Re: In child porn case, a digital dilemma

On Jan 22, 5:40 pm, draco664 <draco...@xxxxxxxxxxx> wrote:
On Jan 23, 11:29 am, Bo Raxo <crimenewscen...@xxxxxxxxx> wrote:



On Jan 22, 12:29 pm, johns <johns...@xxxxxxxxxx> wrote:

http://www.heureka.clara.net/sunrise/pgpsec.htm

It is actually quite easy. PGP is becoming an
outdated approach to security .. like using
passwords. It is nothing but UNIX old-age
poop, that ignores just how clever those who
wish to get your information can be. Why
spend millions of years running a stupid math
problem, while ignoring the obvious ploys and
traps that can be set up by some plant who
makes their living stealing company info and
selling it to outside interests. For that matter,
even the cops and Feds can set these traps
and lure the know-it-alls to download freebies
with built in back doors. By now PGP has
exactly that ... Fed back doors built in. They
can't admit it, because some crimes are
worse than others ... like Osama talking to
his Bankers. It is absolutely no big trick to
push a keylogger with the freebies, and
sit back and monitor everything you do.
The idea that those who use this technology
are responsible users is just a joke. They
are punks with big mouths, and they are their
own worst enemies.

Like I said, if you don't have Crysis running
at 40 to 60 FPS, you are not on top of this
industry at all, and you are being lead to
believe that a bunch of big-mouth kids
know something. They don't .. it just makes
good Disney Movies.

Hmm. Maybe a good trick would be to
post a thread about the Feds being unable
to crack someones hard drive encoded
with PGP, and see if they can lure the lurkers
into telling how they do it. Let's see:

keyloggers, back doors in freebies, porn
sites with trojans, cops disguised as geeks
working for the man, pay offs, Help desks
running remote access, free help desks on
the web, African help desks, Indian help
desks, little old lady accountants with
passcodes saved by NotePad in My
Documents, Or, in my case, just walk
in the door and ask ... takes about 20
seconds and I'm in. Good thing everybody
trusts me. Yawn ....

johns

johns

Your own link states that it's a secure method. It's not "old UNIX
poop" having only been invented in 1991 and updated since.

Your assertion that the federal government can't break it only because
they don't have the skills that exist among hackers and crackers is
laughable. Clearly, you don't know crap about the resources of the
NSA.

http://en.wikipedia.org/wiki/Pretty_Good_Privacy

"To the best of publicly available information, there is no known
method which will allow a person or group to break PGP encryption by
cryptographic, or computational means."

You're just digging yourself in deeper here. Looking more silly with
every post.

Bo Raxo-

He's right about one thing. The fastest way to break encryption is to
use social engineering techniques. The human is always the weak link
in the chain.

Draco

Yeah, he came around to that position after first claiming that
encryption only protects data in transit, not files on a hard drive
(apparently thinking of something like https), that he had a floppy
that could break any encryption scheme, that PGP was easy to break but
it was only because the government had nobody who knew jack *** that
they couldn't do it.

All of which is ridiculously wrong.

In this thread the story is about a guy who is not giving up the
password/key, so the social engineering angle is moot. "Johns" just
keeps trying to find some way to morph his original ridiculous
position in to something that would convince someone he knows anything
about encryption - but then in the same breath claims PGP is some "old
UNIX poop" and easy to break.

Bonus points: if you arrest a person on suspicious of trafficking
child pornography, and the person has taken the trouble to encrypt the
files, I really don't think social engineering tricks are going to do
you one hell of a lot of good. We're not talking about getting the
password to someone's employer's network


Bo Raxo


.

Loading