Posts by TJ1

"Lies to Children"

Should have told them about the Hogfather. Brings back warm memories of Discworld. Thanks PTerry.

One Network to Rule Them All

And we can believe Boeing are 100% correct both in hope and via proofs and evidence because...?

... of how bug-free the Maneuvering Characteristics Augmentation System (MCAS) has been proved to be?

Device(s) cloned by immigration/customs at O'Hare?

According to the indictment:

"j. On or about November 18, 2015, defendant YAO travelled from China to O'Hare International Airport in Chicago, Illinois. At the time, he had in his possession over 3,000 unique electronic files containing Company A's proprietary and trade secret information, including nine complete copies of Company A's control system source code and the systems specifications that explained how the control system source code worked."

Unless Yao was arrested at O'Hare how is this known unless Yao's devices were cloned and the images later inspected ?

Or is this sleight-of-hand wording to imply Yao was carrying those documents through the airport? Note the indictment uses the term "in his possession" which isn't the same as "carrying" - potentially all this means is Yao is alleged to still have copies of those trade-secret documents after ceasing to be employed by Company A. It could be this wording is being used to satisfy the 'inter-state' requirement for bringing charges.

New info from Police Dec 29th

Sussex Chief Constable today tells us that two drones that have been found in the area have been ruled out of the investigation and there were 115 reports of drone sightings with 92 from apparently credible witnesses.

Oh, and the Police were flying their own drones in the area which could be what some witnesses reported.

End-to-End and Open Source

This is where open-source and end-to-end encryption strengths really lie.

Open-source means experts in the field have the ability to test via reproducible builds that any binaries match the source code, and that the source code does not allow unauthorised parties.

End-to-End encryption and Perfect Forward Secrecy (correctly implemented) can properly protect against a communications provider (MITM) being able to add a party to the 'conference'.

Nice to see the Special Relationship in action...

... roll on leaving the EU so the UK can negotiate a wonderful free trade deal with the USA.

Someone left the ash tray open...

... in that SpaceX Tesla Roadster.

It's all that space junk I tell ya!

"Pull!"

By the Irish legal logic surely a Clay Pigeon is also an "aircraft" (at least temporarily) so if Mr Farmer just happens to be out shooting clays with his shot-gun he can't be blamed if a drone flies into the field of fire, now can he?

Whose DC is it - Intel's maybe?

Intel's formerly vacant chip fabs in Santa Clara [0], maybe? There's an Intel white-paper describing their high density sub 1.07 PUE design [1].

Nuclear because their hot aisles can reach 54 degrees Celsius.

[0] http://datacenterfrontier.com/intel-data-center-new-heights-efficiency/

[1] http://www.intel.com/content/dam/www/public/us/en/documents/best-practices/intel-it-extremely-energy-efficient-high-density-data-centers-paper.pdf

Forget the 'terrorist' straw man, it's far worse...

... remote controlled so-called 'smart' devices connected to a publicly accessible communications network (whether Internet, cellular, or dedicated radio-frequency access) is an open invitation for script kiddies, malcontents, and probably a new pastime for the 'swatters'.

Imagine arriving home every day to find fridge and freezer contents mysteriously spoiled, HVAC not working, security systems knocked out, and so on. Imagine if you rely on a home kidney dialysis machine, breathing support device, or other mains reliant medical device.

If there are any systemic vulnerabilities in these devices that can be exploited using a shotgun approach it has the real potential to cause extreme aggravation and hardship to thousands of homes and possibly injury or death.

Yay for 'smart' meters ... just like 'smart' phones that have forgotten what the telephone experience should be like, 'smart' televisions that become moronic if the Internet connection drops, 'smart' books that delete themselves, and 'smart' web-sites that are unable to render basic HTML without a full-blown Turing Complete executable code environment!

Seem to be missing some critical information

If the mobo has Secure Boot enabled, that infers it'll boot in UEFI mode, which implies either an entry in the firmware's boot menu, or the boot device has a removable media (simple) boot path loader at /EFI/BOOT/BOOTx64.EFI in an EFI System Partition, and that the boot-loader has a signing certificate indicating it was signed by a key trusted by a Certificate Authority embedded in the firmware.

It sounds as if the Asus firmware is doing something that isn't in the UEFI specification - namely when Secure Boot is enabled it isn't actually enabled so much as *optional* - if the initial boot-loader stub it reads doesn't have a signing certificate attached the firmware will boot with Secure Boot disabled.

If the MS KB3133977 update contains a boot-loader that is signed that would trigger Secure-Boot mode, but when the next stage is loaded and is found not to be signed it throws the reported error.

If this is correct then the Asus firmware could very easily mislead a user into believing a Secure Boot happened with an OS that does support Secure Boot when it didn't - any malware or physical intervention could replace the initial EFI stub with an unsigned version and the system would boot without a warning.

