Tag Archives: security

View a GPG/PGP key without importing it.

Sometimes I want to view a GPG/PGP public key, but I don’t want to import it into my key ring, so here’s how to just view it: gpg –with-fingerprint schwer.asc

Posted in General, work | Tagged , , , | Leave a comment

Know your Enemy: Tracking Botnets

Know your Enemy: Tracking Botnets “Honeypots are a well known technique for discovering the tools, tactics, and motives of attackers. In this paper we look at a special kind of threat: the individuals and organizations who run botnets. A botnet … Continue reading

Posted in General, work | Tagged , | Leave a comment

T-Mobile Subscribers beware.

Full disclosure of T-Mobile flaw (Simple to fix never fixed) “Late last year I was in contact with T-Mobile’s CSO because of a major flaw in their voicemail platform. As of early February 2005, it was still vulnerable. Using my … Continue reading

Tagged , | Leave a comment

SHA-1 Broken and GnuPG (GPG)

As noted on slashdot ([1] , [2]) earlier this week; famed cryptologist Bruce Schneier noted in his blog entry that the hashing algorithm SHA-1 had been successfully broken. While the new advances against SHA-1 are computationally feasible they are still … Continue reading

Posted in General, work | Tagged , , , , , | 6 Comments

Locking down an SSH server

A friend of mine recently had his web server cracked, assumedly through an OpenSSH exploit. So I figured it was a good time to jot down a few of the tips and tricks I have found over the years for … Continue reading

Tagged | 2 Comments

NSA Interview

Here is an interesting (albeit lengthy) paper detailing one persons experience interviewing for a job at the NSA. http://www.fas.org/irp/eprint/nsa-interview.pdf I saw this in December’s crypto-gram.

Tagged , | Leave a comment