Re: [funsec] fog of cyberwar
On Sun, Jan 24, 2010 at 02:18:50AM +0200, Gadi Evron wrote: On 1/23/10 11:54 PM, Rich Kulawiec wrote: If what they're doing was going to work, it would have worked by now. It has worked. Microsoft has made incredible efforts and their code is extremely professional. That does not mean the policy is right. And yet their systems are compromised by the tens of thousands (or more) on a daily basis, with not the slightest sign that the trend will slow or reverse. I've begun to wonder whether the only reason still more aren't compromised is that [some] attackers/abusers already have an embarrassment of riches and just can't be bothered. I don't care about their efforts, per se. I don't care about their professional code, per se. I care about their results in the field...and their results are hideous, and continuing to get worse -- despite ever more extensive and sophisticated bandaids. ---Rsk ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
[funsec] Dump moon rockets, go private
http://news.bbc.co.uk/2/hi/science/nature/8489097.stm It is a humbling experience knowing that your fate depends on a vehicle built by the lowest bidder! - Alan B. Shepard, Mercury Astronaut, 1965 == (quote inserted randomly by Pegasus Mailer) rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org Education: the path from cocky ignorance to miserable uncertainty - Mark Twain victoria.tc.ca/techrev/rms.htm blog.isc2.org/isc2_blog/slade/index.html http://blogs.securiteam.com/index.php/archives/author/p1/ http://twitter.com/NoticeBored http://twitter.com/rslade ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
[funsec] Here We Go Again: Internet 'Drivers Licenses'
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 The meme that seemingly will not die -- Craig Mundie, chief research and strategy officer for Microsoft, mentions it again: http://rawstory.com/2010/01/agency-calls-global-cyberwarfare-treaty-drivers - -license-web-users/ Enjoy! - - ferg -BEGIN PGP SIGNATURE- Version: PGP Desktop 9.5.3 (Build 5003) wj8DBQFLZ3aaq1pz9mNUZTMRAppsAKC6d+Us+wOtJTM3Zpad1clnH/WUFQCg/F+S iJ8ip5B1EHN6NFiGn7kN9zs= =XmFQ -END PGP SIGNATURE- -- Fergie, a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawgster(at)gmail.com ferg's tech blog: http://fergdawg.blogspot.com/ ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Here We Go Again: Internet 'Drivers Licenses'
A cyber war would be worse than a tsunami -- a catastrophe... Wow, and the 2004 Indian Ocean tsunami killed (re: Wikipedia) almost 230,000 people. How many millions would die in a cyberwar? I see potential for sarcastic science fiction in this Larry Seltzer Contributing Editor, PC Magazine larry_selt...@ziffdavis.com http://blogs.pcmag.com/securitywatch/ -Original Message- From: funsec-boun...@linuxbox.org [mailto:funsec-boun...@linuxbox.org] On Behalf Of Paul Ferguson Sent: Monday, February 01, 2010 7:50 PM To: funsec Subject: [funsec] Here We Go Again: Internet 'Drivers Licenses' -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 The meme that seemingly will not die -- Craig Mundie, chief research and strategy officer for Microsoft, mentions it again: http://rawstory.com/2010/01/agency-calls-global-cyberwarfare-treaty-driv ers - -license-web-users/ Enjoy! - - ferg -BEGIN PGP SIGNATURE- Version: PGP Desktop 9.5.3 (Build 5003) wj8DBQFLZ3aaq1pz9mNUZTMRAppsAKC6d+Us+wOtJTM3Zpad1clnH/WUFQCg/F+S iJ8ip5B1EHN6NFiGn7kN9zs= =XmFQ -END PGP SIGNATURE- -- Fergie, a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawgster(at)gmail.com ferg's tech blog: http://fergdawg.blogspot.com/ ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list. ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Here We Go Again: Internet 'Drivers Licenses'
I believe a Star Trek TOS episode covered cyberwar. We would simply have to have all the calculated victims enter disintegration chambers. On 2/1/2010 6:29 PM, Larry Seltzer wrote: A cyber war would be worse than a tsunami -- a catastrophe... Wow, and the 2004 Indian Ocean tsunami killed (re: Wikipedia) almost 230,000 people. How many millions would die in a cyberwar? I see potential for sarcastic science fiction in this Larry Seltzer Contributing Editor, PC Magazine larry_selt...@ziffdavis.com http://blogs.pcmag.com/securitywatch/ -Original Message- From: funsec-boun...@linuxbox.org [mailto:funsec-boun...@linuxbox.org] On Behalf Of Paul Ferguson Sent: Monday, February 01, 2010 7:50 PM To: funsec Subject: [funsec] Here We Go Again: Internet 'Drivers Licenses' -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 The meme that seemingly will not die -- Craig Mundie, chief research and strategy officer for Microsoft, mentions it again: http://rawstory.com/2010/01/agency-calls-global-cyberwarfare-treaty-driv ers - -license-web-users/ Enjoy! - - ferg -BEGIN PGP SIGNATURE- Version: PGP Desktop 9.5.3 (Build 5003) wj8DBQFLZ3aaq1pz9mNUZTMRAppsAKC6d+Us+wOtJTM3Zpad1clnH/WUFQCg/F+S iJ8ip5B1EHN6NFiGn7kN9zs= =XmFQ -END PGP SIGNATURE- -- Daniel Otis d...@moosoft.com http://www.moosoft.com MooSoft Development LLC ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Here We Go Again: Internet 'Drivers Licenses'
