Welcome Guest.   Make a donation to an author on the site September 23, 2014, 11:25:53 AM  *

Please login or register.
Or did you miss your validation email?


Login with username and password (forgot your password?)
Why not become a lifetime supporting member of the site with a one-time donation of any amount? Your donation entitles you to a ton of additional benefits, including access to exclusive discounts and downloads, the ability to enter monthly free software drawings, and a single non-expiring license key for all of our programs.


You must sign up here before you can post and access some areas of the site. Registration is totally free and confidential.
 
The N.A.N.Y. Challenge 2013! Download dozens of custom programs!
   
  Forum Home Thread Marks Chat! Downloads Search Login Register  
  Show Posts
      View this member's profile 
      donate to someone Donate to this member 
Pages: Prev 1 ... 33 34 35 36 37 [38] 39 40 41 42 43 ... 52 Next
926  Main Area and Open Discussion / General Software Discussion / Re: TrueCrypt 6.0 released on: July 08, 2008, 09:04:39 PM
Spiffy encryption widgets make you look interesting enough to poke around a bit, if that turns up anything your screwed. The first two guys you talk to, won't be that (IT) bright ... But the third guy that shows up...

While it may be true that using encryption makes you look interesting to customs (or whatever agency you're dealing with), it really shouldn't be.  I use encryption on my portable devices simply because the device could get lost or stolen and I don't want to have whoever might be on the receiving end to get access to that data (some of which isn't even mine - it belongs to my employer).  I'd hope that this would be the more usual case, but given the news stories that pop up about lost/stolen devices with sensitive data it seems that this is not true (yet).

927  Main Area and Open Discussion / General Software Discussion / Re: Extract files from a .pst file on: July 08, 2008, 01:11:48 PM
Apparently, Outlook express won't touch it and now I'm stuck for a solution.

You need Outlook - which is completely different from Outlook Express.  If you have Office, you might already have Outlook (it's in some of the Office Suites, but not all of them).  If you don't have it, installing a 60 day trial should enable you to get the documents you want.  Note that MS does not seem to have a trial for Outlook itself - they want you to trial Office 2007 Pro to trial Outlook, so I'm not sure what it'll do for any Office applications you might already have installed.  I suppose you should be prepared to reinstall them after you uninstall the trial, if that's the route you take:

http://us1.trymicrosoftof...ficepro&culture=en-US

Of course there are 3rd party tools to deal with PST files (as EDOlsson suggested), but I have no experience with them.


928  Main Area and Open Discussion / General Software Discussion / Re: Using URL-catching technology to save lives on: July 02, 2008, 08:51:47 PM
Mmmm, can you explain why the site has a search box for a webring that lists the best drinks and drinking sites?

Well, FWIW the name of the group is Underage Drinkers Against Drunk Driving, so apparently they're all for the drinking part, just not the drunk driving part.
929  News and Reviews / Mini-Reviews by Members / Re: Jungle Disk Mini-Review: offsite data storage on: July 02, 2008, 07:43:12 PM
lWill probably get Jungle Disk anyway cause I think it allows SFFS to use partial file update
Also, it's great to be able to browse your backups & keep an overview and have it all so accessible

I'm not sure whether or not JungleDisk will allow SFFS partial file update to work (but it might). Usually partial file update requires some corresponding software running on the server, but maybe SFFS can get around this somehow by keeping a database on the local machine.

What I do know is that with JD Plus you get partial file update automatically (but JD Plus is an additional 1.00 per month).  JD Plus runs the server component on the Amazon EC2 service, so the local JD software communicates to the JD Plus server (and you pay for that bandwidth, which should never be more than what you'd pay to directly store or retrieve a file directly from S3).  The JD Plus server then deals with the S3 storage, but Amazon does not charge transaction or bandwidth fees for EC2 access to S3.
930  News and Reviews / Mini-Reviews by Members / Re: Jungle Disk Mini-Review: offsite data storage on: July 02, 2008, 12:12:07 PM
my question is
Anyone in Europe using American storage for S3 ?

I'd suggest doing some research before using the European S3 servers with JungleDisk (on the JD website/forums).  I know that Euro S3 servers were not supported initially, and I believe that there are still some items that are not supported (I think that JD Plus currently does not support the European servers).
931  Main Area and Open Discussion / Living Room / Re: Evernote Icon - what the heck is it? Anyone actually like version 3 ? on: July 01, 2008, 03:53:54 PM
The splodge is an elephant, they never forget.

Seriously funny .... I want to save a note so where is the elephant?

Why not ...

Getting way off topic - the elephant icon reminds me of my favorite old floppy disc marketing from way back when:

[attachthumb=1]

http://home.comcast.net/~kevin_d_clark/ems/
932  Main Area and Open Discussion / General Software Discussion / Re: Can't install Comodo... winzip error - need help on: June 27, 2008, 04:05:03 PM
Mouser is right that you have the 64 bit version (which is for 64 bit XP or Vista).  In all likelihood you simply need to download the 32 bit version (which is for 32 bit XP or Vista).

