Constant Alertness

Krack’d WPA2…and now, ROCA

Leave a comment

The above video shows how a Man in the Middle attack is easily mounted against a user connected to the system, intercepting the data flow as if it weren’t encrypted. Although a properly set up website with https (SSL) encryption will still hide a users data, an improperly set up site will not protect the user.

It is possible that a user will go to a site, see that it is protected by the classic lock symbol appearing on the URL line of the browser, then get hacked while thinking they are securely passing credit cards, email addresses, password and other information. The video shows Match.co.uk being broken.

The discoverer of the attack says in his paper that the problem is a weakness in the WiFi standard itself, not any particular product. See: Breaking WPA2 by forcing nonce reuse

Updates will be required on all devices; routers, phones, portable computers, whether Android or Apple or Samsung or Cisco or Belkin or Linksys or Debian or Ubuntu or any of the suppliers of chips like Broadcom or …well, everyone. There is a site tracking information on these companies: https://www.bleepingcomputer.com/news/security/list-of-firmware-and-driver-updates-for-krack-wpa2-vulnerability/

Other articles:

https://www.wordfence.com/blog/2017/10/krack-and-roca/?utm_source=list&utm_medium=email&utm_campaign=101617

https://www.schneier.com/blog/archives/2017/10/new_krack_attac.html

What is the good news? First, trusting a wifi network has always been hit or miss. A poorly set up system would allow me to break into your computer on the other side of the room…or at least have a chance of it. So, now more people will be wary.

Another good point is that equipment which does not get patches out quickly – I’m thinking 3rd party Android phones from smaller suppliers for example, they are going to be known for the bad actors that they are. 

Finally, I suppose it will get more of us onto VPN, where a good tunnel still works. Yahoo! more things to know…

=-=-=

There is another crack that just hit the public as well, this one called ROCA. It has to do with a horror for the many who have used a particular bed of generator numbers to fulfill the promise of randomness when generating public keys.

We all know public key encryption, yes? The attack is on public key encryption. Too detailed to make a simple summary article. But it is a condemnation of keeping things hidden as a method for security – what’s called “Security Through Obsurity”.  When it is open and public, we can all see if there are hooks for the bad guys or the government (redundant?), or just plain errors a lot sooner. Here’s is the detailed Technica article about it:

Millions of high-security crypto keys crippled by newly discovered flaw

Constant Alertness

Krack’d WPA2…and now, ROCA

Leave a comment

The above video shows how a Man in the Middle attack is easily mounted against a user connected to the system, intercepting the data flow as if it weren’t encrypted. Although a properly set up website with https (SSL) encryption will still hide a users data, an improperly set up site will not protect the user.

It is possible that a user will go to a site, see that it is protected by the classic lock symbol appearing on the URL line of the browser, then get hacked while thinking they are securely passing credit cards, email addresses, password and other information. The video shows Match.co.uk being broken.

The discoverer of the attack says in his paper that the problem is a weakness in the WiFi standard itself, not any particular product. See: Breaking WPA2 by forcing nonce reuse

Updates will be required on all devices; routers, phones, portable computers, whether Android or Apple or Samsung or Cisco or Belkin or Linksys or Debian or Ubuntu or any of the suppliers of chips like Broadcom or …well, everyone. There is a site tracking information on these companies: https://www.bleepingcomputer.com/news/security/list-of-firmware-and-driver-updates-for-krack-wpa2-vulnerability/

Other articles:

https://www.wordfence.com/blog/2017/10/krack-and-roca/?utm_source=list&utm_medium=email&utm_campaign=101617

https://www.schneier.com/blog/archives/2017/10/new_krack_attac.html

What is the good news? First, trusting a wifi network has always been hit or miss. A poorly set up system would allow me to break into your computer on the other side of the room…or at least have a chance of it. So, now more people will be wary.

Another good point is that equipment which does not get patches out quickly – I’m thinking 3rd party Android phones from smaller suppliers for example, they are going to be known for the bad actors that they are. 

Finally, I suppose it will get more of us onto VPN, where a good tunnel still works. Yahoo! more things to know…

=-=-=

There is another crack that just hit the public as well, this one called ROCA. It has to do with a horror for the many who have used a particular bed of generator numbers to fulfill the promise of randomness when generating public keys.

