The batteries are 8 cell 66whrs intended for the c640(the p4 version of the c610), the screen was on it's lowest brightness level during that time and was left alone a few times so I could use the bathroom and do some other things. At the time I was running speedswitch XP w/ it set to dynamic switching. I've never done a full drain running linux, but being that it's simple speedstep I've got a feeling linux would do fine. Backtrack was running in vmware at this time, and winamp was playing(I have it set to cache the whole song to RAM to cut down on battery.)
One thing I will say though is that the laptop gets *hot*, even with AS5 on the CPU expect to get 140f idle and 160f running temperature @ 1.2ghz(less at 800mhz), and the ram(1gb of PC133) gets quite hot too.
PS: There's nothing *to* change in the bios(A12), you can set the default speeds on power or battery, and turn off speedstep all together, but if you turn off speedstep it defaults to the lowest clock possible for the CPU. While it'd gain you some time, you're better off w/ speedswitch XP or anyone of the multiple daemons for linux.
I'm not quite sure how common it(cold boot attacks) is, but I submitted a howto on remote-exploit's forums and it's going to be included in backtrack 3, so, it'll be interesting to see. The code is out there to extract encryption keys based on datastructures and stuff, but I don't currently know of any tool that'll just go for the keys from a ramdump right off the bat - but it's just a matter of time. As for suspend/hibernation, using hibernation is *BAD* because then your RAM is dumped to the disk, and it's not actually zeroed out - tools exist to extract old hibernation dumps, and they're even more dangerous than cold boot attacks because you don't even need to reboot to impliment them, just administrator privledges.
I've got news for you, you're putting way too much faith in BitLocker - it's trivially broken via memory remanence, an attach which there's a public PoC for.
You care too much about your karma - regardless of if your post is being sarcastic or not - say what you mean and mean what you say, stand behind it because we won't believe an AC anyways.
Wireless will still work at that range if you invest in decent hardware, such as two 24dBi mesh antennas, and two awus036h(500mW USB 802.11g)s, one in softap and one as a client.
They work, but not nearly as well as bunny - which is free. It's a drop in replacement for gcc, and does 9 types of fuzzing/analysis, reporting changes in behavior of the program. http://code.google.com/p/bunny-the-fuzzer/wiki/BunnyDoc
The article goes on to point out that the overall trend of waning interest in science and technology has been going on for 'almost two decades' and that the shortage is made worse by the traditional reluctance of Japanese companies to hire and use foreign workers. The US has had a similar trend for quite some time
Hello, welcome to yadda yadda tech support, we care about your call....
Here in Phoenix they've doing network upgrades and around those times the whole DOCSIS network(Phone(packetcable), TV, internet) has been down on and off for two days. My CMTS is PEORCMTK01(telnet to your gateway on 3918 and it tells you the internal hostname). I've also seen SSCTCMTK01 going down.
Actually it can, because it uses magic numbers to identify files. The beginning of every PDF file starts with "%PDF-", so all you need to do is make a recipe to find it. Recipe guide
IME flash drives don't fail catastrophically, they go bad one part at a time, and generally only writes fail, you can still read without problem. I've seen a few drives fail all together, but they stopped registering as USB devices all together.
The same recovery techniques can be used, and they need not be expensive. There's MagicRescue, and foremost that kick absolute ass. Free recovery software rawks.
That's right, each time the connection is established(and renegotiations after X amount of data or X amount of time). BT opens sockets constantly, and the key exchange is the expensive part, not the AES that comes after. Pop open top/taskmgr, and then pop open an SSH connection. Watch the CPU spike. Now consider that same spike happening constantly with multiple connections at once, happening over and over again after each chunk. Worse, you don't have control over the rate that this happens at because other peers are connecting to you, too. Easy DoS.
Overflowing computers in other countries via DDoS attacks could easily be thwarted by simply blocking incoming packets from those military bases - or all incoming requests from any US domain.
That may have been true in the 90s, but it's not anymore. With a single gigabit box I can throw out 6.9gbit/s without breaking a sweat using a DNS recursion bandwidth amplification attack(PoC on milw0rm, there's also a C port called "alice" if you go through bugtraq archives) and the quantity of syn packets that can be sent using something like juno-z is insane. With only a few machines whole countries can be dropped now-a-days.
The problem with this whole "it's encrypted so they'd have to throttle SSL too" idea is that bittorrent doesn't use SSL, and lacks a Diffie Hellman exchange. Encrypted BT traffic looks nothing like any other traffic, so it can still be picked out of the traffic flows and thrown into another QoS bracket. Using SSL for BT would also be stupid, because SSL(the key exchange in partciular) is computationally expensive. You'd peg your CPU at 100% the whole time you were grabbing your porn.
Free speech is free, until you place restrictions on it. Yes, yelling fire in a crowded theatre is a safety issue.
Yelling kike in a crowd is an issue of ignorance and maturity, both on the part of the person yelling it and the people taking offense. If you can't handle getting called a kike, fag, or a nigger, go home, grow the fuck up a bit, and try entering society once you've learned to consider the source and take things in stride.
I say let the biggots be biggots, and the rest of us can be adults.
What I'm saying is that if they wanted to take isoHunt down they'd have to do it in a Canadian court, and that he'd fight it. He's already fighting it in the US(even though isoHunt isn't within the US's jurisdiction anymore since the servers were moved), after all.
Slashdot Mirror
The batteries are 8 cell 66whrs intended for the c640(the p4 version of the c610), the screen was on it's lowest brightness level during that time and was left alone a few times so I could use the bathroom and do some other things. At the time I was running speedswitch XP w/ it set to dynamic switching. I've never done a full drain running linux, but being that it's simple speedstep I've got a feeling linux would do fine. Backtrack was running in vmware at this time, and winamp was playing(I have it set to cache the whole song to RAM to cut down on battery.)
