I agree. Please begin by sharing your credit card number.
See if this one works:
4321432143214321
12/49
404
--
Alan
You must have LifeLock too!
(What the? Blackberrys don't let a person automatically bottom post? I had to
cut and paste this to get it looking right.)
/*
PLUG:
On 11/4/10 9:00 PM, Michael Torrie wrote:
Well even if you run your own version of firefox, if the public computer
has a keyboard logger, all bets are still off. After seeing hacked
Gmail accounts even for tech savy folks such as inhabit this list, I've
about decided that logging into any
On 11/06/2010 07:10 AM, Aaron Toponce wrote:
In a random mom and pop Internet cafe, I would understand this
concern. In an established environment, such as a major university, that
paranoia might be excessive.
I would say most internet cafes would pose quite a risk. Only recently
have I
On Thu, 4 Nov 2010 22:18:17 -0600
John Shaver bobjohn...@gmail.com wrote:
Don't get too confident.
http://www.thinkgeek.com/gadgets/security/c49f/
Sorry for the top-posting. This was posted from my phone.
Thanks for reminding me. It's time to scan the key log from the key
logger I put on
On Fri, 2010-11-05 at 05:13 -0600, Charles Curley wrote:
How paranoid do you want to get?
If you're bedroom isn't lined with tine foil, and you don't know the
rough embrace is steel wool underwear, then you fail.
/*
PLUG: http://plug.org, #utah on irc.freenode.net
Unsubscribe:
On Fri, Nov 5, 2010 at 9:27 AM, Stuart Jansen sjan...@buscaluz.org wrote:
On Fri, 2010-11-05 at 05:13 -0600, Charles Curley wrote:
How paranoid do you want to get?
If you're bedroom isn't lined with tine foil, and you don't know the
rough embrace is steel wool underwear, then you fail.
No
No way. You need to go the opposite direction. No walls, loincloths,
and promiscuous data sharing. Privacy is bad. Everyone should share
all data. No need for passwords, just a big un-authenticated cloud of
society's data.
Signed,
The Hippy communist.
Well you know, if you're doing
On Fri, Nov 5, 2010 at 9:27 AM, Stuart Jansen sjan...@buscaluz.org wrote:
On Fri, 2010-11-05 at 05:13 -0600, Charles Curley wrote:
How paranoid do you want to get?
If you're bedroom isn't lined with tine foil, and you don't know the
rough embrace is steel wool underwear, then you fail.
Is
On 11/05/2010 10:10 AM, Christer Edwards wrote:
On Fri, Nov 5, 2010 at 9:27 AM, Stuart Jansen sjan...@buscaluz.org wrote:
On Fri, 2010-11-05 at 05:13 -0600, Charles Curley wrote:
How paranoid do you want to get?
If you're bedroom isn't lined with tine foil, and you don't know the
rough
On Fri, Nov 5, 2010 at 10:10 AM, Christer Edwards
christer.edwa...@ubuntu.com wrote:
On Fri, Nov 5, 2010 at 9:27 AM, Stuart Jansen sjan...@buscaluz.org wrote:
On Fri, 2010-11-05 at 05:13 -0600, Charles Curley wrote:
How paranoid do you want to get?
If you're bedroom isn't lined with tine
On 11/5/10 9:27 AM, Stuart Jansen wrote:
On Fri, 2010-11-05 at 05:13 -0600, Charles Curley wrote:
How paranoid do you want to get?
If you're bedroom isn't lined with tine foil, and you don't know the
rough embrace is steel wool underwear, then you fail.
Tin foil isn't good enough, RFID
On Fri, 5 Nov 2010 10:10:57 -0600
Christer Edwards christer.edwa...@ubuntu.com wrote:
On Fri, Nov 5, 2010 at 9:27 AM, Stuart Jansen sjan...@buscaluz.org
wrote:
On Fri, 2010-11-05 at 05:13 -0600, Charles Curley wrote:
How paranoid do you want to get?
If you're bedroom isn't lined with
On Fri, 5 Nov 2010 10:45:11 -0600
Levi Pearson levipear...@gmail.com wrote:
Steel wool underwear sounds like a remarkably bad idea. First of all,
uncomfortable! Second... did you know you can start a fire with a 9
volt battery and steel wool? Also, sticking steel wool in the
microwave
Lonnie Olson wrote:
No way. You need to go the opposite direction. No walls, loincloths,
and promiscuous data sharing. Privacy is bad. Everyone should share
all data. No need for passwords, just a big un-authenticated cloud of
society's data.
Signed,
The Hippy communist.
I agree.