We all know public key encryption, yes? The attack is on public key encryption. Too detailed to make a simple summary article. But it is a condemnation of keeping things hidden as a method for security – what’s called “Security Through Obsurity”.  When it is open and public, we can all see if there are hooks for the bad guys or the government (redundant?), or just plain errors a lot sooner. Here’s is the detailed Technica article about it:

Millions of high-security crypto keys crippled by newly discovered flaw

Video Processing

Light Illusion IBC Show Specials | Probes and Software

Leave a comment

To order any of the following offers please e-mail: [email protected] stating the item requirements.
A quote for payment will be provided, with payment to be made via a bank transfer.
(PayPal payments are possible for an additional fee of 3.5%)
Please note some locations may incur a supplemental hardware shipping fee – this will be defined when a quotation is supplied.

LightSpace CMS Professional Discounts

LightSpace CMS Software – unlimited license availability, until end of IBC show
LightSpace XPT – Book price: £2,175.00 – Discount price: £1,087.50 – Discount value: £1087.50 – Discount percentage: 50%
LightSpace PRO – Book price: £1,875.00 – Discount price: £1,125.00 – Discount value: £750.00 – Discount percentage: 40%
LightSpace CAL – Book price: £1,275.00 – Discount price: £828.75 – Discount value: £446.25 – Discount percentage: 35%
LightSpace LTE – Book price: £525.00 – Discount price: £367.50 – Discount value: £157.50 – Discount percentage: 30%

LightSpace CMS Home Cinema Discounts

LightSpace CMS Software – unlimited license availability, until end of IBC show
LightSpace HTP – Book price: £1,125.00 – Discount price: £675.00 – Discount value: £450.00 – Discount percentage: 40%
LightSpace HTL – Book price: £375.00 – Discount price: £262.50 – Discount value: £112.50 – Discount percentage: 30%

If any of the above software discounts are to be combined with a LightSpace CMS upgrade, say from LightSpace LTE to LightSpace XPT, the discount percentage will be applied ‘after’ the upgrade cost is calculated, as stated on the Support pages of the website.

Probe Discounts

Klein Probes – three (3) units available each model, until end of IBC show
Klein K10-A – Book price: £5,482.00 – Discount price: £4,385.60 – Discount value: £1096.40 – Discount percentage: 20%
Klein K80 – Book price: £3,971.00 – Discount price: £3,176.80 – Discount value: £794.20 – Discount percentage: 20%

Jeti Probes – unlimited unit availability, until 17th October
Jeti Spectraval 1501 – Book price £4,859.00 – Discount price: £4,081.56 – Discount value: £777.44 – Discount percentage: 16%
Jeti Spectraval 1511 – Book price: £6,185.00 – Discount price: £5,195.40 – Discount value: £989.60 – Discount percentage: 16%
Jeti Specbos 1211L – Book price: £6,516.00 – Discount price: £5,473.44 – Discount value: £1042.56 – Discount percentage: 16%

basICColor DISCUS probe – three (3) units available, until end of IBC show
basICColor DISCUS – Book price: £746.00 – Discount price: £671.40 – Discount value: £74.60 – Discount percentage: 10%

X-Rite Probes – unlimited unit availability, until end of IBC show
i1 Display Pro OEM – Book price: £227.00 – Discount price: £192.95 – Discount value: £34.05 – Discount percentage: 15%
i1 Pro 2 – Book price: £874.00 – Discount price: £742.90 – Discount value: £131.10 – Discount percentage: 15%

Signal Generators & Analysers Discount

Murideo Generator & Analyser – unlimited unit availability, until end of IBC show
Murideo SIX-G – Book price: £1,982.00– Discount price: £1,585.60 – Discount value: £396.40 – Discount percentage: 20%
Murideo SIX-A – Book price: £1,596.00– Discount price: £1,278.80 – Discount value: £317.20 – Discount percentage: 20%

LUT Box Discount

Murideo LUT Box – unlimited unit availability, until end of IBC show
Murideo Prisma – Book price: £793.00– Discount price: £ 591.20 – Discount value: £147.80 – Discount percentage: 20%

To order any of the above offers please e-mail: [email protected] stating the item requirements.
A quote for payment will be provided, with payment to be made via a bank transfer.
(PayPal payments are possible for an additional fee of 3.5%)
Please note some locations may incur an additional hardware shipping fee – this will be defined when a quotation is supplied.

Video Processing

Light Illusion IBC Show Specials | Probes and Software

Leave a comment

To order any of the following offers please e-mail: [email protected] stating the item requirements.
A quote for payment will be provided, with payment to be made via a bank transfer.
(PayPal payments are possible for an additional fee of 3.5%)
Please note some locations may incur a supplemental hardware shipping fee – this will be defined when a quotation is supplied.

