in sftp server and apply these settings per user. And it’s dead simple to do. If you need to allow semi-trusted people on your computers, then you want this bad!”