I hope this hypothesis is proved wrong else that's a big security FAIL on Asus' part.

If you're interested in the attack vectors I recommend reading this Intel & Phoenix "UEFI Secure Boot in Modern Computer Security Solutions" paper [0] and footnote 1 on page 7 and its reference 21 link to the Blackhat USA 2013 paper "A Tale of One Software Bypass of Windows 8 Secure Boot" [1].

[0] http://www.uefi.org/sites/default/files/resources/UEFI_Secure_Boot_in_Modern_Computer_Security_Solutions_2013.pdf

[1] http://www.c7zero.info/stuff/Windows8SecureBoot_Bulygin-Furtak-Bazhniuk_BHUSA2013.pdf

Troll mentality? - a story of abuse

Having been in from before the start of IRC - the first generally available anonymous Internet chat (excluding compuserve et al.) - I've observed this troll behaviour with some fascination, coming to understand or at least rationalise it, since it is an alien mentality to me.

I adopt the "laugh at them" approach, both for attacks aimed at me and at others around me - but just once - then totally ignore the trolling either mentally, or using technical measures (/ignore /ban etc.).

What I've observed is that all troll's *CRAVE* attention and wither away rapidly if they feel they're ignored. Even if you're reacting in the background (logging, tracing IPs, dropping honey-pot URLs into your conversation for them to visit [giving you info about their browser agent]) there should be a total lack of reaction in the troll's eyes.

A few years back my partner ( a man) was subject to escalating abuse that began online with blackmail-style attempts (threats to make allegations to me that would cause distrust in our relationship, etc.).

My partner was hugely upset and depressed by it, adopted what I call the 'victim mentality' and generally playing into the abuser's hands until I became aware and initiated a plan to identify them and put a stop to it.

It rapidly escalated to the real-world, first with poison letters to me, then to getting home visits from random (male) strangers at silly hours of the night who thought they were onto a random sex meet-up!

For the latter we tried to persuade several to provide details of how they had been fooled but most - understandably - were very embarrassed and eager to leave. So much so we recorded their vehicle registration numbers and later passed them to the police.

Due to the personal knowledge it was a reasonably good bet someone who knew us well was responsible so we set a honeytrap web-site and managed to get our primary suspect to visit it. That allowed us to correlate the IP and user-agent with details in some supposedly anonymous emails sent via services that add the SMTP X-Originating-IP header.

That gave us information about the ISP being used which correlated with yet more information we gathered on our range of suspects (from postmarks, etc), and we eventually got a perfect match that confirmed our primary suspect.

With all that information we made a complaint of harassment to the local police. A regular copper dealt with it and couldn't have been more helpful. Although she lacked the technical knowledge she was able to follow our (well organised and explained) evidence and through more technical colleagues rapidly came to the same conclusion as us.

The ISP information we'd gathered turned out to be the suspect's sister's family so when the police called at their house (in another county on the East Coast near Skegness) it of course made the entire family aware. From the sister they obtained the telephone number of the suspect and invited him in for an interview where - we are told - he was a trembling wreck. Presented with the evidence fell apart, admitted it, but had no rational explanation for the behaviour.

He was given a formal caution and a warning that any further contact and he'd be charged and taken to court. The last we heard was one last anonymous message saying he was "goodbye, I'm going to kill myself tonight". That was four years ago and we've not heard anything since.

I theorise it can't have done any harm in the online communities my partner used to hear the story since it marked him as someone to be wary of.

Sorry for the ramble but I wanted to give some confidence to others who may be targets that you do have options, especially if you have, or can obtain, technically literate expertise and a more cunning thought process!

In summary, trolls crave attention, are usually (but not always) meek and retiring in person, and generally have an inferiority complex. Thus, they feel safe to use anonymous mediums to attack people they deem weaker than themselves in an attempt to boost their own ego in their own eyes.

So, laughing at them can send the message "I'm confident and more psychologically strong than you" which lets them know they'll end up loosing so they rapidly loose interest.

If you are subject to such abuse and aren't mentally strong enough to counter it yourself I urge you to ask for help from someone who is and can - but avoid hot-heads that think making threats to the abuser will help in any way. At the least register a complaint (in writing, get an incident number, etc.) with the police to establish a history so if it later escalates it will be dealt with more urgently.

It will then use hydrogen peroxide fuel...

... and if that fails at least it'll not have a bad-hair day.

Kepp those A320s out of our airspace!

How dare those airlines fly their large heavy dangerous airplanes into our small, light, perfectly 'armless remote controlled kids toys - won't somebody think of the children!?

And his colleague is still there, waiting for him!

Warning: black humour!

See Streetview: https://goo.gl/maps/z7WUjxGdXdN2