On 06/12/2012 10:58 AM, Thor Lancelot Simon wrote:
One wonders what Microsoft knows about who requested all those licenses.
Presumably there was some effort put into plausible deniability.
Considering that the Flame attackers are said to operate 80
command-and-control servers at locations aro
On Tue, Jun 12, 2012 at 10:51:59AM -0500, Marsh Ray wrote:
>
> What is unclear is if there are any effective costs or rate
> limitations on how often one can 'activate' an MSTS license server.
> A compute cluster faster than 200 PS3s could cut down on the number
> of license certs that were burned
On 06/12/2012 04:09 AM, Marc Stevens wrote:
They were limited to a millisecond time-window to request the original
cert for their attack to succeed.
That means they probably needed a lot more attempts than the 9 attempts
(over 4 weekends) we needed.
From Sotirov's http://www.trailofbits.com/re
On 12-6-2012 10:45, Ben Laurie wrote:
On Tue, Jun 12, 2012 at 8:24 AM, Marc Stevens wrote:
On 12-6-2012 0:59, Ralf-Philipp Weinmann wrote:
On 6/11/12 6:38 PM, Ondrej Mikle wrote:
On 06/11/2012 11:06 AM, Ben Laurie wrote:
On Mon, Jun 11, 2012 at 1:56 AM, Nico Williams
wrote:
On Sun, Jun 1
On Tue, Jun 12, 2012 at 8:24 AM, Marc Stevens wrote:
>
>
> On 12-6-2012 0:59, Ralf-Philipp Weinmann wrote:
>>
>> On 6/11/12 6:38 PM, Ondrej Mikle wrote:
>>>
>>> On 06/11/2012 11:06 AM, Ben Laurie wrote:
On Mon, Jun 11, 2012 at 1:56 AM, Nico Williams
wrote:
>
> On Sun, Jun 1
On 12-6-2012 0:59, Ralf-Philipp Weinmann wrote:
On 6/11/12 6:38 PM, Ondrej Mikle wrote:
On 06/11/2012 11:06 AM, Ben Laurie wrote:
On Mon, Jun 11, 2012 at 1:56 AM, Nico Williams wrote:
On Sun, Jun 10, 2012 at 3:03 PM, Florian Weimer wrote:
* Marsh Ray:
Marc Stevens and B.M.M. de Weger (o
