ccc.de · Domains · Slashdot Mirror

Re:Dual stack failed? by Anonymous Coward · 2010-12-27 04:34 · Score: 2, Informative · on After IPv4, How Will the Internet Function?

IPv6 is still not nearly as "polished" as IPv4. Talk at the 27th Chaos Communication Congress in Berlin: "Recent advances in IPv6 insecurities" in about 4 hours. The talk is in English, a live stream available.

On 29th this will be shown at the congress 27C3 by Gunstick · 2010-12-27 04:19 · Score: 1 · on UK Banks Attempt To Censor Academic Publication

Dr Steven Murdoch (Cambridge) presents: "Chip and PIN is Broken" Vulnerabilities in the EMV Protocol
https://events.ccc.de/congress/2010/Fahrplan/events/4211.en.html

Have fun take-downing them :-)

Re:Ross Anderson is at Cambridge by Anonymous Coward · 2010-12-25 05:40 · Score: 0 · on UK Banks Attempt To Censor Academic Publication

Steven J. Murdoch is going to be at the 27th Chaos Communication Congress which will be held in Berlin from 27th to 30th of December 2010. The linked page has links to a BBC news video and the details of the attack. Streams and video archives of the talks at 27C3 will be available here.

Re:Ross Anderson is at Cambridge by Anonymous Coward · 2010-12-25 05:40 · Score: 0 · on UK Banks Attempt To Censor Academic Publication

Steven J. Murdoch is going to be at the 27th Chaos Communication Congress which will be held in Berlin from 27th to 30th of December 2010. The linked page has links to a BBC news video and the details of the attack. Streams and video archives of the talks at 27C3 will be available here.

Re:Let me know when the price drops by Anonymous Coward · 2010-08-27 00:58 · Score: 0 · on Robot Swarm Control On Microsoft's Surface

Build one yourself for a small fraction of the price. It's been done.

Or go the commercial route. Who needs micros~1?

Re:Microwave? by Shoe+Puppet · 2010-08-22 07:47 · Score: 1 · on Germany To Roll Out ID Cards With Embedded RFID

You'll probably burn the card and destroy the microwave. There's a gadget called "RFID zapper", though, which destroys RFID tags leaving the card or passport intact: Link

Info about Opentracker by Anonymous Coward · 2010-05-21 21:21 · Score: 0 · on Swedish Court Rules ISP Must Reveal OpenBitTorrent Operator's Identity

Opentracker is the software behind many public trackers. The people behind this software project gave a talk at the 24th Chaos Communication Congress in 2007. There is a video recording of this talk (in German). (The talk is titled "Tracker fahrn". It's a play on words: "Trecker" is pronounced like "tracker" and means "tractor", hence the picture.)

In the talk they explained the basics of the Bittorrent protocol, how their project came to be and what they learned writing and running a high throughput open tracker (denis.stalker.h3q.com). Comments about their experience with XS4ALL at 33 minutes - hilarious; how the PirateBay tracker switched to Opentracker at 43 minutes; but watch the whole thing.

For Extra Credit... by UnknownIdiot · 2010-04-20 00:17 · Score: 1 · on Palm WebOS Hacked Via SMS Messages

See the 26th Chaos Communications Congress: Fuzzing the Phone in your Phone. http://events.ccc.de/congress/2009/Fahrplan/events/3507.en.html

Re:But the fact is - they are dumb pipes by gmthor · 2010-04-12 21:42 · Score: 1 · on In EU, Google Accused of YouTube "Free Ride"

You should investigate further since this kind of throttling is probably illegal in the European Union (read European Union \subset EU). In germany, the Chaos Computer Club would be happy to investigate this. You probably have a similar association, too.

Reason... by g4b · 2010-04-12 04:23 · Score: 1 · on Adobe Flash CS5 Exports Animations To HTML5 Canvas

Maybe it is because of Flashs superior internal design or because of Flash's superior Garbage collection...

All hail the Chaos Computer Club by Denial93 · 2010-03-02 02:11 · Score: 5, Informative · on German Data Retention Law Ruled Unconstitutional

Although this ruling is what us IT guys would expect from any reasonable court, the fact of the matter is that judges know shit. The Chaos Computer Club worked their asses off providing expertise to the court, while also mobilizing the German IT scene and putting out pressure on opposing (governmental) parties. This is their success and I salute them. Guess I should get around to finally apply for membership myself...

Talk at 26C3 by user1003 · 2010-02-12 03:32 · Score: 2, Informative · on Wikileaks and Iceland MPs Propose Journalism Haven

There has been a very interesting talk about this (and other aspects of WikiLeaks) at 26C3.

Link to the complete (english) talk at 26C3 by gmthor · 2010-01-14 22:58 · Score: 3, Informative · on Airport Access IDs Hacked In Germany

If you want to know the insights http://media.ccc.de/browse/congress/2009/26c3-3709-en-legic_prime_obscurity_in_depth.html

You guys are missing the point. by SteelRat · 2010-01-12 18:41 · Score: 2, Informative · on The Economy of Wikileaks

I could explain it, but why not watch their presentation that they gave a couple weeks ago at CCC and actually understand what they're talking about firsthand.
Presentation page, big mp4 video, torrent.

