Berkeley CSUA MOTD:2001:August:18 Saturday <Friday, Sunday>
Berkeley CSUA MOTD
2001/8/18 [Computer/Networking] UID:22161 Activity:low
8.17    We implemented an attack against WEP, the link-layer security
        protocol for 802.11 networks. The attack was described in a
        recent paper by Fluhrer, Mantin, and Shamir. With our
        implementation, and permission of the network administrator, we
        were able to recover the 128 bit secret key used in a production
        network, with a passive attack. The WEP standard uses RC4 IVs
        improperly, and the attack exploits this design failure. This
        paper describes the attack, how we implemented it, and some
        optimizations to make the attack more efficient. We conclude that
        802.11 WEP is totally insecure, and we provide some
        - thoughts?
        \_ I found that original paper a couple of weeks ago.  My thought
           is the obvious one: WEP is completely insecure, and to a
           passive attack.  - mikeym
        \_ My thought is that the pheds will probably throw you in jail
           for violating the DMCA.
2001/8/18 [Computer/SW/Security, Computer/SW/WWW/Server] UID:22162 Activity:kinda low
8/17    On 18 July, just as Code Red was starting to scan for vulnerable
        web servers, a CSX train carrying hazardous materials was
        derailed in the Howard Street tunnel in Baltimore, US.
        The derailment and subsequent fire severed cables running through
        the tunnel used by seven of the biggest net service providers to
        swap data.
        These companies started reporting disruption to the usual running
        of the net just as Code Red was hitting its stride, leading many
        people to assume that the worm was doing the damage.
        Analysis by Keynote has shown that even at its height, Code Red
        posed no threat to the running of the net.
        - anyone else hear about the fire?
        \_ yes
        \_ It was in the news on TV.  But I thought Code Red was later than the
           train accident.
           \_ What they DIDNT SAY, was that the train had a WBEM system,
              hosted under IIS, which caused the derailment once the
              web control interface crashed.
              \_ you gotta be kidding.
                 \_ muah-hahahahahaha.... the sad thing is, it's plausible, eh?
        \_ It was noted right away in the RISKS digest (aka comp.risks)
2001/8/18 [Computer/SW/Editors/Emacs, Computer/SW/Languages/Misc] UID:22163 Activity:low
8/17    is there a way in xemacs to pretty-format the source file (
        fixing all indentation) in batch mode rather than tabbing
        every line in the file?
        \_ How about /usr/bin/indent?
        \_ Try indent-region
2001/8/18 [Uncategorized] UID:22164 Activity:nil
8/17    is livermore hiring recently graduated ME's?
2001/8/18 [Academia/GradSchool] UID:22165 Activity:very high
8/17    Why does MS Word automatically default to 1.5" margins?
        Do they readily assume that the majority of their customers
        are lazy college students who don't like to write?
        \_ I have fat fingers.  Without the extra space the sweat from
           my hands will smudge the ink everywhere.
           my hands would smudge the ink everywhere.
        \_ and 12 pt fonts are huuuuge...
2001/8/18 [Uncategorized] UID:22166 Activity:nil
8/17    nweaver, when are you graduating?
2001/8/18 [Politics/Domestic/California] UID:22167 Activity:nil
8/18    Waaaa, waaa, waaa.  Its all Bush's (and Texas') fault.
Berkeley CSUA MOTD:2001:August:18 Saturday <Friday, Sunday>