On Comodo's download page they have a large button to download the 32 bit version and a simple link to download the 64-bit version - you want the big button.
933  Other Software / Developer's Corner / Re: Digital Signature to verify Publisher... on: June 27, 2008, 02:16:19 PM
However, remember that not any SSL certificate is considered acceptable for the purposes of code signing.  The certificates accepted for code signing are different from the certificates that browsers accept for SSL.

As far as I know, there are no free code signing certs.
934  Other Software / Developer's Corner / Re: Digital Signature to verify Publisher... on: June 26, 2008, 11:48:03 PM
I've never actually done it myself, but have worked at companies that signed their code - apparently it's a little complex getting set up, but once you have the scripts and certificates in place it's all basically automatic.

You can get started and test things using tools in Microsoft's SDKs:

http://msdn.microsoft.com...rary/aa379872(VS.85).aspx

But to sign code for public release, you need to purchase an official code signing certificate, which apparently costs at least $80/year:

http://www.wintellect.com...ier-than-you-thought.aspx

935  Main Area and Open Discussion / General Software Discussion / Re: A Warning about Thinkall.com on: June 17, 2008, 12:06:50 PM
To me it sounds a lot like "we will pay you more if we can all agree to pretend we never did anything wrong".

I think it's more because such an admission would open them to potentially more liability (maybe even criminal).  And if the 'disclaimer' were not part of the settlement, the settlement itself could be used as implicating evidence.  I think the worth of those disclaimers in terms or PR is pretty much zero.  They are strictly a legal necessity (for want of a better word).
936  Main Area and Open Discussion / General Software Discussion / Re: IDEA: CD-RW/DVD-RW emulated drive? on: June 12, 2008, 04:54:27 PM
What I don't really understand is why the same company produce two competing products (they also sell VirtualCD)

You know, I read the article (or at least scanned it) and didn't clue in to that fact. 

937  Main Area and Open Discussion / General Software Discussion / Re: IDEA: CD-RW/DVD-RW emulated drive? on: June 12, 2008, 03:47:51 PM
I'm not sure I quite understand what you mean by a CD/DVVD writer emulator.

The idea is that there are some applications like iTunes or Media Player that have a built-in burn to CD function, but do not contain an option to write to an image.  So, for example, if you want to convert some of your songs purchased in the iTunes store to MP3 you could burn the song to a CD then rip the CD to MP3's.  If you have a virtual CD writer you can save time and discs.
938  Main Area and Open Discussion / General Software Discussion / Re: IDEA: CD-RW/DVD-RW emulated drive? on: June 12, 2008, 11:54:09 AM
Interesting find.  There's also VirtualCD which claims to support a virtual CD/DVD burner function and it has been avaiable for a while (though I have not tried it):

http://www.virtualcd-online.com/

However, it does not claim to be able to support BlueRay or DVD-HD.
939  Other Software / Found Deals and Discounts / Re: Take Command v9 New $20 off, Upgrade $10 off,TC/LE $10 off on: June 12, 2008, 10:18:10 AM
For my needs, all I've ever really looked for in a command line tool is the ability to do things like paste the contents of my clipboard at the cmd prompt (I can't believe MS didn't allow this in Windows command line through XP - no idea about Vista. At least it's available in PowerShell)

A mouse right-click will paste in cmd.exe, but you have to have the "QuickEdit Mode" option selected in the Command Prompt Properties (it's on the Options tab) selected.  That option has been available since at least Win2K, but was off by default then.  I thought that the option was on by default in WinXP, but I could be wrong.

What you get with QuickEdit mode:

  • left mouse click lets you select text by dragging
  • right mouse click copies to the clipboard if there's a selection, otherwise it pastes what's in the clipboard


940  Main Area and Open Discussion / General Software Discussion / Re: Interesting Approach by the Profiteering Malware Author on: June 11, 2008, 07:09:56 PM
Maybe if the FBI or some other 'three letter agency' were to get infected...  I think this scheme would be 'broken' in short order.
The RC4 perhaps, but from a conspiracy theorist's point of view, were the government capable of breaking 1024 bit RSA in short order, it would be in their best interests, regardless of whatever information was encrypted, to keep that fact a secret.

I meant more from the point of view of being able to track down the blackmailer and using old fashioned methods of getting the key.
941  Main Area and Open Discussion / General Software Discussion / Re: Interesting Approach by the Profiteering Malware Author on: June 11, 2008, 06:51:37 PM
Probably more realistic to track down the bastard.
Why am I suddenly in support of waterboardingWink
Rubber hose cryptanalisys!  thumbs up

Maybe if the FBI or some other 'three letter agency' were to get infected...  I think this scheme would be 'broken' in short order.
942  Main Area and Open Discussion / General Software Discussion / Re: Interesting Approach by the Profiteering Malware Author on: June 11, 2008, 05:23:03 PM
why is Kaspersky going after the RSA key instead of the RC4 key?

Because the RC4 key applies to only a single instance of the infection.  If the RSA key is broken (actually it appears that there are 2 RSA keys - which one is used depends on the OS version of the machine that is infected) it will allow the recovery of any infection.

