Slashdot Mirror

← Back to Users

User: khandom08

khandom08's activity in the archive.

Stories
0
Comments
80
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 80

  1. What could possibly go wrong? on Microsoft Adds Support For JavaScript Functions in Excel (bleepingcomputer.com) · · Score: 5, Funny

    ....

  2. Re:They should do like Android... on Windows 10's Next Update Will Be Called 'Spring Creators Update' (theverge.com) · · Score: 2

    ....shit sandwich...

  3. Re:Simple solution on Malware Exploiting Spectre, Meltdown CPU Flaws Emerges (securityweek.com) · · Score: 1

    And no - I do not use a software wallet to store passwords. I just keep them stored in a safe place without any connection to my computer.

    https://vbtelco.com/wp-content...

  4. Re:How do you know? on Postcard From Pyongyang: The Airport Now Has Wi-Fi, Sort of (apnews.com) · · Score: 1

    Well done sir!

  5. Re: Good news on Web Trackers Exploit Flaw In Browser Login Managers To Steal Usernames (bleepingcomputer.com) · · Score: 1

    Indeed it does :)

  6. Re:The WHO recognizes excessive gaming disorder on The WHO May Recognize Excessive Video Gaming As Mental Health Disorder (cbsnews.com) · · Score: 1

    I think a "Tommy" reference would have been more suitable here.

  7. Re:Counter with honeypots on North Korean Hackers Are Targeting US Defense Contractors (wpengine.com) · · Score: 1

    ...who probably believes that Trump has the power to press the nuclear button out of personal pique.

    He does. Frightening thought now aint it?

  8. Re:Good morning, Mr. Phelps on Hackers Say They've Broken Face ID a Week After iPhone X Release (wired.com) · · Score: 1

    Wish I had mod points today :)

  9. Re:How serious is this? How exploitable is it? on WPA2 Security Flaw Puts Almost Every Wi-Fi Device at Risk of Hijack, Eavesdropping (zdnet.com) · · Score: 1

    According to Vanhoef, when using WPA-TKIP or GCMP for encryption the bad actor can decrypt, forge and inject packets.

  10. Re:Going back to WEP on WPA2 Security Flaw Puts Almost Every Wi-Fi Device at Risk of Hijack, Eavesdropping (zdnet.com) · · Score: 1

    Right and with tools like kismet/or whatever they're using now, it's rather easy to determine which AP you will attack based upon protocol.

  11. Re:How serious is this? How exploitable is it? on WPA2 Security Flaw Puts Almost Every Wi-Fi Device at Risk of Hijack, Eavesdropping (zdnet.com) · · Score: 5, Informative

    No it is an attack on both. Though it appears that patched clients would be safe while connected to an upatched AP.

  12. Re:How serious is this? How exploitable is it? on WPA2 Security Flaw Puts Almost Every Wi-Fi Device at Risk of Hijack, Eavesdropping (zdnet.com) · · Score: 2

    Can anyone shed any light on how serious this actually is? How easy is it to exploit this?

    I don't want some theoretical answer, either. I want to know in very practical terms.

    Is this as bad as the "Shellshock" bash bug and the "Heartbleed" OpenSSL bug were, where systems were being compromised within hours of these bugs becoming widely known?

    From the disclosure:

    When a client joins a network, it executes the 4-way handshake to negotiate a fresh encryption key. It will install this key after receiving message 3 of the 4-way handshake. Once the key is installed, it will be used to encrypt normal data frames using an encryption protocol. However, because messages may be lost or dropped, the Access Point (AP) will retransmit message 3 if it did not receive an appropriate response as acknowledgment. As a result, the client may receive message 3 multiple times. Each time it receives this message, it will reinstall the same encryption key, and thereby reset the incremental transmit packet number (nonce) and receive replay counter used by the encryption protocol. We show that an attacker can force these nonce resets by collecting and replaying retransmissions of message 3 of the 4-way handshake. By forcing nonce reuse in this manner, the encryption protocol can be attacked, e.g., packets can be replayed, decrypted, and/or forged. The same technique can also be used to attack the group key, PeerKey, TDLS, and fast BSS transition handshake.