One thing I will say though is that the laptop gets *hot*, even with AS5 on the CPU expect to get 140f idle and 160f running temperature @ 1.2ghz(less at 800mhz), and the ram(1gb of PC133) gets quite hot too.
PS: There's nothing *to* change in the bios(A12), you can set the default speeds on power or battery, and turn off speedstep all together, but if you turn off speedstep it defaults to the lowest clock possible for the CPU. While it'd gain you some time, you're better off w/ speedswitch XP or anyone of the multiple daemons for linux.
I've got a 1.2ghz p3(latitude c610) that gets 14+ hours on two 66whr batteries w/ a 1500x1050LCD, so color me unimpressed.
I'm not quite sure how common it(cold boot attacks) is, but I submitted a howto on remote-exploit's forums and it's going to be included in backtrack 3, so, it'll be interesting to see. The code is out there to extract encryption keys based on datastructures and stuff, but I don't currently know of any tool that'll just go for the keys from a ramdump right off the bat - but it's just a matter of time. As for suspend/hibernation, using hibernation is *BAD* because then your RAM is dumped to the disk, and it's not actually zeroed out - tools exist to extract old hibernation dumps, and they're even more dangerous than cold boot attacks because you don't even need to reboot to impliment them, just administrator privledges.
You don't need special hardware, just do a cold boot attack with a USB key.
http://en.wikipedia.org/wiki/Cold_boot_attack
http://tourian.jchost.net/shadow/liveusb/memoryremanence.png
http://en.wikipedia.org/wiki/Cold_boot_attack
http://tourian.jchost.net/shadow/liveusb/memoryremanence.png
Even if you're using TPM, your shit still hits RAM.
I've got news for you, you're putting way too much faith in BitLocker - it's trivially broken via memory remanence, an attach which there's a public PoC for.
http://tourian.jchost.net/shadow/liveusb/memoryremenance.png
You care too much about your karma - regardless of if your post is being sarcastic or not - say what you mean and mean what you say, stand behind it because we won't believe an AC anyways.
Publish it on milw0rm, or post it to bugtraq. It'll get fixed.
Don't forget doing SSL in your head.
Browsing with telnet again?
Wireless will still work at that range if you invest in decent hardware, such as two 24dBi mesh antennas, and two awus036h(500mW USB 802.11g)s, one in softap and one as a client.
They work, but not nearly as well as bunny - which is free. It's a drop in replacement for gcc, and does 9 types of fuzzing/analysis, reporting changes in behavior of the program.
http://code.google.com/p/bunny-the-fuzzer/wiki/BunnyDoc
Here in Phoenix they've doing network upgrades and around those times the whole DOCSIS network(Phone(packetcable), TV, internet) has been down on and off for two days. My CMTS is PEORCMTK01(telnet to your gateway on 3918 and it tells you the internal hostname). I've also seen SSCTCMTK01 going down.
I KNOW! Fucking AWPs...
Actually it can, because it uses magic numbers to identify files. The beginning of every PDF file starts with "%PDF-", so all you need to do is make a recipe to find it. Recipe guide
IME flash drives don't fail catastrophically, they go bad one part at a time, and generally only writes fail, you can still read without problem. I've seen a few drives fail all together, but they stopped registering as USB devices all together. The same recovery techniques can be used, and they need not be expensive. There's MagicRescue, and foremost that kick absolute ass. Free recovery software rawks.
That's right, each time the connection is established(and renegotiations after X amount of data or X amount of time). BT opens sockets constantly, and the key exchange is the expensive part, not the AES that comes after. Pop open top/taskmgr, and then pop open an SSH connection. Watch the CPU spike. Now consider that same spike happening constantly with multiple connections at once, happening over and over again after each chunk. Worse, you don't have control over the rate that this happens at because other peers are connecting to you, too. Easy DoS.
Rapid key exchanges can bring quad cores to their knees with ease. There's a reason there's coproccessors for SSL acceleration.
It's sorta hard to "reset" a UDP VPN, seeing as it doesn't exactly have an RST bit.
That may have been true in the 90s, but it's not anymore. With a single gigabit box I can throw out 6.9gbit/s without breaking a sweat using a DNS recursion bandwidth amplification attack(PoC on milw0rm, there's also a C port called "alice" if you go through bugtraq archives) and the quantity of syn packets that can be sent using something like juno-z is insane. With only a few machines whole countries can be dropped now-a-days.
The problem with this whole "it's encrypted so they'd have to throttle SSL too" idea is that bittorrent doesn't use SSL, and lacks a Diffie Hellman exchange. Encrypted BT traffic looks nothing like any other traffic, so it can still be picked out of the traffic flows and thrown into another QoS bracket. Using SSL for BT would also be stupid, because SSL(the key exchange in partciular) is computationally expensive. You'd peg your CPU at 100% the whole time you were grabbing your porn.
Free speech is free, until you place restrictions on it. Yes, yelling fire in a crowded theatre is a safety issue.
Yelling kike in a crowd is an issue of ignorance and maturity, both on the part of the person yelling it and the people taking offense. If you can't handle getting called a kike, fag, or a nigger, go home, grow the fuck up a bit, and try entering society once you've learned to consider the source and take things in stride.
I say let the biggots be biggots, and the rest of us can be adults.
What I'm saying is that if they wanted to take isoHunt down they'd have to do it in a Canadian court, and that he'd fight it. He's already fighting it in the US(even though isoHunt isn't within the US's jurisdiction anymore since the servers were moved), after all.