lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Tue, 7 Jun 2011 22:54:14 +0100
From: Tom Keetch <twkeetch@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: RSA SecurID tokens are still useful !!!

I guess they're also still useful if you're not a typical "APT" target
(also known as the STFU threat).

Maybe we could yet see facebook logins protected by "pre-0wned" RSA tokens?

Tom


On 7 June 2011 22:19, Z <Z@...hall.net> wrote:
> http://www.reddit.com/r/netsec/comments/hu23y/rsa_securid_tokens_are_still_u
> seful/
>
> Nowadays more and more people suggest to throw away RSA SecurID tokens,
> because its security strength has been weakened. A lot.
>
> But those people forget that these tokens have multipurpose functions!
>
> You can still use the SecurID tokens as:
> 1. a nice key ring
> 2. measuring time - if 10 second granularity is enough
> 3. if you bought tokens in bulks, the PVC rack is a perfect ice cube maker
> http://bit.ly/geOAYc
> 4. think about it as a 1.000.000 sided dice for RPG's, or as a simple PRNG
> 5. bottle opener (because everything is a bottle opener)
> http://bit.ly/mRo3Vx
>
> Please help to prove that SecurID tokens are still useable by giving new
> ideas on reddit!
>
> http://www.reddit.com/r/netsec/comments/hu23y/rsa_securid_tokens_are_still_u
> seful/
>
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