So many attacks... MITM... alter links... alter source code... alter
gpg so t validates sigs that it shouldn't... security is such a loser
game.

NSA are the biggest losers.

On Tue, Dec 31, 2013 at 8:22 AM, Drak <drak@???> wrote:
> Gobsmacked.
>
> The NSA has essentially baked themselves into the fabric of the internet.
> I was really amazed about 'diode' attack being "beat the speed of light" by
> being able to transmit a spoofed response faster than the requested website
> can, to the target.
>
> Our big concern should be the ability to modify internet traffic at scale
> with "deep packet injection" - especially downloads.
>
> E.g. bitcoin-qt is distributed over plain http at sourceforge.net.
> bitcoin.org is also http only so the links could be altered.
>
> Applebaum says that TLS is effective in blocking this attack.
>
> I think it's imperative we lobby all wallet providers to make their sites
> https only and to use download sources which are https. This would severely
> hampers large scale attacks.
>
> The NSA "Exploits Everywhere" campaign leaves the doors open to others who
> find the exploits (and they have been according to the video).
>
> Drak
>
>
>
>
> On 30 December 2013 22:19, Amir Taaki <genjix@???> wrote:
>>
>> Don't lose hope :) We're here 1 brick at a time. That you, I and others
>> are talking about a new reality is a start. People are already buying
>> drugs online. The small and powerful live off the large and
>> disenfranchised.
>>
>> On 30/12/13 22:15, Manfred Karrer wrote:
>> > Probably many of you have already seen that video of Jacob Applebaum at
>> > the CCC:
>> > https://www.youtube.com/watch?v=b0w36GAyZIA
>> >
>> > I was not so much suprised by many NSA activities we heard about in that
>> > year, but that is really, really SHOCKING!
>> >
>> > That changes for me also the view I had about Bitcoins security. The NSA
>> > can by 100% break the system if they want (they have 1000s of attack
>> > vectors). I was not so sure about that before.
>> > So as we cannot fix all the technical weaknesses leading to this digital
>> > 1984 nightmare in what we are living, we certainly need to fight also on the
>> > political side.
>> > I was thinking before technology could just make old school politics or
>> > power structures obsolete, but I am not so sure about that anymore. They
>> > have created with the NSA a monster in the worst sense of that word, and to
>> > beat them on the technological side seems to me naive (after I saw that
>> > video).
>> >
>> >
>> >
>> > _______________________________________________
>> > unSYSTEM mailing list: http://unsystem.net
>> > https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/unsystem
>> >
>>
>>
>> _______________________________________________
>> unSYSTEM mailing list: http://unsystem.net
>> https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/unsystem
>>
>
>
> _______________________________________________
> unSYSTEM mailing list: http://unsystem.net
> https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/unsystem
>