Iceland

For those friends of mine who have not yet heard im going to Reykjavik, Iceland on Tuesday (30/03), there are going to be all sorts of amazing things,

Im going to go see:
Aurora Borealis
aurora borealis

Dog sledding
Dog Sledding

Whale Watching
Whale Watching

Snowmobiling
Snowmobiling

Horse Ridding
Horse Ridding

Then some chilling out time in the Blue Lagoon
Blue Lagoon

Oh and btw a volcano exploded about 100km from my hotel, and I have found a guy crazy enough to take me for a look ^_^

Twat

I can not decide weather it is a good thing or not, that I can re-read emails sent years and years ago, because I have discovered something quite fundamental when I was 17/18 I was a massive twat. I have just read several emails which have left me feeling very ashamed and embarrassed at how I acted, the worse part of this being at the time I know I didn’t see any of this this. This leaves me with a problem, before I can rest easy in my mind I now have to find someone who hates my guts(and im begining to think they may have had a point) and apologize to them.

I well I suppose it makes sense growing up is like healing or exercise its not doing you any good unless it hurts.

OverKill

I can’t get to sleep
I think about the implications
Of diving in too deep
And possibly the complications

Especially at night
I worry over situations
I know I’ll be alright
Perhaps it’s just imagination

Day after day it reappears
Night after night my heartbeat shows the fear
Ghosts appear and fade away

-Colin Hay

This sums up my life far to well for comfort right now

WeakLink password breaking

I have been thinking about password security quite alot today, and it occurred to me that most people including myself use universal passwords. We know its wrong, but we almost can’t help our selfs, its to human.

The thing we fail to think about enough is that the more we give this password out the more we danger put it in, every website that has it in there database is a new link in the chain protecting our password. All that is required to get your password thus is to break into the weakest website that has it, all you need is one admin who is not hashing his passwords, or failing to salt them.

Thus when personally attacking someone’s electronic life, if they have a universal password all you need to do is attack the weakest website or system that has it, and for most people there could be upto 50 -100 systems. One of these is bound to have a security hole.

The second possible mode of attack is to setup a dummy website, and get the person is question to sign-up to it. All that needs to be done then, is read it straight out of a database.

In this form you can ask for all the other details you want,

  • Name
  • Address
  • Email
  • Username

You could even ask for information such as a mother maiden name, with all this you could get access to email accounts, facebook accounts, webspace, e-commerce account(Amazon,Email,Play.com). With addation information gained from these you then even access bank accounts.


Message of the Day
DONT BE HUMAN –> DONT USE A UNIVERSAL PASSWORD

1 12 13 14 15 16 17