LightSpace CMS Professional Discounts

LightSpace CMS Software – unlimited license availability, until end of IBC show
LightSpace XPT – Book price: £2,175.00 – Discount price: £1,087.50 – Discount value: £1087.50 – Discount percentage: 50%
LightSpace PRO – Book price: £1,875.00 – Discount price: £1,125.00 – Discount value: £750.00 – Discount percentage: 40%
LightSpace CAL – Book price: £1,275.00 – Discount price: £828.75 – Discount value: £446.25 – Discount percentage: 35%
LightSpace LTE – Book price: £525.00 – Discount price: £367.50 – Discount value: £157.50 – Discount percentage: 30%

LightSpace CMS Home Cinema Discounts

LightSpace CMS Software – unlimited license availability, until end of IBC show
LightSpace HTP – Book price: £1,125.00 – Discount price: £675.00 – Discount value: £450.00 – Discount percentage: 40%
LightSpace HTL – Book price: £375.00 – Discount price: £262.50 – Discount value: £112.50 – Discount percentage: 30%

If any of the above software discounts are to be combined with a LightSpace CMS upgrade, say from LightSpace LTE to LightSpace XPT, the discount percentage will be applied ‘after’ the upgrade cost is calculated, as stated on the Support pages of the website.

Probe Discounts

Klein Probes – three (3) units available each model, until end of IBC show
Klein K10-A – Book price: £5,482.00 – Discount price: £4,385.60 – Discount value: £1096.40 – Discount percentage: 20%
Klein K80 – Book price: £3,971.00 – Discount price: £3,176.80 – Discount value: £794.20 – Discount percentage: 20%

Jeti Probes – unlimited unit availability, until 17th October
Jeti Spectraval 1501 – Book price £4,859.00 – Discount price: £4,081.56 – Discount value: £777.44 – Discount percentage: 16%
Jeti Spectraval 1511 – Book price: £6,185.00 – Discount price: £5,195.40 – Discount value: £989.60 – Discount percentage: 16%
Jeti Specbos 1211L – Book price: £6,516.00 – Discount price: £5,473.44 – Discount value: £1042.56 – Discount percentage: 16%

basICColor DISCUS probe – three (3) units available, until end of IBC show
basICColor DISCUS – Book price: £746.00 – Discount price: £671.40 – Discount value: £74.60 – Discount percentage: 10%

X-Rite Probes – unlimited unit availability, until end of IBC show
i1 Display Pro OEM – Book price: £227.00 – Discount price: £192.95 – Discount value: £34.05 – Discount percentage: 15%
i1 Pro 2 – Book price: £874.00 – Discount price: £742.90 – Discount value: £131.10 – Discount percentage: 15%

Signal Generators & Analysers Discount

Murideo Generator & Analyser – unlimited unit availability, until end of IBC show
Murideo SIX-G – Book price: £1,982.00– Discount price: £1,585.60 – Discount value: £396.40 – Discount percentage: 20%
Murideo SIX-A – Book price: £1,596.00– Discount price: £1,278.80 – Discount value: £317.20 – Discount percentage: 20%

LUT Box Discount

Murideo LUT Box – unlimited unit availability, until end of IBC show
Murideo Prisma – Book price: £793.00– Discount price: £ 591.20 – Discount value: £147.80 – Discount percentage: 20%

To order any of the above offers please e-mail: [email protected] stating the item requirements.
A quote for payment will be provided, with payment to be made via a bank transfer.
(PayPal payments are possible for an additional fee of 3.5%)
Please note some locations may incur an additional hardware shipping fee – this will be defined when a quotation is supplied.

Storage

If U B M&E – Free 100TB | Caringo

Leave a comment

caring_logo

PRESS RELEASE                         
 
Caringo Offers No-Cost 100 TBs of S3 Accessible, Secure Scale-Out Storage to M&E Firms
 
Company removes security and cost barriers to entry for M&E firms wanting the benefits 
of object storage with no upfront cost
 
Austin, TX, August 29, 2017 –Caringo, a scale-out cloud & object storage platform company, today announced that it is offering at no-cost a full-featured 100 TB Swarm licenses to qualified Media & Entertainment (M&E) firms that are struggling to store, manage and protect their ever-growing library of digital assets while keeping them securely accessible. Qualified firms include but are not limited to recording studios, content creation and post-production houses, broadcasters, and studios.


“IT execs in the M&E space are under extreme pressure to provide long-term accessible storage and instant search and delivery to customers and viewers,” said Adrian Herrera, Vice President of Marketing at Caringo. “The cloud isn’t a viable option for many because of security and cost concerns. The solution to this is using the same technology that powers major clouds—object storage, secure in their data center. With our announcement today, we are making it easy for qualified firms to get started by offering 100 terabytes of storage for free.”

