http://www.enrupt.com/index.php From the authors of EnRUPT en-AU http://blogs.law.harvard.edu/tech/rss 60 http://www.enrupt.com/index.php/2010/09/05/static-skype-supernodes Sun, 05 Sep 2010 04:47:51 +0000 Georg Schwarz News 71@http://www.enrupt.com/ I am a bit surprised that so far there were no comments on the list of static Skype supernodes that Sean O’Neil has published along with his Skype RC4 code. It contains a list of 200 IP address and port number pairs hard-coded into every binary of Skype to be used as initial Skype supernodes. A simple analysis of those IP addresses using DNS and whois lookups sheds some interesting light on Skype's business model: http://www.enrupt.com/index.php/2010/09/05/static-skype-supernodes#comments http://www.enrupt.com/index.php/2010/09/05/wanna-find-skype-users Sun, 05 Sep 2010 01:59:10 +0000 Sean O’Neil News 70@http://www.enrupt.com/ We are about to launch our new online service: locating Skype users. At first, it will only report their IP addresses, both external (routable WAN address) and internal (LAN address if the user is behind NAT, proxy or a firewall of any kind). If it becomes sufficiently popular, we are planning to... http://www.enrupt.com/index.php/2010/09/05/wanna-find-skype-users#comments http://www.enrupt.com/index.php/2010/08/22/identify-skype-users-in-http-traffic Sun, 22 Aug 2010 20:22:22 +0000 Sean O’Neil News 69@http://www.enrupt.com/ While it's a holiday season, we are giving away another freebie as we have promised. One of the ways to identify the skype user from intercepted traffic is by its Skype update request.Skype checks for a new version on startup. The HTTP request looks like this: http://www.enrupt.com/index.php/2010/08/22/identify-skype-users-in-http-traffic#comments http://www.enrupt.com/index.php/2010/07/09/ddos-etc Fri, 09 Jul 2010 18:20:20 +0000 Sean O’Neil News 67@http://www.enrupt.com/ There seem to be some questions that a lot of people want answered urgently, as our post has caused a lot of stir and confusion:1. No, we did not take our blog offline since the last post. We are not hackers and we have nothing to be afraid of... http://www.enrupt.com/index.php/2010/07/09/ddos-etc#comments http://www.enrupt.com/index.php/2010/07/07/skype-biggest-secret-revealed Wed, 07 Jul 2010 20:22:22 +0000 Sean O’Neil News 66@http://www.enrupt.com/ For eight years, Skype enjoyed selling the world security by obscurity. We must admit, really good obscurity. I mean, really really good obscurity. So good that almost no one has been able to reverse engineer it out of the numerous Skype binaries. Those who could, didn't dare to publish their code, as it most certainly looked scarier than Frankenstein.The time has come to reveal this secret... http://www.enrupt.com/index.php/2010/07/07/skype-biggest-secret-revealed#comments http://www.enrupt.com/index.php/2010/07/07/we-are-back Wed, 07 Jul 2010 19:00:00 +0000 Sean O’Neil News 65@http://www.enrupt.com/ Yes, www.enrupt.com has been down for months. Many of you have been wondering if it will ever return. Well, here is your answer. Yes, we are back. http://www.enrupt.com/index.php/2010/07/07/we-are-back#comments http://www.enrupt.com/index.php/2009/06/28/enrupt-8 Sun, 28 Jun 2009 06:08:08 +0000 Sean O’Neil News 64@http://www.enrupt.com/ After a long analysis and due consideration, we have decided to propose EnRUPT/8 for all three 64-bit variants: EnRUPT64x2-256/8, EnRUPT64x2-384/8 and EnRUPT64x2-512/8 as our updated SHA-3 submission. http://www.enrupt.com/index.php/2009/06/28/enrupt-8#comments http://www.enrupt.com/index.php/2009/04/10/india_15_years_behind_the_us Fri, 10 Apr 2009 11:57:09 +0000 Sean O’Neil News 63@http://www.enrupt.com/ While we are working on determining the best value for ïrRUPT security parameter, we do not have much time for watching the news, but this is something we thought is worth your attention because of its irony:The US is outraged that India restricts symmetric encryption to 40-bit security. http://www.enrupt.com/index.php/2009/04/10/india_15_years_behind_the_us#comments