1. Thu28
    Jan2010
    @12:00

    Update: Likely Data Security Breach at iContact.com

    On the day I posted Suspected Data Security Breach at iContact.com I was contacted via Facebook by someone with an email address @icontact.com. I forwarded them the same information that I sent to their abuse team. I’ve not heard anything back since.

    Others have picked up on this likely breach at iContact.com:

    iContact have answered some concerns: they are looking into the problem.

    I have been contacted by one of the sites/services whose address-list has been breached, simply to ask to be kept in the loop with iContact.com’s response.

    I have done some further research into my mail folders. I have found one address which iContact.com have on record which has not yet received any spam. As a result, this address hasn’t been compromised and has been replaced by HIDDEN on this public website. iContact’s abuse team has been provided with the full details, however:

    Received: from smtp7.icpbounce.com ([::ffff:216.27.93.119])
 by faelix.net with esmtp; Tue, 01 Jan 2008 01:12:36 +0000
 id 000013C1.47799384.00003B72
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
       by smtp7.icpbounce.com (Postfix) with ESMTP id 43D6197750
       for <HIDDEN>; Mon, 31 Dec 2007 19:54:34 -0500 (EST)
Date: Mon, 31 Dec 2007 19:54:34 -0500

    This address hasn’t received any emails this month:

    mail:~# ls -l /var/log/mail.log*
-rw-r----- 1 root adm  9351785 2010-01-28 11:45 /var/log/mail.log
-rw-r----- 1 root adm 13870643 2010-01-24 06:23 /var/log/mail.log.1
-rw-r----- 1 root adm  1451508 2010-01-17 06:24 /var/log/mail.log.2.gz
-rw-r----- 1 root adm  1257403 2010-01-10 06:24 /var/log/mail.log.3.gz
-rw-r----- 1 root adm  1828195 2010-01-03 06:25 /var/log/mail.log.4.gz
mail:~# zgrep HIDDEN /var/log/mail.log*
mail:~#

    The last email sent to this address was via iContact.com on 17th July 2009:

    Received: from smtp15.icpbounce.com ([::ffff:216.27.93.111])
 by faelix.net with esmtp; Fri, 17 Jul 2009 23:30:51 +0100
 id 000010FE.4A60FB9D.000039C9
Received: from localhost.localdomain (localhost [127.0.0.1])
       by smtp15.icpbounce.com (Postfix) with ESMTP id D37AA6A0C98
       for <HIDDEN>; Fri, 17 Jul 2009 18:01:58 -0400 (EDT)
Date: Fri, 17 Jul 2009 18:01:58 -0400

    Timeline

    March 2002
    photonlight@maz.nu receives its first iContact.com mail
    1st January 2008
    HIDDEN receives its first iContact.com mail
    7th Feb 2009
    macheist.com@maz.nu receives its first iContact.com mail
    1st April 2009
    macheist.com@maz.nu receives its last iContact.com mail (address now blacklisted)
    2nd April 2009
    bloomsbury.com@maz.nu receives its first iContact.com mail
    14th May 2009
    slimes@maz.nu receives its first iContact.com mail
    17th July 2009
    HIDDEN receives its last iContact.com mail (address still valid)
    27th July 2009
    bloomsbury.com@maz.nu receives its last iContact.com mail (address now blacklisted)
    30th December 2009
    photonlight@maz.nu receives its last iContact.com mail (address now blacklisted)
    18th January 2010
    slimes@maz.nu receives its last iContact.com mail (address now blacklisted)

    At first I wondered if the anomalous address, HIDDEN, was an indicator that perhaps only addresses recently sent a newsletter by iContact.com had been breached (i.e. those contacted after 17th July 2009). The counter-example is macheist.com@maz.nu which has been receiving emails only via Google’s mailers since April 1st 2009, so that theory doesn’t hold water. However, it would appear that not all of my addresses on file at iContact have been spammed yet, so perhaps this isn’t a total breach… or perhaps I’m still waiting for HIDDEN to be hit!

    0 notes
    Comments (View)
  2. Mon25
    Jan2010
    @17:38

    Suspected Data Security Breach at iContact.com

    I suspect iContact.com has suffered a data security compromise.

