Friday, 2 January 2015

DNS Cache busting

DNS Cache busting is a very simple attack against a caching DNS server. All you need is a domain which is confiured to answer for a wild card (Example: *.domain.com,asd.domain.com etc.).
This attack is being used in the wild.

UPDATE: ISC has since introduced some features to bind to mitigate this attack.

https://kb.isc.org/article/AA-01178/0/Recursive-Client-Rate-limiting-in-BIND-9.9-Subscription-Version.html

fetches-per-zone The maximum number of simultaneous iterative queries to any one domain that the server will permit before blocking new queries for data in or beneath that zone. This value should reflect how many fetches would normally be sent to any one zone in the time it would take to resolve them. It should be smaller than recursive-clients. When many clients simultaneously query for the same name and type, the clients will all be attached to the same fetch, up to the max-clients-per-query limit, and only one iterative query will be sent. However, when clients are simultaneously querying for different names or types, multiple queries will be sent and max-clients-per-query is not effective as a limit.

Apple Pay...Just another way to use a credit card

Is Apple pay really that revolutionary? What does this mean for the world of crypto-currency?
My opinion is that Apple Pay doesn't address any of the features delivered by Bitcoin (and similar altcoins). For example, the decentralized ledger which automates accounting or the ability to transfer funds anywhere in the world with limited infrastructure. The list goes on. Apply Pay just another way to use a credit card in a brick and motar market.

Wednesday, 31 December 2014

iptables log traffic to port

Here is a rule to log traffic to SSH.
iptables -A INPUT -p tcp --dport 22 -j LOG

Tuesday, 30 December 2014

Crypto shake up

XRP, Stellar, Paycoin, Counterparty? WTF is going on in the crypto world? Is bitcoin in trouble?
Buy EVERYTHING!!?

Saturday, 15 November 2014

Justice for mintpal

What a debacle this has been...again. This is what gives crypto a bad name.
http://www.mintpaljustice.com/

Android Google Authenticator Backup 2FA codes

I have been trying to find a method to recover the 200 accounts I have 2FA configured for. Here is the magic sauce.
This is pretty straight forward on Ubuntu. You can now key in the code manually.

Thursday, 13 November 2014

Bitcoin price on the move, breaks 400

Finally some action in the world of crypto. Bitcoin's price is rallying after a long down trend. Welcome back :)