Home | Community | Message Board

NorthSpore.com BOOMR Bag!
This site includes paid links. Please support our sponsors.


Welcome to the Shroomery Message Board! You are experiencing a small sample of what the site has to offer. Please login or register to post messages and view our exclusive members-only content. You'll gain access to additional forums, file attachments, board customizations, encrypted private messages, and much more!

Shop: Kraken Kratom Red Vein Kratom   PhytoExtractum Maeng Da Thai Kratom Leaf Powder   Unfolding Nature Unfolding Nature: Being in the Implicate Order

Jump to first unread post Pages: 1
OfflineLearyfanS
It's the psychedelic movement!
Male User Gallery


Registered: 04/20/01
Posts: 34,086
Loc: High pride!
Last seen: 14 hours, 20 minutes
Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out * 1
    #21929040 - 07/11/15 02:12 PM (8 years, 6 months ago)

Compared to you guys, I know nothing about computer technology.  Take a look at this article.  They seem to suggest that this guy's code is uncrackable.  Do you guys think that means that his code could be used by Dark Web drug sites to offer a lot more anonymity for dealers and buyers there? 






Quote:

Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out

By Yoni Heisler on Jul 10, 2015 at 9:05 AM

While encryption and secured messaging has long been a topic of interest in tech circles, the issue became a mainstream and hot-button issue in 2013 following a series of Edward Snowden leaks detailing the NSA’s extensive efforts to bolster their electronic snooping capabilities.

In the back and forth battle over consumer privacy, one tends to think of government cryptographers looking to outwit engineers at companies like Google and Apple who help churn out some of the most widely used software across the globe.

But playing an instrumental role in this cat and mouse game is a man you might not ordinarily expect to see in such a discussion.

Meet Moxie Marlinspike, a dreadlocked programmer and apparent encryption guru whose code has left government agencies like the NSA frustrated beyond belief.

In an extensive profile on Marlinspike, The Wall Street Journal details how an encyrption program he wrote was so robust, simple, and efficient that WhatsApp — one of the more popular messaging apps on the planet — “made it a standard feature for many of the app’s 800 million users.”

While he may appear to be like any other dreadlocked dude you might see at a Grateful Dead concert, don’t let the hairstyle fool you. He’s the real deal, having formerly served as the head of Twitter’s security team.

The Journal reports:

    In a research paper released Tuesday, 15 prominent technologists cited three programs relying on Mr. Marlinspike’s code as options for shielding communications.

    His encrypted texting and calling app, Signal, has come up in White House meetings, says an attendee. Speaking via video link last year as part of a panel on surveillance, former National Security Agency contractor Edward Snowden, who leaked troves of U.S. spying secrets, urged listeners to use “anything” that Mr. Marlinspike releases.

All the more impressive, the report relays an anecdote detailing how a Johns Hopkins University cryptography class examined Marlinspike’s code only to find that there were no errors to be found. Anywhere.

In typical coder fashion, Marlinspike is extremely private. We don’t know his age or much else about him aside from his elegant code. And while the ultimate functionality of what Marlinspike’s accomplishes may not be new in and of itself, his code stands out because it’s extremely easy to use.

Make sure to hit the source link below for the full scoop on Marlinspike and why his code is so highly regarded by privacy advocates and, in turn, feared by outfits like the NSA and FBI. Often times, conversations about privacy center on faceless government agencies and corporate entities. That being the case, it’s a nice change of pace to meet someone, with a name and a face to match, involved on the front lines.

A 2010 Wired profile on Marlinspike is also worth checking out.


(http://bgr.com)
















--------------------
--------------------------------


Mp3 of the month:  The Apple-Glass Cyndrome - Someday



Edited by Learyfan (07/11/15 02:32 PM)


Extras: Filter Print Post Top
InvisibleDieCommie

Registered: 12/11/03
Posts: 29,258
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Learyfan]
    #21929071 - 07/11/15 02:20 PM (8 years, 6 months ago)

As far as I know, uncrackable encryption exists and is readily available.  That is why the NSA forces/coerces companies to introduce back doors into software.

I like to use TrueCrypt.


