search for: evasion

Hello, In response to the timing analysis attacks presented by Dawn Song et. al. in her paper http://paris.cs.berkeley.edu/~dawnsong/ssh-timing.html we at Silicon Defense developed a patch for openssh to avoid such measures. Timing Analysis Evasion changes were developed by C. Jason Coit and Roel Jonkman of Silicon Defense. These changes cause SSH to send packets unless request not to, exactly every 50 ms. IF no data is ready to be sent, SSH will send a bogus packet with 16 bytes of data (which is the same size as most keystrokes). Thus so...

Hello, In response to the timing analysis attacks presented by Dawn Song et. al. in her paper http://paris.cs.berkeley.edu/~dawnsong/ssh-timing.html we at Silicon Defense developed a patch for openssh to avoid such measures. Timing Analysis Evasion changes were developed by C. Jason Coit and Roel Jonkman of Silicon Defense. These changes cause SSH to send packets unless request not to, exactly every 50 ms. IF no data is ready to be sent, SSH will send a bogus packet with 16 bytes of data (which is the same size as most keystrokes). Thus so...

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Sergey Ivanov <evasive.gyron at gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #1851|0 |1 is obsolete| | CC|

Hello all. I'm confused a bit about contour plots. After reading the help at "?contour", it seems as though the contour plot is for 3D plots (x,y, and z). My data is in the form of grid coordinates (x,y), and I want to see a contour plot of the data so that I can tell where most observations lie. My question is simple but still evasive. Say my data is called places. One column

I'm reading this fine article on O'Reilly: http://linux.oreillynet.com/lpt/a//linux/2001/11/08/ssh_keystroke.html <quote> The paper concludes that the keystroke timing data observable from today's SSH implementations reveals a dangerously significant amount of information about user terminal sessions--enough to locate typed passwords in the session data stream and reduce the

Awesome! Thanks so so much! I'm very interested in doing some work with compilers. Yeah, I'm considering writing a research proposal where I work for JIT-SFI, SFI Evasion Technique and Mitigation, and a few other things. Considering your experience working on modifying llvm, what would you say would be a topic where I could start out doing some good work on, either in a new direction or in improving what you have? And how has this research not made it into the offi...

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Sergey Ivanov <evasive.gyron at gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|FIXED |--- Status|CLOSED |REOPENED --- Comment #4 from Sergey Ivanov

Consider: > x <- array(1:12,dim=12) > x[13] [1] NA] > m <- array(1:12,dim=c(3,4)) > m[3,5] Error: subscript out of bounds Can anyone tell me it there is a Good Reason for the difference in behaviour between 1 dimensional and higher dimensional arrays? In a bit of code that I was working on I expected the NA behaviour and didn't get it of course. Then I had to

...s of > eval(substitute(cbind(a,b,deparse.level=2),list(a=rnorm(10),b=rnorm(10)))) Really? Or try a bit less hard? Getting the common cases right is not too hard -- ts.union etc seem normally to be about right, and they have simple code. > (4) The dataframe special casing seems to be an evasion. The sticky > bit is that one needs to dispatch on *any* argument. For Splus (3.4) > compatibility, one has to check each argument for its class > method, and if all arguments agree - in the sense that all the > arguments that have class methods must have the same one, d...

I wonder if anyone is actually running SpamAssassin with Postfix/Amavisd-new under CentOS-6.4 . I have followed the instructions in <http://wiki.centos.org/HowTos/Amavisd> but as far as I can see SpamAssassin is not working. I should say that I do not understand from this document what is meant to happen to spam. I understand that a Spam header is added, but what actually happens to email

Dear all, The other day I was reading this post [1] that slightly surprised me: "To reject the null of no correlation, an hypothsis test based on the normal distribution. If normality is not the base assumption your working from then p-values, significance tests and conf. intervals dont mean much (the value of the coefficient is not reliable) " (BOB SAMOHYL). To me this implied that in

Dear Partner, I am a staff/member of the inner circle of Mr. Mikhail B. Khodorkovsky the former Chairman/CEO of Yukos Oil Company who was imprisoned in Russia on false charges of fraud and tax evasion by the current Russian President Mr. Vladimir V. Putin. For more details, please follow this links: http://en.wikipedia.org/wiki/Mikhail_Khodorkovsky http://www.theguardian.com/world/2013/dec/20/mikhail-khodorkovsky-russia-richest-man. Get back to me for full details on this offer through ( anato...

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 Sergey Ivanov <evasive.gyron at gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Version|5.5p1 |7.1p1 -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 --- Comment #6 from Sergey Ivanov <evasive.gyron at gmail.com> --- Error is exactly as described by original author. ssh -A -I /usr/lib/libeToken.so -p example.net -vvv OpenSSH_7.1p1, OpenSSL 1.0.2d 9 Jul 2015 debug1: Reading configuration data /etc/ssh/ssh_config debug2: ssh_connect: needpriv 0 debug1: Connecting to example.com

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 --- Comment #8 from Sergey Ivanov <evasive.gyron at gmail.com> --- Provided patch corrects the xmalloc error. Thanks. -- You are receiving this mail because: You are watching someone on the CC list of the bug. You are watching the assignee of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=1773 --- Comment #9 from Sergey Ivanov <evasive.gyron at gmail.com> --- Any updates on status of this patch? Will it be included in next release? -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug.

man_in_shack banned me during a casual conversation where i was explaining my dual x server wine setup, saying I was contradicting myself. I obviously wasn't trying to contradict myself, if I did, and I don't see how this is ban-worthy under any circumstance.

I see this commit: ---------- Forwarded message ---------- Date: Thu, 29 Oct 2009 15:42:14 From: noreply at centos.org To: noreply at centos.org Subject: centos wiki] Update of AdditionalResources/Repositories by PhilSchaffner The following page has been changed by PhilSchaffner: http://wiki.centos.org/AdditionalResources/Repositories?action=diff&rev2=96&rev1=95 The comment on

Hi folks. Looking for a simple, yet face-punchingly evasive bit of functionality. Basically, I want to encrypt/decrypt an action parameter, such as: foo.com/users/encodedvalue/action I feel I have the hard part done, in the form of a small crypto library. This lib has a couple methods that Base64 pack the value, des3 encrypts it, then CGI.escapes the output. The decrypter does all that in

Greetings- I've got a curious project that I could use some input on. I'd like to use Asterisk to record some audio channels via USB 'soundcard'. When audio passes through the soundcard, Asterisk should grab that audio channel (CONSOLE?), and write it to a wav file. I'm perfectly competent with the dialplan portion of the recording, but I don't know about the following: