RE: Newspaper Article about Cable Modem security

[ark () eltex ru]

-----BEGIN PGP SIGNED MESSAGE-----

nuqneH,

Nope. Actually "interesting" traffic like poorly-encrypted SSL sessions,
passwords and credit card numbers can be easy identified using simple
pattern analysis. And.. what about someone who watches _you_, not
other people?

Michael Cassidy <cassidy () panix com> said :

> At 8:17 AM -0500 11/1/99, Keller Dennis (DDSP) wrote:
> > > > Eric Toll wrote:
> > > > > The sad part is that even if they have file and print
> > > sharing turned
> > > > off, you can still be hacked and or hijacked, cable modem
> > > networks are >not
> > > distributed star, but more like a bus network  ( think of it
> > > like a >river )
> > > and anyone can get a sniffer and "drink" packets and look for
> > > > "password" or
> > > capture 40bit encryped https sessions, save them and >crack
> > > them later to
> > > reveal credit card numbers etc.
> > > >
>
> not just anybody can play with a sniffer and "drink" packets and not just
> anybody can crack a 40bit encrypted session.
> i dont have a cable modem so i havent played with it yet but i dont think
> its so easy to crack as everyone supposes.
> in some sense that BIG river of packets gives you protection like bison
> running in a herd.


                                     _     _  _  _  _      _  _
 {::} {::} {::}  CU in Hell          _| o |_ | | _|| |   / _||_|   |_ |_ |_
 (##) (##) (##)        /Arkan#iD    |_  o  _||_| _||_| /   _|  | o |_||_||_|
 [||] [||] [||]            Do i believe in Bible? Hell,man,i've seen one!

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv

iQCVAwUBOCASiqH/mIJW9LeBAQH1fQP+OuQRpDf4U1A3VGP4sHTFijxfREwBVrSE
KumkXqGlAtKRtWKx180q41ms0eek4SqOws5JHkJ1kqibRHc81fN7BsEle1pgHFlC
1FoKCQSE1FiedJbh8jspkI632oUfHT6SJiVTXRagSr+vQTjatmlw8bJtEus+zBLn
RC2U9kf8CFg=
=PUug
-----END PGP SIGNATURE-----