February 2010
14 posts
1 tag
Locks... not so much
I started practicing lockpicking with a basic set of lock picks. So far I’ve really just been raking and I’ve found that the C rake works best for me. I’ll eventually work up to per-pin picking but for now I happy just having success raking and getting a feel for things.
I’ve been practicing on a cheap padlock I got at a grocery store. A few minutes ago I took a try at my...
January 2010
12 posts
2 tags
Colo Cage Hunting
I love colo cages because a lot of people think they alleviate the need for cabinets. Just put up four-post racks in your cage and you’re done. The cage gives you all the physical security you need.
I was told the phrase “the cage will keep malicious people from plugging things in”. Aside from the fact that cages can’t sense intent, I don’t think it can keep anyone...
1 tag
Copying Windows Binaries
Maybe this is piracy, maybe it’s not. I have a tool installed on my computer and when new programs are installed it discovers them and pops up a lovely prompt asking if I will allow the executable to be copied to some computer somewhere. I haven’t looked into it deeply but it doesn’t seem to be aware of software licenses and whether the license for that binary allows for it to be...
1 tag
GPEN Certified
I just passed my GPEN at 94%. Wewt.
1 tag
Chinese Server
I need to get a server in China. Then if I hack something or use it as a phishing site people will just assume the big, mean, Chinese government is behind it.
I Have Comments Now
Sorry about that, Richard. I’ve wanted to have a comment system for a while but tumblr doesn’t have built-in support for it and I was just lazy. I had to switch templates or hack up the HTML and I really want nothing to do with HTML.
On Being a Bastard →
I’ve probably been kicked out of #perl by mst. I also probably deserved it.
1 tag
Most technical discussions of security are in a context with no practical constraints.
In practice you have constraints you have to work around. You have a limited budget, limited man-hours, user requirements. All of these affect the security-effort and security-usability curves.
For every security policy and tool you want to implement you have to weigh the effort and usability affects against...
2 tags
It Wasn't Me, It Was the Seeder Worm
The media cartels like to hold the user of an IP address liable for any file sharing done through that IP. So if someone breaks into your WiFi and runs bittorrent it’s your fault. To some degree I believe that it’s the responsibility of the individual to secure their network that problem is basically intractable. At any rate, you could have DMCA invoked on you for whatever happens on...
Avatar in sphincter-puckering IMAX 3D
Saw Avatar again, this time in IMAX 3D. If you haven’t seen Avatar and have access to see it in IMAX 3D (not just regular 3D or regular IMAX) I recommend doing that first instead of in a normal theater.
The 3D was pretty good. In scenes with a lot of action the 3D seemed to get fuzzy. When a scene had a tight depth of focus it kind of messed with me. I think my brain recognized the 3D and...
Spamassassin Oops →
I had this.