Posts by Mike Tubby

Its much worse than that... Complete Infosec fail?

According to Citizenlab.ca there are major flaws in Zoom:

1. the encryption is not what they claim, and is, in fact AES-128-CBC

2. crypto keys have been observed being exchanged via Chinese servers

Read the report here:

https://citizenlab.ca/2020/04/move-fast-roll-your-own-crypto-a-quick-look-at-the-confidentiality-of-zoom-meetings/

Please someone ask NCSC/CESG/GCHQ whether our politicians, businesses and critical national infrastructure should be using this?

... picks up coat, heads off to server room to implement another instance of Jitsi ...

Mike

Which order is the right order?

So, to keep the spies out and the bugs in which order to I cascade my firewalls?

Outside <--> Linux <--> Cisco <--> Huawei <--> CheckPoint <--> Inside

Outside <--> Linux <--> Huawei <--> Cisco <--> CheckPoint <--> Inside

Outside <--> Linux <--> Cisco <--> Huawei <--> CheckPoint <--> Inside

Outside <--> Cisco <--> Huawei <--> Linux <--> CheckPoint <--> Inside

Outside <--> Huawei <--> Cisco <--> Linux <--> CheckPoint <--> Inside

Outside <--> CheckPoint <--> Huawei <--> Cisco <--> Linux <--> Inside

... ... ... ...

dam... there are just so many combinations! ;-)

Mike

Implicit or explicit?

How is this move to 'implicit' encryption?

Surely this is 'explicit' encryption since it is directly stated that we are to use encryption (on these ports) to connect to servers?

G

Okay here

I'm on Zen with an 80Mbps down/20Mbps up FTTC service at home in 01905 land (the home of Worcester Sauce) and everything's been fine here ;-)

Mike

First the Pron, then what next?

Consider this:

1. Law requires "age verification" for access to Pron

2. Law fails because 98% of Pron is hosted overseas and outside UK legal jurisdiction ... is PronHub really going to do what UK HMG tells it... probably not...

3. HMG manufactures public outcry along the lines of "we made this law and they ignore us - think of the children", followed by

4. new message from HMG "We have to censor the internet - think of the children", followed by

5. its not just Pron now, its religious views, hate crime, anti-this, anti-that, anti-the-other

Part 3 of the Digital Economy Bill is bad law making and potentially the start of a slippery slope...

Mike

If its good enough for Rick Mayall ...

https://www.youtube.com/watch?v=oMAFme1hBH0

Hang on a minute

Ok Apple, "root" that isn't root suggests that there's something above root? Hmmm... smacks of having multiple levels like:

Kernel

Supervisor

Exec

User

... and now we're back to the DEC/VAX architecture :-)

Mike

Bet it james WiFi IP cameras too

Why am I thinking of a Benny Hill moment with him putting jamming devices in bins in down-town Turin...? I bet it would jam modern-day Wifi IP cameras too :)

PDP11 Assembler

MOV -(PC), -(PC) ; go backwards

aka "014747" ;-)

iPhone 5S marketing

I remind El Reg registers of the following iPhone 5S marketing parody:

http://www.youtube.com/watch?v=1sIWez9HAbA

As anyone should know....

As anyone that has watched 'Chuck' [ http://en.wikipedia.org/wiki/Chuck_(TV_series) [ should know, its not called "Prism", not it is called "Aurora" ... its called THE INTERCEPT ;-)

G

They'll want to tax sex next!

Better not tell him that the act of having sex frequently results is increased levels of cardio-vascular activity, respiration and breathing... OMG now we're all at it! ... killing the planet that is!

... Better tax sex!!

Mike

PS. Paris because she knows how to make CO2 ;-)

For Nominet read "nanny state"

I was one of the people that responded to the consultation.

It was clearly a badly thought out mixture of:

a) how do we make more money from this

b) attempting to appease government with ill thought-out identity verification

c) security theatre (scanning websites, shutting them down)

d) DNSSEC (something that actually might be useful)

In what appears to be "Nominet become Nanny State" and "Nominet become policemen of the interwebs".

If we're going to have our own registrations in the .uk TLD then I want the good bits and not the bad bits...

Identity - if you want to fix this then simply say "UK companies, charities, partnerships or other legal entities only" and make registration require UK company number, charity commission number or similar - no need for envelopes sent via the post which can be diverted, or handled via accommodation addresses - what does that prove? Only that you posted it to *someone* via an address that was valid on *one* day... great!

Security - DNSSEC if you will, but optional - let me choose if I use it

Security - scanning my website? I don't think so... my website is my property... it might well have 10 million pages on it -- are they going to pay for the bandwidth?

Security - shutting down my website? what's it got to do with you, Nominet? You are *not* the internet police

Overall I give Nominet a 3/10 for a badly thought out, jumble of Nanny State proposals.

Mike Tubby MJT4-RIPE

THORCOM tag holder

Look, lets sort this out...

I suggest we send each of the wannabe space captains/deputies (Kirk, Spock, Picard, Janeway, etc.) up to the ISS for a month or two and see them "Celebrity Big Brother" style in space ... then we could vote for the *best* one ;-)

G

Check your logarithms!

El Reg: "The increase in transmission power is 3dB, which is marginally more exciting when one remembers that decibels are logarithmic (so a 3dB increase is eight times the power) but it's still well within safe margins and more about increasing coverage than microwaving locals..."

I think you'll find that 3dB is a power doubling ...

dB = 10 x log(p1/p2) [log to the base 10]

So if we go from say 10 watts to 20 watts:

dB = 10 x log(20/10)

dB = 10 x log(2)

dB = 10 x 0.3010

dB = 3.01

commonly known as 3dB.

Incidentally, due to the inverse-squared power law this will increase the range by the square root of 2, for example 5Km -> 7km or 10Km -> 14Km which is a modest amount.

Mike

Mr. Jobs or Mr. Black?

Looks like a young (and thinner) version of Jack Black... perhaps he'll burst forth with a rendition of the "greatest song in the world" -- or a sonnet to Mr. Jobs?

G

Paris should listen to the Tenacious D album ;-)

Erm... exactly why do we need PLT anyway?

I'm still not convinced what the business case for PLT actually is? To laxy to install CAT5? Then use WiFi?

G