Defcon Wrapup
So here's the rundown, for those that didn't make it:
My 1-hour flight was delayed 3 hours, so I missed the Toxic BBQ. Don't fly Jet Blue.
Time-based SQL injection is cool. I started playing with it as a way to get around the blindness of blind SQL injection about 6 months back, but these guys are way better than me at it.
Captchas are on the way out. Their usefulness is decaying by the day- most of the big-name ones have been cracked already, and the small ones just aren't worth the effort... yet.
RSnake doesn't like Google. Google doesn't like RSnake. The talk was really good, but mostly not news if you've been following his blog for the past year.
Industrial espionage is cool
iPhones in UPS boxes can be used to penetrate wireless networks from the mailroom. This is cool.
Dan Kaminsky can drink a lot of beer very quickly, but can also disappear quickly. He may be a ninja.
25 years later, WarGames is still cool.
I can still sleep through an entire economics lecture, even if it's about hacker economics.
DNS is broken. More importantly, we rely way too heavily on it. This is bad.
The state of Massachusetts can suppress a talk on breaking the Boston subway system, but they can't suppress one on breaking the Dutch subway system (which uses the same technology). Also, they can't recall the slides from the original talk.
My 1-hour flight was delayed 3 hours, so I missed the Toxic BBQ. Don't fly Jet Blue.
Time-based SQL injection is cool. I started playing with it as a way to get around the blindness of blind SQL injection about 6 months back, but these guys are way better than me at it.
Captchas are on the way out. Their usefulness is decaying by the day- most of the big-name ones have been cracked already, and the small ones just aren't worth the effort... yet.
RSnake doesn't like Google. Google doesn't like RSnake. The talk was really good, but mostly not news if you've been following his blog for the past year.
Industrial espionage is cool
iPhones in UPS boxes can be used to penetrate wireless networks from the mailroom. This is cool.
Dan Kaminsky can drink a lot of beer very quickly, but can also disappear quickly. He may be a ninja.
25 years later, WarGames is still cool.
I can still sleep through an entire economics lecture, even if it's about hacker economics.
DNS is broken. More importantly, we rely way too heavily on it. This is bad.
The state of Massachusetts can suppress a talk on breaking the Boston subway system, but they can't suppress one on breaking the Dutch subway system (which uses the same technology). Also, they can't recall the slides from the original talk.
Labels: Conventions, Dan Kaminsky, Defcon, RSnake
posted by mckt at
10:11 PM
|
0 Comments