  13. Finally! on WPA2 Security Flaw Puts Almost Every Wi-Fi Device at Risk of Hijack, Eavesdropping (zdnet.com) · · Score: 5, Informative

    Public announcement from Mathy Vanhoef is https://www.krackattacks.com/ and his research paper can be found https://papers.mathyvanhoef.co....

  14. Re:Can you be more specific? on North Korean Hackers Stole U.S.-South Korean Military Plans, Lawmaker Says (nytimes.com) · · Score: 1

    BRAVO! +1 if I had mod points left.

  15. Re:FTFY? on Windows 10 Update Removes Windows Media Player (betanews.com) · · Score: 2

    While I agree with the +4 moderation, I feel insightful to be more accurate than "Funny"

  16. Re:not from my view, it wasn't. on RIP AIM: AOL Instant Messenger Dies in December (usatoday.com) · · Score: 1

    Ah yes and the eggdrops in our channel would immediately kick-ban any @aol.com users - All Only Lamers. Fun times.

  17. Next Year.. on Ask Slashdot: Whatever Happened To the 'Year of Linux on Desktop'? · · Score: 2

    ...will be the year of Linux on the desktop. W8 4 it!

  18. Re: Given this track record of revenue decline.. on IBM Now Has More Employees In India Than In the US (newsindiatimes.com) · · Score: 1

    While I do agree with your sentiment, I have to admit that I take issue with your use of the expression

    ..the definition of insanity doing the same thing over and over and expecting a different result?

    . Every time I hear that I cringe.

    https://www.psychologytoday.co...
    To be clear, insanity is a legal term pertaining to a defendant's ability to determine right from wrong when a crime is committed. Here's the first sentence of law.com's lengthy definition:

    Insanity. n. mental illness of such a severe nature that a person cannot distinguish fantasy from reality, cannot conduct her/his affairs due to psychosis, or is subject to uncontrollable impulsive behavior.

  19. Re: Too bad.... on Democrats Ask FEC To Create New Rules To Keep Foreign Influence Off Social Media Ads (thehill.com) · · Score: 1

    Gloria, I too know what it feels like to be thirsty. I too have had a dry mouth.

  20. Re:Can it clean it's own malware though? on Avast's CCleaner Free Windows Application Infected With Malware (bleepingcomputer.com) · · Score: 1

    .... whoever wrote the original submission and whoever didn't bother to check facts before posting.

    You must be new here.

  21. Re:Who signed off on this ... on Sean Spicer Resigns as White House Press Secretary After Objecting To Scaramucci Hire (cnbc.com) · · Score: 1

    Trump says he's for jobs and then shortens SNL's Melissa McCarthy's set list

    Oh you gonna take me home tonight

    Oh down beside that red fire light

    Oh you gonna let it all hang out

    Fat-bottomed girls you make the rocking world go round

  22. Re:non-remarkable non-LTS on Ubuntu 16.10 Reaches End of Life (softpedia.com) · · Score: 1

    not sure what this is using as pager, is this something built in?

    It uses less. Type 'h' in the terminal and you will see the help screen entitled " SUMMARY OF LESS COMMANDS"

  23. Re: Easy to prevent via patches/workarounds on Windows XP PCs Infected By WannaCry Can Be Decrypted Without Paying Ransom (arstechnica.com) · · Score: 1

    Mod parent up. This is not a "normal" APK rant.

  24. Re: Article is pretty light on details on Stephen Hawking: We Might Have 1,000 Years Left on Earth (usatoday.com) · · Score: 1

    Repealed? Or perhaps correctly interpreted.

  25. Re: Article is pretty light on details on Stephen Hawking: We Might Have 1,000 Years Left on Earth (usatoday.com) · · Score: 1

    As an American I approve OP's comment.