On Fri, Nov 5, 2010 at 18:34, Kenneth Burgener kenn...@mail1.ttak.org wrote:
I agree. Please begin by sharing your credit card number.
See if this one works:
4321432143214321
12/49
404
--
Alan
/*
PLUG: http://plug.org, #utah on irc.freenode.net
Unsubscribe:
I haven't seen any discussion of FireSheep here.
http://www.charlescurley.com/blog/archives/2010/11/04/bringing_in_the_sheep/index.html
--
Charles Curley /\ASCII Ribbon Campaign
Looking for fine software \ /Respect for open standards
and/or writing?
On 11/04/2010 01:09 PM, Charles Curley wrote:
I haven't seen any discussion of FireSheep here.
http://www.charlescurley.com/blog/archives/2010/11/04/bringing_in_the_sheep/index.html
Interesting. How is it that facebook credentials are being sent in the
clear? Or is this just a matter of
On Thu, Nov 4, 2010 at 1:17 PM, Michael Torrie torr...@gmail.com wrote:
On 11/04/2010 01:09 PM, Charles Curley wrote:
I haven't seen any discussion of FireSheep here.
http://www.charlescurley.com/blog/archives/2010/11/04/bringing_in_the_sheep/index.html
Interesting. How is it that
On 11/04/2010 01:24 PM, Lonnie Olson wrote:
Firesheep doesn't hijack credentials. Only the session. It exploits
a common hole in most websites that use SSL for login, but go in the
clear for everything else.
Firesheep makes it super trivial to find a session running in the
clear, grab
On Thu, Nov 4, 2010 at 2:04 PM, Michael Torrie torr...@gmail.com wrote:
So this is basically an old-style attack, such as was common before the
days of internet switches. This is made even easier by the fact that
most wirelss routers are not only shared broadcast medium (like a hub)
but also
The other wrinkle is that even if the developer moves the session to SSL,
they might forget to mark the cookie secure. So when the user goes to their
old http:// bookmark they might still leak out their session cookie and
be vulnerable to session-jacking.
-nage
On Thu, Nov 4, 2010 at 2:12 PM,
On Thu, Nov 4, 2010 at 2:24 PM, Nathan plug...@gmail.com wrote:
The other wrinkle is that even if the developer moves the session to SSL,
they might forget to mark the cookie secure. So when the user goes to
their
old http:// bookmark they might still leak out their session cookie and
be
On Thu, 4 Nov 2010 14:12:27 -0600
Merrill Oveson move...@gmail.com wrote:
Does it only involve wireless traffic?
I don't see why it would not work on a wired LAN run by a hub, but
haven't done the experiment.
The reason I specify hub is that one difference between a hub and a
switch is that a
It is reportedly possible to flood a switch to turn it into a hub:
http://h.ackack.net/cam-table-overflow.html
On Thu, Nov 4, 2010 at 2:36 PM, Charles Curley
charlescur...@charlescurley.com wrote:
On Thu, 4 Nov 2010 14:12:27 -0600
Merrill Oveson move...@gmail.com wrote:
Does it only
On Thu, Nov 4, 2010 at 2:36 PM, Charles Curley
charlescur...@charlescurley.com wrote:
The reason I specify hub is that one difference between a hub and a
switch is that a hub simply propagates data that comes in on one port
to all other ports. A switch only propagates an incoming packet to
On Thu, Nov 04, 2010 at 01:09:54PM -0600, Charles Curley wrote:
I haven't seen any discussion of FireSheep here.
http://www.charlescurley.com/blog/archives/2010/11/04/bringing_in_the_sheep/index.html
It's reasons like this I've always used a secure proxy when connected on
a public LAN, wifi
On 11/04/2010 06:32 PM, Aaron Toponce wrote:
And when using a public computer, I use portable tools on a thumb drive,
and always browse in private mode with my browser.
http://portableapps.com.
Simple solutions for tight security.
Well even if you run your own version of firefox, if the
On Thu, 04 Nov 2010 21:00:47 -0600
Michael Torrie torr...@gmail.com wrote:
Well even if you run your own version of firefox, if the public
computer has a keyboard logger, all bets are still off. After seeing
hacked Gmail accounts even for tech savy folks such as inhabit this
list, I've about
Don't get too confident.
http://www.thinkgeek.com/gadgets/security/c49f/
Sorry for the top-posting. This was posted from my phone.
On Nov 4, 2010 9:19 PM, Charles Curley charlescur...@charlescurley.com
wrote:
On Thu, 04 Nov 2010 21:00:47 -0600
Michael Torrie torr...@gmail.com wrote:
Well
29 matches
Mail list logo