/me thinks of ghost in the shell On Mon, Feb 1, 2010 at 8:29 PM, Larry Seltzer la...@larryseltzer.comwrote: A cyber war would be worse than a tsunami -- a catastrophe... Wow, and the 2004 Indian Ocean tsunami killed (re: Wikipedia) almost 230,000 people. How many millions would die in a cyberwar? I see potential for sarcastic science fiction in this Larry Seltzer Contributing Editor, PC Magazine larry_selt...@ziffdavis.com http://blogs.pcmag.com/securitywatch/ ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
[funsec] Rent-a-Rubbie
OK, this is probably seriously OT, but it's just so bizarre. http://links.cbc.ca/a/l.x?T=jncickghmaeealhbogafefgdmdM=28 A new Olympic information centre for international journalists provides limited information on the massive homeless problem in Vancouver with information boards, statistics, and something called a living library where Downtown Eastside residents will be available for half-hour sessions to talk to media. (Presumably chosen for cleanliness and articulate nature.) Sound of Graham Chapman pretending to be an old woman: Oh, look. A homeless person. Visions of some version of the old European explorers who would kidnap indigenous people and bring them back as exhibits. Or people going to visit Bedlam. == (quote inserted randomly by Pegasus Mailer) rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org The best defence is a good non-sequitur victoria.tc.ca/techrev/rms.htm blog.isc2.org/isc2_blog/slade/index.html http://blogs.securiteam.com/index.php/archives/author/p1/ http://twitter.com/NoticeBored http://twitter.com/rslade ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Here We Go Again: Internet 'Drivers Licenses'
Date sent: Mon, 01 Feb 2010 16:49:48 -0800 From: Paul Ferguson fergdawgs...@gmail.com http://rawstory.com/2010/01/agency-calls-global-cyberwarfare-treaty-drivers - -license-web-users/ Now, while the War Office has not yet ascertained what qualifications are indeed necessary to fly an ... er ... aeroplane, we must see to it that all candidates possess the necessary qualifications, should the War Office ever decide what those qualifications are. Do you understand that, Bishop? - Sir Hugh Cecil in `Billy Bishop Goes to War' by John Gray == (quote inserted randomly by Pegasus Mailer) rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org Those who do not learn from computer history tend to repackage it - Slade's Law of Computer `Progress' victoria.tc.ca/techrev/rms.htm blog.isc2.org/isc2_blog/slade/index.html http://blogs.securiteam.com/index.php/archives/author/p1/ http://twitter.com/NoticeBored http://twitter.com/rslade ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Here We Go Again: Internet 'Drivers Licenses'
Wow, and the 2004 Indian Ocean tsunami killed (re: Wikipedia) almost 230,000 people. How many millions would die in a cyberwar? Depends on what gets hit. Take over the SCADA for New York City's utilities, especially at this time of year, and you could kill a substantial fraction of the city. Over 230K would not surprise me. Of course, the hard part would be keeping it doing what you want; I don't know to what extent it would be possible to switch back to manual control for the most essential services, and whether it could be done fast enough. And, of course, on whether you could reach them at all. I don't know how intelligently they are secured, but I'm pessimistic. All it takes is one slip-up, and governments have a poor track record at listening to the people who actually know how to do that kind of thing right /~\ The ASCII Mouse \ / Ribbon Campaign X Against HTMLmo...@rodents-montreal.org / \ Email! 7D C8 61 52 5D E7 2D 39 4E F1 31 3E E8 B3 27 4B ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Here We Go Again: Internet 'Drivers Licenses'
On Mon, 1 Feb 2010, Benjamin Brown wrote: /me thinks of ghost in the shell http://www.xkcd.com/686/ ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.