November 13, 2008
I just read some news: a “rogue” ISP is taken down.
This ISP is McColo. Looks like it was helping too much spammers, the government and security researchers are so angry that they decide to knock it offline.
In the report there is a chart showing the amount of spam everyday. One can easily see that when the time the ISP was taken down, the amount decreased significantly.
Before I saw this I thought there is not too much incentive for an ISP to help hampering spams. It requires significant resources and can’t see immediate return. Now I see that right things must be done, always.
Leave a Comment » | 
security | Tagged: computer, computer science, IT, security, technology | 
Permalink
Posted by kindloaf
November 9, 2008
This paper by David A. Wheeler is quite interesting:
http://www.dwheeler.com/trusting-trust/
It talks a method to counter a possible malicious trojan-horse to be planted in a compiler, which was presented by Ken Thompson in his ACM Turing Award acceptance speech. This trojan-horse is very special that by examining the source code you find no clue of any malicious code.
The idea is very cute!
Leave a Comment » | 
security | Tagged: computer science, security, technology | 
Permalink
Posted by kindloaf
October 28, 2008
I read about the famous .rhosts vulnerability from a research paper recently. The .rhosts vulnerability is due to the interaction between rlogin and ftp. Some people believed it’s not a “bug”, rather it’s due to the different assumptions made by rlogin and ftp.
I was shocked by the trust assumptions of rlogin. It trusts traffic from an admin port (port number less than 1024) of another host without any authentication. It shouldn’t be very surprising though. The rlogin was designed at a time when functionality is of the paramount concern. For example, telnet/ftp sends password unencrypted over the network.
As another example of the “functionality first” principle, we can have a look at the Shatter Attack. Similar to the .rhosts vulnerability, Shatter Attacker is due to the lack of authentication of windows message passing system.
The security impacts of the design flaws are serious. When the systems get popular and the mechanisms mingled with other systems, it’s difficult to switch. Operational costs are high since we already have a lot of legacy systems. That’s why industry people sometimes prefer a patch to a prevalent flawed design than a secure design built from scratch.
Leave a Comment » | 
security | Tagged: security | 
Permalink
Posted by kindloaf