The complimentary 100 TB license and integration consultation is immediately available to qualified M&E firms. Interested parties can visit https://www.caringo.com/MandE/ for more information. 

Field-hardened, vetted and tested for over a decade to the highest standards of data integrity and reliability, Caringo Swarm serves as the foundation for securely accessible digital asset libraries and storage services for a wide range of government, telecommunications, education, corporate and entertainment organizations including the Department of Defense, Department of Justice, BT, iQ Media, Johns Hopkins University, British Telecom, NEP and hundreds more worldwide. Swarm installs on any mix of standard storage hardware, transforming it into a limitless and seamless pool of storage resources with asset protection, lifecycle management, search and security built in. 

The result is a solution that easily integrates into media production and post, distribution and archive workflows, delivering up to a 75% reduction in storage TCO through unique hardware, operational and workflow efficiencies including:

  • Industry-leading hardware and server utilization for your content. Use up to 95% of hard drive space and 100% of drive bays for digital assets. 
  • The ability to automatically add performance or capacity in 90 seconds and continuously upgrade hardware without downtime or disruption to asset accessibility.
  • Automated policy-based protection to optimize for rapid access or data center footprint delivering enterprise-grade durability while defending against ransomware attacks.
  • Cross-platform collaboration and access enabled by Write/Read/Edit via HTTP, S3 or NFS interchangeably. 
  • Rapid asset retrieval and instant delivery via integrated search with the ability to add custom metadata.


Caringo Swarm is the ideal solution for M&E firms looking to balance the industry expectations that storage should be free and assets should be immediately accessible from any device.  

Follow Caringo
LinkedIn:https://www.linkedin.com/company/caringo-inc-
Twitter: https://twitter.com/CaringoStorage


 
– # # # –
 
About Caringo
Founded in 2005, Caringo is committed to helping customers unlock the value of their data and solve issues associated with data protection, management, organization and search at massive scale. Caringo’s flagship product, Swarm, eliminates the need to migrate data into disparate solutions for long-term preservation, delivery and analysis—radically reducing total cost of ownership. Today, Caringo Swarm Cloud and Object Storage Platform is the foundation for simple, bulletproof, limitless storage solutions for iQ Media, Texas Tech University Systems, NEP, the Department of Defense, the Brazilian Federal Court System, City of Austin, Telefónica, British Telecom, Ask.com, Johns Hopkins University and hundreds more worldwide. Visit http://www.caringo.com to learn more.

 
Storage

If U B M&E – Free 100TB | Caringo

Leave a comment

caring_logo

PRESS RELEASE                         
 
Caringo Offers No-Cost 100 TBs of S3 Accessible, Secure Scale-Out Storage to M&E Firms
 
Company removes security and cost barriers to entry for M&E firms wanting the benefits 
of object storage with no upfront cost
 
Austin, TX, August 29, 2017 –Caringo, a scale-out cloud & object storage platform company, today announced that it is offering at no-cost a full-featured 100 TB Swarm licenses to qualified Media & Entertainment (M&E) firms that are struggling to store, manage and protect their ever-growing library of digital assets while keeping them securely accessible. Qualified firms include but are not limited to recording studios, content creation and post-production houses, broadcasters, and studios.


“IT execs in the M&E space are under extreme pressure to provide long-term accessible storage and instant search and delivery to customers and viewers,” said Adrian Herrera, Vice President of Marketing at Caringo. “The cloud isn’t a viable option for many because of security and cost concerns. The solution to this is using the same technology that powers major clouds—object storage, secure in their data center. With our announcement today, we are making it easy for qualified firms to get started by offering 100 terabytes of storage for free.”

The complimentary 100 TB license and integration consultation is immediately available to qualified M&E firms. Interested parties can visit https://www.caringo.com/MandE/ for more information. 

Field-hardened, vetted and tested for over a decade to the highest standards of data integrity and reliability, Caringo Swarm serves as the foundation for securely accessible digital asset libraries and storage services for a wide range of government, telecommunications, education, corporate and entertainment organizations including the Department of Defense, Department of Justice, BT, iQ Media, Johns Hopkins University, British Telecom, NEP and hundreds more worldwide. Swarm installs on any mix of standard storage hardware, transforming it into a limitless and seamless pool of storage resources with asset protection, lifecycle management, search and security built in. 

