Alright, let´s stop assuming things then. Anyhow, congrats for the great
work. Nice chat, btw.
Att,
Pablo Ximenes
2011/12/7 Dan Rosenberg
> On Wed, Dec 7, 2011 at 10:02 AM, Pablo Ximenes wrote:
> > Hi,
> >
> > 2011/12/7 Dan Rosenberg
> >>
> >> On Wed, Dec 7, 2011 at 9:09 AM, Pablo Ximenes
On Wed, Dec 7, 2011 at 10:02 AM, Pablo Ximenes wrote:
> Hi,
>
> 2011/12/7 Dan Rosenberg
>>
>> On Wed, Dec 7, 2011 at 9:09 AM, Pablo Ximenes wrote:
>>
>>
>>
>> That's a good question. As you've mentioned, the URL falls within the
>> HTTP request, the entirety of which is protected by SSL. So I
Hi,
2011/12/7 Dan Rosenberg
> On Wed, Dec 7, 2011 at 9:09 AM, Pablo Ximenes wrote:
>
>
>
That's a good question. As you've mentioned, the URL falls within the
> HTTP request, the entirety of which is protected by SSL. So I would
> argue that the URL is content that should remain secret in an
On Wed, Dec 7, 2011 at 9:09 AM, Pablo Ximenes wrote:
> Hi,
>
> 2011/12/7 Dan Rosenberg
>>
>> And I was really hoping I wouldn't get dragged into another discussion
>> on this...
>
>
> Well, if it serves of any consolation, discussions are good for making
> things more clear, I´d assume. Sorry, th
Hi,
2011/12/7 Dan Rosenberg
> And I was really hoping I wouldn't get dragged into another discussion
> on this...
>
Well, if it serves of any consolation, discussions are good for making
things more clear, I´d assume. Sorry, though.
> On Wed, Dec 7, 2011 at 7:55 AM, Pablo Ximenes wrote:
>
And I was really hoping I wouldn't get dragged into another discussion
on this...
On Wed, Dec 7, 2011 at 7:55 AM, Pablo Ximenes wrote:
> Hi All,
>
> Based on what I read from the post, basically Rosenberg recognises he has no
> clue about what happens with the rest of affected phone models:
>
> "
Hi All,
Based on what I read from the post, basically Rosenberg recognises he has
no clue about what happens with the rest of affected phone models: *
"One important thing to note is that this represents the metrics that are
submitted to the CarrierIQ application by the code written by Samsung. T
On Tue, Dec 6, 2011 at 7:52 AM, Christian Sciberras wrote:
> Or not...
>
> http://vulnfactory.org/blog/2011/12/05/carrieriq-the-real-story/
Just to play devil's advocate: this application has the potential to
do a lot of harm. Should we treat it like 'location data' from the
recent past? Recall t
Uhm, pretty much any software entering your system has some potential to
(being) wreck(ing) havoc, be whether it is an innocent gif file or a
potentially backdoored exe.
Still, that doesn't give me the right to shout at any software vendor
baseless assumptions that simply damages its reputation.
T
Or not...
http://vulnfactory.org/blog/2011/12/05/carrieriq-the-real-story/
On the other hand, where that l33t hacker Drew (aka xD 0x41)?
Thought he'd enlighten us with more of his awesome hacking powers on this
issue.
___
Full-Disclosure - We believe in
10 matches
Mail list logo