[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Erratasec Research MD5

To: "David Maynor" <david.a.maynor@xxxxxxxxx>
Subject: Re: [Full-disclosure] Erratasec Research MD5
From: coderman <coderman@xxxxxxxxx>
Date: Thu, 17 May 2007 13:57:01 -0700

On 5/17/07, David Maynor <david.a.maynor@xxxxxxxxx>..

lol, sure dude.

> .. wrote:
>
> I've noticed a lot of people posting MD5

that's pretty lame, since even sha1 is deprecated.

speaking of which, when do i get my shiny new cipher suites with
SHA2-256?  IPsec is nice, but sometimes i need that TLS layer...

> ... I find it
> truly amazing that people in the security space still use wireless at all!

a vpn leaves you nothing but DoS.  sadly, we're not going to see
authentication in the 802.11 MAC for .. well, probably never.  *sigh*

as for ring0 beacons and other driver level hijinks, these appears to
have tapered off.  perhaps the next major re-write of wireless driver
infrastructure in the kernel(s) will open new windows of opportunity.
five+ years and wireless API's still suck.  wonderful!

> [ ... insert troll food here ... ]

loldongs, etc, etc.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Erratasec Research MD5
  - From: David Maynor

Prev by Date: [Full-disclosure] [OpenPKG-SA-2007.013] OpenPKG Security Advisory (png)
Next by Date: [Full-disclosure] [ MDKSA-2007:105 ] - Updated fetchmail packages fix potential APOP vulnerabilities
Previous by thread: [Full-disclosure] Erratasec Research MD5
Next by thread: Re: [Full-disclosure] Erratasec Research MD5
Index(es):
- Date
- Thread