Now, if there's a flaw in how the RC4 key is generated (or in how the RC4 algorithm is implemented) then there might be another approach to recovering from the damage inflicted.  But I have no idea how likely that scenario is.
943  News and Reviews / Mini-Reviews by Members / Re: WebDrive Mini-Review: Caching FTP-to-LocalDrive Mapping Tool on: June 11, 2008, 05:13:52 PM
SFTPDrive is licensed 'per-user' so you can install on multiple machines.  This is the main reason I chose SFTPDrive over WebDrive.
Where did you find this information on the very limited website of SFTPdrive ?

Hmm, you're right.  I hope I wasn't mis-remembering something and passing on false information.  I've asked for a clarification from the vendor at their support 'forum':

http://getsatisfaction.co...ftpdrive_license_question

Edit: and the vendor replied within 10 minutes: "It's per user"

I hope he also updates the website...
944  Main Area and Open Discussion / General Software Discussion / Re: Interesting Approach by the Profiteering Malware Author on: June 11, 2008, 04:38:28 PM
How the author can decrypt files protected by a randomly generated RSA private key I am unsure. Perhaps it is not his/her intention to ever provide the decrypter?

Note: In the following, I'm speaking about how the malware works based on what I believe to be the case from very sketchy information - I could be missing the boat entirely...

The RSA key is not randomly generated - the RC4 key is.  Then that key is encrypted using the RSA public key.  At this point only a person who holds the corresponding RSA private key can recover the RC4 key.

The approach that Kaspersky seems to be advocating is trying to organize a distributed network of computers (similar to SETI@home) to brute force the RSA private key.
945  Main Area and Open Discussion / General Software Discussion / Re: Interesting Approach by the Profiteering Malware Author on: June 11, 2008, 02:17:06 PM
The best bet would probably be catching the malware while it's doing it's nasty crap, and doing a process memory dump to extract the keys.

That, or find out how to link the "unique ID" with the key.

I'd guess that the "unique ID" is the RC4 encryption key that has itself been encrypted with the RSA public key.  I'd also guess that the RC4 key is a randomly generated value that gets created right before the encryption of your data files.  If you're able to "catch" the malware at this point, it's probably best to simply stop it rather than extract the keys.

One key to solving this problem (pardon the pun) for people who get hit with finding their data files encrypted is if there's a vulnerability in the RC4 key generation process - if that's the case it may be possible to recreate those keys without the help of the extortionist.  For example, if the malware author makes a mistake similar to the flaw found not too long ago for SSH key generation on Debian distributions, recovering the data would be pretty easy.  But that's a big "if".


946  Main Area and Open Discussion / General Software Discussion / Re: Ugly Softmaker Office icons? No more. on: June 09, 2008, 05:50:47 PM
I wouldn't want to hack the .exe files themselves. Isn't there a way to override the icons for specific files using desktop.ini or somesuch?

You can do this in Explorer's "Tools/Folder Options.../File Types/Advanced" dialog.  If you have just a few file types to do this for this might be simpler than getting application.

And, of course, for any program shortcuts you can change the icon using the Properties page for the shortcut.
947  News and Reviews / Mini-Reviews by Members / Re: WebDrive Mini-Review: Caching FTP-to-LocalDrive Mapping Tool on: June 07, 2008, 07:07:27 PM
SftpDrive - the main commercial competitor to WebDrive, cheaper, available for mac.  Looks good but not as powerful, and less protocols supported.

I have an SFTPDrive license, and it works very nicely (except for a proxy problem I have - see below). I'd like to mention a couple things:

  • SFTPDrive is licensed 'per-user' so you can install on multiple machines.  This is the main reason I chose SFTPDrive over WebDrive.
  • Unfortunately, SFTPDrive does not support HTTP proxies, so my use of it at work has been severely hampered when the proxy setup changed a while ago.  I don't know whether or not WebDrive supports HTTP proxies.
948  Main Area and Open Discussion / General Software Discussion / Re: Abusive Behahiour (Rant about Adobe Digital Editions) on: June 05, 2008, 05:31:25 PM
This is the fundamental problem with DRM  - it always ends up causing a hassle for the legitimate purchaser. 

I can sure understand the publishers' desire to ensure they get what's due, but heavy-handed DRM is nearly always something that'll get me to reconsider a purchase.
949  Main Area and Open Discussion / General Software Discussion / Re: Whatever happened to... <INSERT DEADWARE HERE> on: June 05, 2008, 02:07:08 PM
IndieVolume  - I was really hoping he'd get the Flash problems fixed Sad
CodeWright - a nice editor killed by Borland (or whatever their name is this year)
950  Other Software / Found Deals and Discounts / Re: Take Command Console LE from JPSoft on: June 04, 2008, 02:07:57 AM
No, I don't think misread.  "DOS box" is technically incorrect even if a common term for what is properly called a console window.
Pages: Prev 1 ... 33 34 35 36 37 [38] 39 40 41 42 43 ... 52 Next
DonationCoder.com | About Us
DonationCoder.com Forum | Powered by SMF
[ Page time: 0.046s | Server load: 0.35 ]