    Summary

    I have received four nearly-identical spams to four different addresses known only to myself and four distinct websites. These four websites all use iContact.com for newsletter mailing. I have also received this spam to a spam-trap address, but importantly, to no other unique addresses that I use with other websites. The evidence points strongly to a data breach at iContact.com.

    Evidence

    Four addresses known only to four websites and myself have begun receiving spam today. Each address below links through to the spam in question.

    All four websites in question (photonlight, slimelight, macheist and bloomsbury) have sent me emails via iContact. Extracts of the beginning headers of legitimate emails are as follows:

    Received: from drone15.ral.icpbounce.com ([::ffff:66.192.165.135])
  by mx10.faelix.net with esmtp; Wed, 30 Dec 2009 19:16:37 +0000
  id 0000C014.4B3BA715.00001A1E
Received: from localhost.localdomain (localhost [127.0.0.1])
	by drone15.ral.icpbounce.com (Postfix) with ESMTP id CA9D776C0CC
	for <photonlight@maz.nu>; Wed, 30 Dec 2009 14:16:36 -0500 (EST)
Date: Wed, 30 Dec 2009 14:16:36 -0500
To: photonlight@maz.nu

    Received: from drone5.rtp.icpbounce.com ([::ffff:74.202.227.45])
  by mx10.faelix.net with esmtp; Mon, 27 Jul 2009 10:17:55 +0000
  id 00006005.4A6D7ED3.000023ED
Received: from localhost.localdomain (localhost [127.0.0.1])
	by drone5.rtp.icpbounce.com (Postfix) with ESMTP id A13E6438A76
	for <bloomsbury.com@maz.nu>; Mon, 27 Jul 2009 06:17:50 -0400 (EDT)
Date: Mon, 27 Jul 2009 06:17:50 -0400
To: bloomsbury.com@maz.nu

    Received: from smtp8.icpbounce.com ([::ffff:216.27.93.118])
  by faelix.net with esmtp; Sun, 15 Mar 2009 01:02:05 +0000
  id 000013D9.49BC538D.0000767F
Received: from localhost.localdomain (localhost [127.0.0.1])
	by smtp8.icpbounce.com (Postfix) with ESMTP id 6E1AF97161
	for <macheist.com@maz.nu>; Sat, 14 Mar 2009 21:01:44 -0400 (EDT)
Date: Sat, 14 Mar 2009 21:01:44 -0400
To: macheist.com@maz.nu

    Received: from smtp3.icpbounce.com ([::ffff:216.27.93.123])
  by mx10.faelix.net with esmtp; Thu, 14 Jan 2010 17:59:02 +0000
  id 0000C00A.4B4F5B66.0000129A
Received: from localhost.localdomain (localhost [127.0.0.1])
	by smtp3.icpbounce.com (Postfix) with ESMTP id 4124C596396
	for <slimes@maz.nu>; Thu, 14 Jan 2010 12:58:58 -0500 (EST)
Date: Thu, 14 Jan 2010 12:58:58 -0500
To: slimes@maz.nu

    The only other addresses to receive the junk-mail in question are spam-traps, known to receive large amounts of spam: my Debian consultant email address. No other addresses I use (there are several hundred) has received this spam today. Therefore I do not feel that a virus on my laptop or a compromise of my mail servers has leaked these addresses.

    I feel it is highly unlikely that four different websites would all have their mailing list databases separately compromised. Applying Occam’s Razor, the simplest explanation is that the common element — iContact.com — is the source of these email addresses of mine.

    It is my belief, having read their website and spoken to customer services, that iContact do abide by their strict privacy and anti-spam policies. I do not believe they have sold their address database to spammers. I fear they have been victims of an attack against their database servers, or possibly an disgruntled insider has leaked their database.

    Their abuse team has been notified, and I await their feedback.