Extras: Filter Print Post Top
OfflineLearyfanS
It's the psychedelic movement!
Male User Gallery


Registered: 04/20/01
Posts: 34,086
Loc: High pride!
Last seen: 14 hours, 20 minutes
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: DieCommie]
    #21929113 - 07/11/15 02:32 PM (8 years, 6 months ago)

So are the new Dark Web companies using that, or what?  What was Silk Road using? 
















--------------------
--------------------------------


Mp3 of the month:  The Apple-Glass Cyndrome - Someday



Extras: Filter Print Post Top
InvisibleDieCommie

Registered: 12/11/03
Posts: 29,258
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Learyfan]
    #21929126 - 07/11/15 02:37 PM (8 years, 6 months ago)

Yes, public uncrackable encryption has been available for decades.  There are many layers and types of encryption that go on in marketplaces like the Silk Road.  They web site has some, the buyers and sellers each have their own.  Of course the onion network is based on it too.  Because all this encryption is uncrackable if done right the NSA has to use statistics, backdoors, wiretapping, and threats to get information and convictions.


Extras: Filter Print Post Top
Invisiblenooneman
Male

Registered: 04/24/09
Posts: 14,561
Loc: Utah
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Learyfan]
    #21929212 - 07/11/15 03:00 PM (8 years, 6 months ago)

Moxie has been around forever in the hacking community. It's not the encryption program that matters, but the encryption algorithm itself. Supposedly, the government has some classified encryption algorithms that are unbreakable. All the public encryption algorithms are suspect, but obviously if the NSA knows how to break them they don't want people to know that they know. So, they can't publicly break anything or allow anything that has been broken to leak out, that kind of thing. So even if the NSA can break all public encryption algorithms, they can't use the material they get out of it directly or else people would know they had broken these algorithms and would find new ones.

However, often the encryption doesn't need to be broken. You can compromise the system on either end and read the message that way. Or, just by knowing who is sending messages to who you can gain a lot of information. The design of tor itself is vulnerable to several known attacks that have nothing to do with encryption. They didn't need to break anything to catch Ross Ulbricht.

The government wants backdoors not because the NSA can't crack stuff, but because law enforcement and others can't. If the police get a warrant to search your computer, but it's encrypted, they're fucked (even if the NSA knows how to crack it). So, the government wants to give the police a backdoor. And it's not just about the police, but also about the DEA and FBI and such.

So, it's still a good idea to encrypt your stuff because it will keep everyone except the NSA out. And if the NSA really wants in, they're going to get in whether you have unbreakable encryption or not. They'll just compromise your machine/router/etc.


Extras: Filter Print Post Top
InvisibleDieCommie

Registered: 12/11/03
Posts: 29,258
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: nooneman]
    #21929425 - 07/11/15 03:53 PM (8 years, 6 months ago)

Are you claiming that the NSA can crack AES encryption?  They can't.  That is why they put in backdoors and compromise your machine/router/etc.



Extras: Filter Print Post Top
InvisibleByrain

Registered: 01/07/10
Posts: 9,664
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: DieCommie]
    #21929605 - 07/11/15 04:29 PM (8 years, 6 months ago)

They can with sha1, 256 might be safe.


Extras: Filter Print Post Top
OfflineProoN
Enthusiast
Male User Gallery


Registered: 03/27/06
Posts: 199
Loc: California, Colorado, Michigan
Last seen: 1 year, 4 months
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: DieCommie]
    #21933987 - 07/12/15 03:30 PM (8 years, 6 months ago)

TrueCrypt has a disclaimer at the very top of their page in red, has been up/the result of much speculation since just after that SSL-heartbleed exploit. I wouldn't trust it.



--------------------
A human being is part of a whole, called by us, the "Universe", a part limited in time and space. He experiences himself, his thoughts and feelings, as something separated from the rest, a kind of optical delusion of his consciousness. This delusion is a kind of prison for us, restricting us to our personal desires and to affection for a few persons nearest us. Our task must be to free ourselves from this prison by widening our circles of compassion to embrace all living creatures and the whole of nature in its beauty.


