Re: [Full-disclosure] Erratasec Research MD5

From: coderman <coderman_at_nospam>
Date: Thu May 17 2007 - 20:57:01 GMT
To: "David Maynor" <david.a.maynor@gmail.com>

On 5/17/07, David Maynor <david.a.maynor@gmail.com>..

lol, sure dude.

> .. wrote:
>
> I've noticed a lot of people posting MD5

that's pretty lame, since even sha1 is deprecated.

speaking of which, when do i get my shiny new cipher suites with SHA2-256? IPsec is nice, but sometimes i need that TLS layer...

> ... I find it
> truly amazing that people in the security space still use wireless at all!

a vpn leaves you nothing but DoS. sadly, we're not going to see authentication in the 802.11 MAC for .. well, probably never. *sigh*

as for ring0 beacons and other driver level hijinks, these appears to have tapered off. perhaps the next major re-write of wireless driver infrastructure in the kernel(s) will open new windows of opportunity. five+ years and wireless API's still suck. wonderful!

> [ ... insert troll food here ... ]

loldongs, etc, etc.

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

This message: [ Message body ]
Next message: security_at_nospam: "[Full-disclosure] [ MDKSA-2007:105 ] - Updated fetchmail packages fix potential APOP vulnerabilities"
Previous message: OpenPKG GmbH: "[Full-disclosure] [OpenPKG-SA-2007.013] OpenPKG Security Advisory (png)"
In reply to: David Maynor: "[Full-disclosure] Erratasec Research MD5"
Next in thread: Debasis Mohanty: "Re: [Full-disclosure] Erratasec Research MD5"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]