ay be written out to the hard drive without _any_ crypto
at all. It appears that TuxOnIce does the right thing while other
systems are all over the map.
Regards,
Jacob Appelbaum
ing the keys that are in memory
- unless you're using some sort of secure crypto co-processor (which no
one is).
Regards,
Jacob Appelbaum
oc photon wrote:
> n Thu, Feb 28, 2008 at 1:56 PM, Jacob Appelbaum <[EMAIL PROTECTED]> wrote:
>> Moin moin Bugtraq readers,
>>
>> Bill Paul and I have discovered that LoginWindow.app doesn't clear
>> credentials after a user is authenticated.
> This has a
was
solved in passwd(1) over two decades ago.
A few details on how to find your own password (from the Apple bug tracker):
Problem ID: 5726694
Title: Information disclosure with LoginWindow.app
State:Duplicate /3250780
Originated Date: 05-Feb-2008 05:57 PM
05-Feb-2008 05:57 PM Jacob A
n products: BitLocker, which comes with Windows
Vista; FileVault, which comes with MacOS X; and dm-crypt, which is used
with Linux. The research team includes J. Alex Halderman, Seth D.
Schoen, Nadia Heninger, William Clarkson, William Paul, Joseph A.
Calandrino, Ariel J. Feldman, Jacob Appelbaum, an
Max Moser wrote:
> Dear Listmembers,
>
>
> Today the team remote-exploit.org together with Dreamlab Technologies likes
> to release another piece of uniq research work.
>
> Although the trend in wireless communication in peripheral devices such as
> keyboards and mice is moving towards Bluetooth
Steve wrote:
> The entire Triton 9100, and 9700 hundred series of machines are
> vulnerable to the same default password problem that's been in the news
> lately in one form or another.
>
> More details can be found on my blog, including sources for the
> relevant manuals.
> http://hardware.quick