[VOIPSEC] Governments employing MiTM attacks against SSL
T Biehn
tbiehn at gmail.com
Tue Apr 20 12:48:40 CDT 2010
>blah.
Again you're making assumptions about what political environment
you're in and what practices the courts observe (if there are courts.)
> The media of the paper happens to be HTTP SSL. It could just as likely
> be any PKI based PK Crypto on any media.
Clearly to deride your claim on lack of this chat's applicability to VoIP.
Do you ever find it difficult given that you're so naive and trusting?
-Travis
On Tue, Apr 20, 2010 at 1:37 PM, J. Oquendo <sil at infiltrated.net> wrote:
> T Biehn wrote:
>> The example that the paper focuses on is governments complicit in
>> industrial espionage, not random tapping of individuals. This is one
>> example.
>>
>> Consider another example: The government sees you at a Communist Rally
>> and begins intercepting all your communiques. Perhaps some of it could
>> be considered risque philosophy, but you never have an intention of
>> committing a crime.
>>
>> These intercepts are used at your treason trial.
>>
>>
> Horrible example. Their taps would have to show intent, mens rea, etc.
> Right now as being on so many mailing list it could be construed that
> I'm a cyberterrorist. Should I worry? Certainly with all the emails
> receive on a daily basis many different pictures could be painted. I
> worry about nothing because I have nothing to hide. If I wanted to
> become a communist, anarchist, socialist, etc., doesn't mean I'm a
> criminal and my actions and words would reflect that. If someone didn't
> like my views, that is their opinion and their right. I STILL would not
> worry because I know and understand what is right from wrong meaning, I
> would know WHOM to be around based on their actions, demeanor, etc., and
> whom NOT to be around. Under certain conditions, there is nothing wrong
> with communism nor socialism... Should I be vetted now for something?
> Again I argue I have nothing to hide so I have nothing to worry about.
>
>> The media of the paper happens to be HTTP SSL. It could just as likely
>> be any PKI based PK Crypto on any media.
>>
>>
> And your point is what?
>
>> Nothing to Hide Nothing to Worry about simply isn't a valid argument.
>>
>> -Travis
>>
>
> Sure it is. Anyhow, enough with this thread on list, does little for
> VoIP and or the members here. We could take this discussion off-list or
> to FD if you choose.
>
>
>
> --
>
> =+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+
> J. Oquendo
> SGFA, SGFE, C|EH, CNDA, CHFI, OSCP, CPT
>
> "It takes 20 years to build a reputation and five minutes to
> ruin it. If you think about that, you'll do things
> differently." - Warren Buffett
>
> 227C 5D35 7DCB 0893 95AA 4771 1DCE 1FD1 5CCD 6B5E
> http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x5CCD6B5E
>
>
--
FD1D E574 6CAB 2FAF 2921 F22E B8B7 9D0D 99FF A73C
http://pgp.mit.edu:11371/pks/lookup?search=tbiehn&op=index&fingerprint=on
http://pastebin.com/f6fd606da
More information about the Voipsec
mailing list