Re:GSM Talk Video by Anonymous Coward · 2009-12-29 06:42 · Score: 0 · on GSM Decryption Published

Good-quality copies of the talks are now available at the web site. Look for 26c3-3654-en-gsm_srsly.mp4.

Links to Karsten's presentation and project by klapaucjusz · 2009-12-29 01:47 · Score: 1 · on GSM Decryption Published

Slides from Karsten's presentation at the CCC.

The A5/1 cracking project.

Re:TFA is incomplete/incorrect. by hughk · 2009-12-29 01:19 · Score: 2, Informative · on GSM Decryption Published

The slides are here and A5/1 and A5/3 are encryption algorithms.

Re:Go the whole hog... by mario_grgic · 2009-11-28 03:27 · Score: 1 · on OpenSolaris Or FreeBSD?

Except Mac OS X kernel is not a microkernel. The following talk given a few years back, even though slightly out of date when it comes to discussing 64 bit support in the kernel, is still relevant

http://chaosradio.ccc.de/24c3_m4v_2303.html

GSM Security? There isn't any. by SgtChaireBourne · 2009-08-27 02:03 · Score: 2, Interesting · on Nokia Launches Pay-By-Phone Service

GSM only authenticates one way, not both, so it is almost ideal setup for man in the middle attacks. One of the presentations at last year's CCC, the 25C3 covered this, but you can find plenty of older and newer material on it elsewhere.

Any GSM phone-based payment system has some big challenges. GPRS could be better, since you can then run something behind SSL or SSH. However, even then, when it comes to money, the designers must design the system on the assumption that the network is insecure, perhaps even the endpoints.

Re:I disagree with the first paragraph! by aaaaaaargh! · 2009-08-18 05:00 · Score: 1 · on The Problems With Porting Games

Sure, at least to some extent. See this paper for more information. Why?

Re:OpenBTS? by zeromorph · 2009-08-16 19:24 · Score: 3, Interesting · on Open Source GSM Network At Dutch Hacker Convention

Because they are running Siemens base stations and for that Harald started OpenBSC. Both projects are under GPL and are in close contact as far as I know.

Harald had a talk at 25C3 about their project, and were running a small setup there in the basement. AFAIK, because all frequencies are sold in Germany - there should be at least one for independent testing, but they sold all to the telcos - maybe that's why they are running the larger test in the Netherlands now.

Re:World improves by zeromorph · 2009-07-30 00:05 · Score: 1 · on UK's FSA Finds No Health Benefits To Organic Food

Ok, I'll bite.

Well considering they were the first to genetically modify plants, you can stop wondering.

This is incorrect, first you are talking about commercial uses, and not genetically modification in general. Second, Calgene were the first to commercially produce genetically modified food (Flavr Savr). Later they were bought by Monsanto, which is not that a big contribution by Monsanto.

However, even if that particular company had never done a single beneficial thing for anyone, your argument is fallacious.

Not much of a argument you bring here. I accept that one could argue that some genetically modified plants have some benefits overall, but I personally have a hard time to see them, after removing the whole PR-bullshit that surrounds them. I think there are good arguments that they are in the end mostly only beneficial to the companies that sell them. This is however open for discussion.

A20 Gate by Vario · 2009-06-15 03:29 · Score: 1 · on Fifteen Classic PC Design Mistakes

A dirty trick that is still around in even the newest X86 processors and causing problems for hardware engineers and has security implications. The first xbox was hacked partially because of the A20 gate (pdf description of vulnerability) and maybe Intel will stop using the A20 gate in the upcoming Nehalem generation.

Make a FreedomStick by nonsequitor · 2009-06-14 07:12 · Score: 5, Informative · on Iran Moves To End "Facebook Revolution"

The Chaos Computer Club made a "FreedomStick" for journalists traveling to China to cover the Olympics. It includes software that automatically uses firefox+tor etc.. More Info Here: http://chinesewall.ccc.de/index-en.html

Re:HACKING by AceJohnny · 2009-06-08 19:44 · Score: 4, Informative · on Paris Hosts the Second Hacker Space Festival

Actually, I think we're seeing a bit of a comeback. Hackerspaces are mushrooming around the world. (I like to believe the talk at the 24th Chaos Computer Congress in December 2007, Building a Hacker Space, helped provide impetus to this movement.) I also believe DIY culture is on the rise again, as spearheaded by Make.

So I'd say it's not so much that hacking is dying off rather than being handed over to the new generation, which has its own interests.

That's called a hypervisor by Anonymous Coward · 2009-05-14 12:21 · Score: 0 · on Phoenix BIOSOS?