The result is a solution that easily integrates into media production and post, distribution and archive workflows, delivering up to a 75% reduction in storage TCO through unique hardware, operational and workflow efficiencies including:

  • Industry-leading hardware and server utilization for your content. Use up to 95% of hard drive space and 100% of drive bays for digital assets. 
  • The ability to automatically add performance or capacity in 90 seconds and continuously upgrade hardware without downtime or disruption to asset accessibility.
  • Automated policy-based protection to optimize for rapid access or data center footprint delivering enterprise-grade durability while defending against ransomware attacks.
  • Cross-platform collaboration and access enabled by Write/Read/Edit via HTTP, S3 or NFS interchangeably. 
  • Rapid asset retrieval and instant delivery via integrated search with the ability to add custom metadata.


Caringo Swarm is the ideal solution for M&E firms looking to balance the industry expectations that storage should be free and assets should be immediately accessible from any device.  

Follow Caringo
LinkedIn:https://www.linkedin.com/company/caringo-inc-
Twitter: https://twitter.com/CaringoStorage


 
– # # # –
 
About Caringo
Founded in 2005, Caringo is committed to helping customers unlock the value of their data and solve issues associated with data protection, management, organization and search at massive scale. Caringo’s flagship product, Swarm, eliminates the need to migrate data into disparate solutions for long-term preservation, delivery and analysis—radically reducing total cost of ownership. Today, Caringo Swarm Cloud and Object Storage Platform is the foundation for simple, bulletproof, limitless storage solutions for iQ Media, Texas Tech University Systems, NEP, the Department of Defense, the Brazilian Federal Court System, City of Austin, Telefónica, British Telecom, Ask.com, Johns Hopkins University and hundreds more worldwide. Visit http://www.caringo.com to learn more.

 
Security

Tutorial VPN and Software for…

Leave a comment

If you work for a large corporation, you are probably already familiar with the extra steps and heartache and benefits of using a VPN service between you and the mothership.

But us peasants? Most often it is known as a absolutely needed requirement that can be put off until …well, some important until. Here are two links to an excellent explanation of everything to consider in choosing a VPN – under the disguise of Best VPN Providers of September/2017 and a lesson on what to look for in a when choosing a VPN access tool, Hotspot Shield Review – Updated 2017 (disguised as a write up about the VPN app Hotspot Shield.)

Security

Tutorial VPN and Software for…

Leave a comment

If you work for a large corporation, you are probably already familiar with the extra steps and heartache and benefits of using a VPN service between you and the mothership.

But us peasants? Most often it is known as a absolutely needed requirement that can be put off until …well, some important until. Here are two links to an excellent explanation of everything to consider in choosing a VPN – under the disguise of Best VPN Providers of September/2017 and a lesson on what to look for in a when choosing a VPN access tool, Hotspot Shield Review – Updated 2017 (disguised as a write up about the VPN app Hotspot Shield.)

Video Processing

Ubuntu/VirtualBox setup followup

Leave a comment

When setting up VirtualBox there are two time sinks that one can be easily get trapped by.

The first is getting an Internet connection. In theory, the Internet link of the computer that you are setting the Virtual Machine onto will be automagically linked to. Open Firefox and off you go.

Yeah; until it doesn’t auto set up. Then, it is poking around until you find the right combination of not-so-obvious tricks. And here is a synopsis that I just had to find and go through, and which hopefully will save you some time.

  1. Shut down the OS. Leave VirtualBox running.
  2. Click onto the Ubuntu VM
  3. Up above or on the right panel, choose Network
  4. Click Adapter 1 and set for NAT
  5. Click Adapter 2 and set for Bridged Adapter, then select the adapter that has the link: e.g., en0, Wi-Fi (Airport)
  6. Click OK.

As long as that is open,

  1. Click on Ports
  2. Click on USB. Make certain that the USB 3.0 Controller is selected. 
  3. Click OK.
  4. When you have the Virtual Machine running, click the icon on the bottom right that looks like a USB plug. Select USB Settings 
  5. On the right side click the icon with a Plus (+) symbol on the USB Plug.
  6. Select a plugged in drive from the list. If the drive that you expect to be showing isn’t showing, it may have been captured by the computers native drive system. Every Operating System is going to have a little different method for disconnecting an attached drive. Technically, it is called an UnMount. It gets a 2nd dose of complication because you can’t just say ‘unmount’…you must say umt (or something like that) and the name of the drive…which you probably don’t know. 
  7. If you are only going to do this once in a while, go to your Disk Utility, find the drive on the list and click unmount.

At some future date, this article may be appended to include some more clues about unmounting, but this articles purpose was to get the 1st two points onto this virtual tissue.

…Like Tangents In Rain