I think this is the smallest jet I've ever flown in.

April_2011_059

Posted via email from ken5m1th

Posted by No comments:

I love this building - Simmons Hall at MIT

Mit_visit_april_2011_001

Posted via email from ken5m1th

Posted by No comments:

Sitting in a Black Hawk L-model at the MIT "Under the dome" open house today

Mit_visit_april_2011_028

Posted via email from ken5m1th

Posted by No comments:

Black Hawk helicopters landing at Briggs Field at MIT

p90.mov Watch on Posterous

Posted via email from ken5m1th

Posted by No comments:

iPhone photo app issue displaying albums, anyone else seen this?

P84

Sometimes when I open the photo app the list of albums is displayed too high up on the screen so you cannot actually select the album at the top. You cannot scroll up either. See the image to see what I mean. This is with ios 4.3.2 on iPhone 4.

Posted via email from ken5m1th

Posted by No comments:

Accidental Art, my cars shattered back window

P79

I lined up the breakage pattern with a tree across the street.

Posted via email from ken5m1th

Posted by No comments:
Labels:

Pwnie Express device as seen at #SOURCEBoston (cc @PwnieExpress )

P65

Cool device that looks like a large AC power block. Runs Ubuntu Linux, allows remote command/control via an outbound ssh tunnel and runs a bunch of security tools right on the device. Yea, you could build something like this yourself using an old notebook or something but the packaging of this is great and the setup GUI is easy. http://www.pwnieexpress.com/

Posted via email from ken5m1th

Posted by No comments:
Labels: ,

Low tech at it's best. Airtran arrivals display - hiding a column with black tape

Photo

Posted via email from ken5m1th

Posted by No comments:

SplashID does not challenge user for password after the iPhone is reset

This is likely related to this announcement by Philip Chase of a Vulnerability in SplashID 5.5 http://seclists.org/fulldisclosure/2011/Jan/412

This is a video demonstrating that if you left SplashID running (at the main screen) and reset your iPhone, you are not challenged for your SplashID password after the reset. After the iPhone reset, enter your iPhone password then launch SplashID and it will open right up without asking for the password. In this example the SplashID application lock timeout value was set to 30 minutes. But this will work as long as you have it set to anything longer than 1 minute.

SplashID_example.avi Watch on Posterous

Note that I edited this down a bit so you wouldn't have to wait for the entire reset.

This implies to me that the data is decrypted once you enter the password and remains decrypted until a process returns to encrypt it again (the app timeout value triggers this). This approach is obviously flawed.

Remediation: The vendor told me that they are releasing version 6 shortly which will fix this issue. Until then change the application lock timeout value in Tools, Security Options, Lock on Exit or Sleep and set the value to "1 minute" or "immediately". 

Posted via email from ken5m1th

Posted by No comments:
Labels:
Subscribe to: Posts (Atom)