If you have a board which is supported by Coreboot (formerly known as LinuxBIOS), you can put your own Linux kernel and initial ram disk into the flash, or a variety of boot loaders. The possibility of a hypervisor in the flash chip and lots of technical details are mentioned in this presentation by Peter Stuge at 25c3 (25th Chaos Communication Congress). Includes a demo of booting from power on to a shell in 5 seconds:

http://ftp.ccc.de/congress/25c3/video_h264_720x576/25c3-2970-en-coreboot_beyond_the_final_frontier.mp4

and security? by Adam+Hazzlebank · 2009-02-18 11:13 · Score: 2, Interesting · on 5 Powerline Networking Devices Reviewed

Some people might think these are attractive because the signal can't be intercepted as easily as wifi. However Powerlinecommunications hacking seems to be moving on nicely http://events.ccc.de/congress/2008/Fahrplan/events/2901.en.html . My understanding is that it's sometimes possible to pick up signal leaking from other users in the building.

Re:It's a plot! by nabsltd · 2009-01-16 04:07 · Score: 3, Insightful · on Feds Plot Massive Internet Router Security Upgrade

Not too long ago, this MD5 crack allowed a trusted SSL CA cert to be created.

Although it's not "in the wild", the listed steps are such that pretty much anybody can do the same thing today. Plus, the actual hack required using real, live CA servers, and not just lab systems.

Re:All your fingerprints by V+for+Vendetta · 2009-01-15 02:26 · Score: 1 · on Biometric Passports Agreed To In EU

Our Cheney is Schäuble, by the way. Mix Cheney's mind with that of some Gestapo-leader with an obsession for control, add a wheelchair, some hair and an evil look, remove some fat, and you got him. All he needs is a fluffy cat and an iron glove (or better a SS-Totenkopfstaffel glove).

Well, a least SSchäuble made his finger print available to the public, so you and I can use it in our biometric passport. Just follow these simple steps to personalize your biometric passport with the finger prints of your political hero.

Re:All your fingerprints by V+for+Vendetta · 2009-01-15 02:26 · Score: 1 · on Biometric Passports Agreed To In EU

Our Cheney is Schäuble, by the way. Mix Cheney's mind with that of some Gestapo-leader with an obsession for control, add a wheelchair, some hair and an evil look, remove some fat, and you got him. All he needs is a fluffy cat and an iron glove (or better a SS-Totenkopfstaffel glove).

Well, a least SSchäuble made his finger print available to the public, so you and I can use it in our biometric passport. Just follow these simple steps to personalize your biometric passport with the finger prints of your political hero.

FU-Berlin by stsp · 2008-12-28 05:04 · Score: 1 · on Study Abroad For Computer Science Majors?

I studied CS at FU-Berlin, the program can be quite demanding, but it's very good. Some courses are taught in English, and in those courses you can write the exams in either German or English. If you're just going to spend a semester abroad, you may be able to get away with taking all your courses in English. You'll inevitably need to learn some German though, if only for social life (even though many people are fluent in English), but the effort may well be worth it. There is also a welcoming Linux geek society at the faculty. Oh, and Berlin is a very nice city. There's the typical tourist attractions, but also a large and very active hacking community which naturally provides lots of entertainment for CS students (projects such as the CCC, freifunk, C-base, bootlab). Beware -- many students have been known to end up stranded in these communities. Check here for information about application procedures for students from abroad.

Lecture at the 24C3 by Anonymous Coward · 2008-12-25 08:57 · Score: 3, Interesting · on Amateurs Are Trying Genetic Engineering At Home

At the 24th Chaos Communication Congress there was a lecture about this topic: Programming DNA http://events.ccc.de/congress/2007/Fahrplan/events/2329.en.html (links to torrents on the page).

Re:Groan - you didn't recognise the joke by Thaelon · 2008-12-09 05:09 · Score: 2, Insightful · on 21 Million German Bank Accounts For Sale

Biometrics are foolish.

Today, if someone gets your credit card information, they can make charges in your name. To resolve this, you inform your credit card company that someone is fraudulently using you card. Typically they'll just nix the charges and issue you a new card with a new number.

Throw in biometrics:
Someone gets your biometric information, they can make charges in your name. To resolve this, you inform your biometric-enhanced credit card company company that someone is fraudulently using you biometric information. They just nix the charges and issue you new...fingerprints?

So biometrics do go a long way toward fraud prevention. However, if it actually does occur, you're utterly and permanently fucked.

Expand your horizons by sp332 · 2008-10-22 00:19 · Score: 3, Informative · on Finding Better Tech Broadcasts?

If you're looking for in-depth tech, you can't beat the video archives of technical conferences. Sure, there are some boring presentations, but you can usually tell the boring ones in the first few minutes and go try another. My favorite site is the Chaos Communication Congress, which has everything from presentations from the Mifare hackers, to technical improvements to nmap, to geek culture presentations. Great stuff in there.

Citizen Engineer only has one episode out so far, and looks like it's going to be mostly hardhacking, but it's definitely not dumbed-down.

On the other hand, if you're looking for a serious discussion on the future of tech with a stronger grip on reality than Popular Science, try MIT's LabCast videos, with footage of working prototypes.