August 2009
21 posts
1 tag
OMG! My ignorance about dreadlocks makes other... →
These are actually my friend’s dreadlocks. I shouldn’t be but I’m stunned about how bad or disinclined people are about recognizing and challenging their assumptions. If someone is doing something I don’t understand it must mean that that they are stupid, right?
I didn’t get a hair cut for six years so my hair got silly long. When I eventually got it cut I donated...
July 2009
20 posts
1 tag
Ceci n'est pas une clé
I have one of those remote keyless entry key fobs for my car, to unlock and lock the doors as I approach and leave my car.
Anyone else occasionally find yourselves not thinking and try to use it on the front door of your home?
3 tags
Jailbreaking iPhone Causes Nuclear War (ish) →
So, it should be illegal to load custom software on your iPhone because you could potentially use it to disrupt cel towers.
Isn’t it already illegal to disrupt cel towers?
2 tags
Recursion →
2 tags
Tumblr Captures the Essence of Web 2.0
For those who aren’t indoctrinated, tumblr has a feature called “reblogging”. You see a post on another tumblr user’s blog that you like. There’s a link that says reblog. Click this and boom, it’s now on your blog with a little space on the bottom for you to say lol or wtf or this is so stupid.
As I browse the directory for some of the blogs with the highest...
1 tag
“Hamburgers are not emergent phenomena”
– Me. Hopefully this clarifies things.
1 tag
1 tag
Copy-cats Deploy Trojans on Anti-sec's Fame →
An interesting tool has been seen in the wild that shares its name with one used by Anti-sec in one much ballyhooed intrusion. However instead of being the tool to help you own a box it gets you owned.
I can’t really endorse this kind of thing but it is a good reason why people need to learn security principles if they hope to put them into practice.
2 tags
CBC-MAC on the command line
openssl enc -e -aes-128-cbc -K 0123456789ABCDEF -iv 0000000000000000 < testdata | tail -c 16 | od -h
The 16 “tail -c 16” corresponds to the block size of the encryption algorithm. If you were using aes-256-cbc you’d want to say 32 instead of 16. I don’t like the “od -h” representation but hex is more common and I care to dig through and just get hex....
CSS Is Awesome →
Go buy one.
4 tags
Anti-Sec spoof threatens s'kiddie mayhem →
The problem with not giving a verifiable identity is now anyone can claim to be you and there’s no way for you to dispute the claims or actions of an impersonator.
I was thinking about these site defacements by Anti-sec and came up with what I thought could secure or destroy their credibility. If they breached a site they could leave a PGP/GnuPG public key and explain that they’re...
1 tag
Tips on Wine
I know… basically crap about wine but my friend Gordon knows quite a bit. I respect Gordon a lot so I try to learn about wine here and there. My hurdle is that I don’t drink enough to buy bottles of wine for myself and my girlfriend doesn’t drink at all.
I thought I’d share what he shared with me on how to do well as a wine newbie.
Both of you have asked me about what...
4 tags
New Technology to Make Digital Data Self-Destruct →
Apparently these researchers have never heard of copy and paste. Or screenshots. Or DRM.
This kind of “technology” scares me. People will use this technology thinking their privacy is assured because a message can’t be read after a certain time.
Once you let a piece of data out, it is out. Any attempts to get rid of it are futile.
“The Net interprets censorship as...
2 tags
New graphics card
I play WoW and like to run my settings high. I found that pretty much all the fog effects kill my frame rate. Eventually I spent about $200 on a EVGA GeForce 260 GTX 216. I cranked every setting in WoW to the max. I flew out of Dalaran over Crystalsong Forest and almost threw up. I could see everything. Normally the distance fog limits what I can see from high up but this time I could see the...
1 tag
Eternal Earth-Bound Pets →
Boarding for pets left behind by The Rapture.
1 tag
ARP Spoofing
respecting: hello i want to prevent attacks from software like cain and abel
respecting: what must i do ?
crunge: respecting: learn the attacks that tool X does then prepare appropriate defenses for those attacks
respecting: cain and abel made arp spoofing attacks
respecting: can you please give me a tool to prevent such attack?
respecting: Thanks in advance
crunge: respecting: Do you understand the nature of ARP spoofing?
respecting: Yes
respecting: i understand it
respecting: but i don’t know how can i prevent such attacks?
respecting: Can you please help me?
crunge: respecting: the solution is simple - hard code the ARP entries for each device in each device on the network
crunge: respecting: rather, get rid of ARP by hard-coding the IP-MAC relationships
crunge: I didn’t want to insult you by asserting that you don’t understand ARP and ARP spoofing, but I guess I’m content insulting you with an absurd resolution
crunge: To my knowledge there isn’t a good way to prevent ARP spoofing with software. Some switches will allow you to specify which IPs should be seen on each port
crunge: what you can do is get a tool like arpwatch that will track ARP replies and alert you when an IP-MAC relationship changes
3 tags
Down Atheist, Down!
I think I’m right so you’re stupid
In terms of religious beliefs I think of myself as an agnostic working under atheist assumptions. I’m an agnostic because I don’t have the chutzpah to assert that small, short-sighted, fallible me somehow knows that there can’t be something powerful enough to escape my notice. Maybe God just manifests himself as neutrinos which easily escape my notice. I also...
3 tags
Hello World JAPH
This is my first JAPH although it prints hello world! instead. I wrote it for this because I like challenges.
This type of JAPH has probably already been done but it was fun to do.
#!/usr/bin/perl
use warnings;
use strict;
open my $fh,';
$self =~ s/[^a-z !]//g;
print map { substr($self,$_,1) } qw(42 8 62 10 55 26 15 33 9 -46 47 0);
I got Win #44.
4 tags
Passive-Aggressive SSIDs
IllBroadcastOnMyAPWhatImScaredToTellYouInPerson
I’ve seen a number of these on time waster blogs like Digg and reddit. Unfortunately this is the only one I had the presence of mind to save a link for.
How lame is that? Your neighbors are loud on their balcony. Your neighbors are loud having sex. You know what they’ll do if they see this? They will be louder because all you’ll do is change...