[Shacs] cold facts on hacking with memory resident passwords

Bronius Motekaitis bronius at bcswebstudio.com
Tue Mar 4 19:54:47 CST 2008 

You're still sipping the M$ koolaid, are you?

When I was a user, I spake as a user, evaluated as a user. But when I became
a developer..  :)  but really.. I was a fan of microsoft because they
managed to do some things really well (for the user) and they did it
consistently across all apps and even the OS (when properly implemented).
However, it's still true that the end product (from an inside perspective)
can get pretty mangled and nasty.  Two other beefs: you sign up for one
thing, and you get roped into a LOT of other stuff (take sharepoint for
instance).  Now that I have some experience with enterprise licensing, I can
more clearly see just how ensnared a company can get with billing...  these
cats are rolling in the dough!

(the clear alternative is opensource, for which as much time as you'd have
spent navigating M$ legalese, you'll spend chasing releases , patches, and
support)

-bronius


On Mon, Mar 3, 2008 at 9:04 AM, Kyle Patrick <kyle at dpis.com> wrote:

>  I wonder if Bill Gates throws his mouse when he watches these videos, I
> probably would.  I mean they say all these OS's are vulnerable, and then
> do the demo on windows lol.  Give Bill a break already.  Anyway that's
> really cool Brono, I like how the laptop that was hacked at the very end
> contained all the secrets to the Kennedy Assignation, that was a good one to
> hack.
>
>
>
> Kyle
>
>
>
>
>
> *From:* shacs-bounces at shsu.edu [mailto:shacs-bounces at shsu.edu] *On Behalf
> Of *Bronius Motekaitis
> *Sent:* Monday, March 03, 2008 8:47 AM
> *To:* SHACS
> *Subject:* [Shacs] cold facts on hacking with memory resident passwords
>
>
>
> This little article:
> http://blog.wired.com/27bstroke6/2008/02/researchers-dis.html
> has a neat video at the end:
>
>    - ram takes a while to fade even when not plugged in
>    - ram chips fade time is longer when cooled with a coolant
>    - software (if bootable by usb is set..) can hijack a stolen pc's
>    ram and suck out a password
>
> cheers
> -bronius
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.shsu.edu/pipermail/shacs/attachments/20080304/a1c2d1a3/attachment.html

More information about the Shacs mailing list