Extras: Filter Print Post Top
InvisibleByrain

Registered: 01/07/10
Posts: 9,664
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: ProoN]
    #21934052 - 07/12/15 03:47 PM (8 years, 6 months ago)



Extras: Filter Print Post Top
OfflineDrumdude27
Millennial Hippy
Male User Gallery


Registered: 03/22/13
Posts: 563
Last seen: 4 months, 5 days
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Byrain]
    #21934883 - 07/12/15 07:53 PM (8 years, 6 months ago)

I didn't know you could be searched at the border without a warrant. I bet the authorities LOVE that. But good on that guy. I get the impression he stood his ground without giving the authorities another reason to search or question him


--------------------



:awesome:Random acts of Shroomery kindness:mushroom2:

Drumdude27 said:
Don't make me get the FemNazis involved guys.

420th post. No regrets. Only joy.


Extras: Filter Print Post Top
OfflinemndfreezeMDiscordReddit
Shroomery Secret Service
Other User Gallery


Folding@home Statistics
Registered: 04/22/02
Posts: 20,529
Loc: PuppetMasterFlash
Last seen: 22 hours, 27 minutes
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Drumdude27] * 1
    #21949671 - 07/15/15 10:28 PM (8 years, 6 months ago)

There is encryption that cannot be broken that has existed for a long time now.  Just the nature of the way PGP works for example, if your keys are big enough they can never be bruteforced in less then hundreds of thousands of years. 

As others have already said, its why the NSA wants to put backdoors in stuff.  So they dont HAVE to try to brute force or otherwise exploit their way into whatever system they are looking at.  Ugh, I really hope more companies push back on them.  They already have their access to way to much corporate software and networks as is, not to mention the traffic sniffers they have setup at major backbones and peering points.  Meeeeeehhhh. 

I wouldnt even care that much if literally it was only used against other countries, but the fact that the government has more then proven they will use it against their own citizens means they can't be trusted.  Fuckers.


--------------------
Nothing says love like grannies prolapsed anus!

quote]Urb said:
I know... Its fucked up... Ill fix it minyana..[/quote]


Extras: Filter Print Post Top
OfflineOggy
Stranger Danger
 User Gallery

Registered: 12/05/14
Posts: 1,276
Loc: Planet Remulak
Last seen: 6 months, 29 days
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: mndfreeze]
    #21989333 - 07/24/15 10:30 AM (8 years, 6 months ago)

The problem with encryption is there must exist a salt.
A password is encrypted by a webserver, say using MD5 when the password is first created, something like "password1" + "webserver only salt". This would create "27d708fa4aed2fc611f4023c87009e4f".

Everytime you go to log into the website it will take your password, plus whatever salt potentially saved in the database and recalled by the username and hash the inputted password to compare to whatever is stored in the database.

All of this is really inconsequential, though. If a hacker has access to salts and hashes or the database itself then he also most likely has access to the websites source. All he would need to do edit the source to save the password inputs in plain text somewhere or send them off to another computer using a socket.


--------------------


Extras: Filter Print Post Top
OfflineDrumdude27
Millennial Hippy
Male User Gallery


Registered: 03/22/13
Posts: 563
Last seen: 4 months, 5 days
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Oggy]
    #21992368 - 07/24/15 08:32 PM (8 years, 6 months ago)

Found this in an older thread. There is also links to youtube vids somewhere within this site. Basically it's relatively easy to bypass encrypted hard drives using an external hard drive and a can of compressed air

https://citp.princeton.edu/research/memory/


--------------------



:awesome:Random acts of Shroomery kindness:mushroom2:

Drumdude27 said:
Don't make me get the FemNazis involved guys.

420th post. No regrets. Only joy.


Extras: Filter Print Post Top
InvisibleDieCommie

Registered: 12/11/03
Posts: 29,258
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Drumdude27]
    #21993859 - 07/25/15 06:43 AM (8 years, 6 months ago)

Quote:

Drumdude27 said:
Found this in an older thread. There is also links to youtube vids somewhere within this site. Basically it's relatively easy to bypass encrypted hard drives using an external hard drive and a can of compressed air

https://citp.princeton.edu/research/memory/




That reads like it would be harder and less useful than you say.


I have a a few smaller harddrives I'm not using.  I also have a can of compressed air.  Give me some the relatively easy steps to do and I will try to bypass truecrypt full disk encryption and report the results.


