The tl;dr version is that Adobe is going to start pushing for ebook vendors to provide support for the new DRM in March, and when July rolls Adobe is going to force the ebook vendors to stop supporting the older DRM. (Hadrien Gardeur, Paul Durrant, and Martyn Daniels concur on this interpretation.)
This means that any app or device which still uses the older Adobe DRM will be cut off.
via Adobe to Require New Epub DRM in July, Expects to Abandon Existing Users – The Digital Reader.
All of the exploits exploit the same vulnerability and all are unpacked SWF files. All have identical actionscript code, which performs an operating system version check. The exploits only work under the following Windows versions: XP, Vista, 2003 R2, 2003, 7, 7×64, 2008 R2, 2008, 8, 8×64. Some of the samples also have a check in place which makes the exploits terminate under Windows 8.1 and 8.1 x64.
Senate Bill 304 would prohibit cities and counties from building public broadband networks. The Commerce Committee, which Lynn chairs, was scheduled to have a hearing Tuesday, but Lynn released a statement that hearings have been postponed indefinitely.
via Hearings on community broadband services bill postponed | Wichita Eagle.
The regular install on a Raspberry Pi is NOOBS (new out-of-box software) and contains several pre-packaged operating systems. However for the purpose of our MITM device we’ll be using a different Linux distro for our Pi: PwnPi. PwnPi is a distribution of the Raspbian OS that contains many pre-installed packages for security and penetration testing which is naturally right up our alley. So, go ahead and download PwnPi. Once it’s downloaded we’ll need to load it onto our SD card. First, format your SD card using the SD card formatter from the SD association. If the “size” value shown in the formatter is less than the size of your card, be sure to choose “format size adjustment” in the card.
via Setting up a man-in-the-middle device with Raspberry Pi, Part 1 | jeffq, published.
The Federal Communications Commission unanimously voted in favor of trials, in which telecommunications companies would test switching telephone services from existing circuit-switch technology to an alternative Internet protocol-based one to see how the change may affect consumers.
via U.S. seeks trials to test transition to digital phone networks | Reuters.
Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that will run virtually anywhere.
Docker containers can encapsulate any payload, and will run consistently on and between virtually any server. The same container that a developer builds and tests on a laptop will run at scale, in production*, on VMs, bare-metal servers, OpenStack clusters, public instances, or combinations of the above.
Common use cases for Docker include:
- Automating the packaging and deployment of applications
- Creation of lightweight, private PAAS environments
- Automated testing and continuous integration/deployment
- Deploying and scaling web apps, databases and backend services
Experts say that probably included many Canadians whose smartphone and laptop signals were intercepted without their knowledge as they passed through the terminal.
via CSEC used airport Wi-Fi to track Canadian travellers: Edward Snowden documents – Politics – CBC News.
The above statement is misleading. A smartphone does not have signals that can be “intercepted,” a smartphone actively seeks out and asks for an IP address so it can check in wherever some app wants to check in. A lot of apps want to phone home and have access to a device’s network. Smartphones are always active participants in a network. The user of a smartphone has chosen to leave wifi active which means that user *wants* his device to scan for and connect to available bandwidth resources. This scanning is a feature not a bug.
The document shows the federal intelligence agency was then able to track the travellers for a week or more as they — and their wireless devices — showed up in other Wi-Fi “hot spots” in cities across Canada and even at U.S. airports.
They simply store and key off the device ID or MAC address. Every device has a unique MAC address, the layer 2 address used by local routers in the final leg of a route to send packets to the right device. This address does not leave the local subnet unless through surreptitious means like a malicious app.
This kind of sweep probably captures browsing metadata all keyed by device id. Not sure how useful any of that data will be to anyone. End to end encryption using SSL can protect content of a message data but not metadata, the where and how long one communicates. This kind of metadata could be useful nuggets in corporate espionage for all kinds of reasons. If you’re just using the open wifi at the airport to pass time none of this matters as long as they’re not attempting Man In The Middle attacks or 0-day exploits against you.
If the idea of a networked security camera that you can remotely view and receive alerts from appeals to you but the $$$ of a commercial model does not, read on as we show you how to turn older generation Android phones into sophisticated security cameras.
via How to Turn An Old Android Phone into a Networked Security Camera.
“Decoys and deception are really underexploited tools in fundamental computer security,” Juels says. Together with Thomas Ristenpart of the University of Wisconsin, he has developed a new encryption system with a devious streak. It gives encrypted data an additional layer of protection by serving up fake data in response to every incorrect guess of the password or encryption key. If the attacker does eventually guess correctly, the real data should be lost amongst the crowd of spoof data.
via “Honey Encryption” Could Trick Criminals with Spoof Data | MIT Technology Review.
I‘ve 10Mbps server port dedicated to our small business server. The server also act as a backup DNS server and I’d like to slow down outbound traffic on port 80. How do I limit bandwidth allocation to http service 5Mbps (burst to 8Mbps) at peak times so that DNS and other service will not go down due to heavy activity under Linux operating systems?
You need use the tc command which can slow down traffic for given port and services on servers and it is called traffic shaping:
via tc: Linux HTTP Outgoing Traffic Shaping (Port 80 Traffic Shaping).