Extras: Filter Print Post Top
OfflineDrumdude27
Millennial Hippy
Male User Gallery


Registered: 03/22/13
Posts: 563
Last seen: 4 months, 5 days
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: DieCommie]
    #21993896 - 07/25/15 07:16 AM (8 years, 6 months ago)

All the steps are in the paper/video that can be found on the princeton site. Even if "easy" is a stretch, the fact that this is possibly with something as simple as canned air and a bit of research is kinda scary IMO.


--------------------



:awesome:Random acts of Shroomery kindness:mushroom2:

Drumdude27 said:
Don't make me get the FemNazis involved guys.

420th post. No regrets. Only joy.


Extras: Filter Print Post Top
OfflineSevren
Stranger
Registered: 07/25/15
Posts: 5
Last seen: 8 years, 5 months
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Oggy]
    #21994181 - 07/25/15 09:02 AM (8 years, 6 months ago)

Quote:

Oggy said:
The problem with encryption is there must exist a salt.
A password is encrypted by a webserver, say using MD5 when the password is first created, something like "password1" + "webserver only salt". This would create "27d708fa4aed2fc611f4023c87009e4f".

Everytime you go to log into the website it will take your password, plus whatever salt potentially saved in the database and recalled by the username and hash the inputted password to compare to whatever is stored in the database.

All of this is really inconsequential, though. If a hacker has access to salts and hashes or the database itself then he also most likely has access to the websites source. All he would need to do edit the source to save the password inputs in plain text somewhere or send them off to another computer using a socket.




MD5 is a simple hashing mechanism. It does not encrypt but rather validate the integrity of content.


Extras: Filter Print Post Top
OfflineSevren
Stranger
Registered: 07/25/15
Posts: 5
Last seen: 8 years, 5 months
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Byrain]
    #21994297 - 07/25/15 09:22 AM (8 years, 6 months ago)

Quote:

Byrain said:
They can with sha1, 256 might be safe.




Just like MD5, SHA is a one-way hashing algorithm used to validate content integrity. It serves a different purpose than symmetric and public key encryption.


Extras: Filter Print Post Top
OfflineOggy
Stranger Danger
 User Gallery

Registered: 12/05/14
Posts: 1,276
Loc: Planet Remulak
Last seen: 6 months, 29 days
Re: Meet the dreadlocked hippie who’s an encryption guru and has the NSA freaking out [Re: Sevren]
    #22023931 - 07/31/15 10:51 AM (8 years, 5 months ago)

I only used MD5 as an example. Everyone has heard of MD5. The same principle applies to all cryptography. Hash input, compare new hash to old hash.


--------------------


Extras: Filter Print Post Top
Jump to top Pages: 1

Shop: Kraken Kratom Red Vein Kratom   PhytoExtractum Maeng Da Thai Kratom Leaf Powder   Unfolding Nature Unfolding Nature: Being in the Implicate Order


Similar ThreadsPosterViewsRepliesLast post
* NSA Bugged Website Visitors Despite Ban DiploidM 535 0 12/31/05 06:50 PM
by Diploid
* Hitachi Ships Hard Disk With Built In Hardware Encryption DiploidM 1,931 6 05/14/07 09:57 PM
by Diploid
* Encrypted Filesystems windex 1,279 2 10/13/03 12:21 AM
by bsta1n
* Encrypting your messages while using ICQ Lana 3,747 1 06/19/01 06:48 AM
by Anno
* OS with support for encrypted file systems? OJK 1,216 9 07/06/06 06:07 AM
by OJK
* EFF - AT&T has sold you out to the NSA blink 676 4 04/08/06 10:53 PM
by Ythan
* Data Encryption BallsDeep 842 3 09/29/06 04:50 AM
by Seuss
* 128 Bit Wireless Encryption Cracked Lana 1,781 7 08/20/01 07:12 PM
by Billyblastoff

Extra information
You cannot start new topics / You cannot reply to topics
HTML is disabled / BBCode is enabled
Moderator: trendal, automan, Northerner
1,597 topic views. 0 members, 0 guests and 3 web crawlers are browsing this forum.
[ Show Images Only | Sort by Score | Print Topic ]
Search this thread:

Copyright 1997-2024 Mind Media. Some rights reserved.

Generated in 0.03 seconds spending 0.009 seconds on 14 queries.