    0 notes
    Comments (View)
  3. Wed20
    Jan2010
    @10:04

    SSHKeychain on Snow Leopard

    I am an avid user of MacPorts, but it seems some things are broken with Snow Leopard. In particular it seems one cannot build SSHKeychain:

    [~]% sudo port install SSHKeychain
--->  Computing dependencies for SSHKeychain
--->  Fetching SSHKeychain
--->  Verifying checksum(s) for SSHKeychain
--->  Extracting SSHKeychain
--->  Applying patches to SSHKeychain
--->  Configuring SSHKeychain
--->  Building SSHKeychain
Error: Target org.macports.build returned: shell command "cd "/opt/local/var/macports/build/_opt_local_var_macports_sources_rsync.macports.org_release_ports_aqua_SSHKeychain/work/0.8.2" && xcodebuild  -target "SSHKeychain" -configuration Deployment build OBJROOT=build/ SYMROOT=build/ MACOSX_DEPLOYMENT_TARGET=10.6 ARCHS=x86_64 SDKROOT= ARCHS=i386" returned error 1
Command output: 
=== BUILD NATIVE TARGET TunnelRunner OF PROJECT SSHKeychain WITH CONFIGURATION Deployment ===
Check dependencies
GCC 4.2 is not compatible with the Mac OS X 10.4 SDK (file TunnelRunner.c)
GCC 4.2 is not compatible with the Mac OS X 10.4 SDK (file TunnelRunner.c)
** BUILD FAILED **


Error: Status 1 encountered during processing.
Before reporting a bug, first run the command again with the -d flag to get complete output.

    To fix this, I simply changed “10.4u” and “10.4” on lines 922 and 924 to “10.5” in the xcodeproj file:

    /opt/local/var/macports/build/_opt_local_var_macports_sources_rsync.macports.org_release_ports_aqua_SSHKeychain/work/0.8.2/SSHKeychain.xcodeproj/project.pbxproj

	  	CC39D6380921118A00FE3BC5 /* Development */ = {
                        isa = XCBuildConfiguration;
	           	buildSettings = {
				ARCHS = (
                                	ppc,
		                        i386,
		                );
		                MACOSX_DEPLOYMENT_TARGET_i386 = 10.5;
		                MACOSX_DEPLOYMENT_TARGET_ppc = 10.3;
		                SDKROOT_i386 = /Developer/SDKs/MacOSX10.5.sdk;
		                SDKROOT_ppc = /Developer/SDKs/MacOSX10.3.9.sdk;
		        };
		        name = Development;
		};

    Also further down on lines 936 and 938:

    /opt/local/var/macports/build/_opt_local_var_macports_sources_rsync.macports.org_release_ports_aqua_SSHKeychain/work/0.8.2/SSHKeychain.xcodeproj/project.pbxproj

		CC39D6390921118A00FE3BC5 /* Deployment */ = {
		        isa = XCBuildConfiguration;
		        buildSettings = {
		                ARCHS = (
                                        ppc,
                                        i386,
				);
                                MACOSX_DEPLOYMENT_TARGET_i386 = 10.5;
				MACOSX_DEPLOYMENT_TARGET_ppc = 10.3;
				SDKROOT_i386 = /Developer/SDKs/MacOSX10.5.sdk;
				SDKROOT_ppc = /Developer/SDKs/MacOSX10.3.9.sdk;
			};
                        name = Deployment;
		};

    …and then…

    [~]% sudo port install SSHKeychain
--->  Computing dependencies for SSHKeychain
--->  Building SSHKeychain
--->  Staging SSHKeychain into destroot
--->  Installing SSHKeychain @0.8.2_0
--->  Activating SSHKeychain @0.8.2_0
--->  Cleaning SSHKeychain

    Alternatively, if you wish to just download it, it is available at http://fs.maz.nu/sshkeychain-0.8.2-sl.app.zip.

    0 notes
    Comments (View)
  4. Thu24
    Dec2009
    @23:48

    PGP Key 2010

    The Christmas Eve ritual again; signed by the 2009 key and my master key.

    pub   2048R/E977C9A4 2009-12-24 [expires: 2011-02-14]
      Key fingerprint = 03EE F5C2 285A D126 25BD  FC33 E65F 61D3 E977 C9A4
uid                  Marek Isalski (2010 General Use) 
sub   2048R/44A90D43 2009-12-24 [expires: 2011-02-14]
sub   1024D/48C60E25 2009-12-24 [expires: 2011-02-14]
sub   2048g/C3D6146F 2009-12-24 [expires: 2011-02-14]

    Here follows the key:

    -----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.8 (Darwin)
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=kiti
-----END PGP PUBLIC KEY BLOCK-----
    0 notes
    Comments (View)
  5. Tue01
    Dec2009
    @10:41

    Fingerprints versus Eczema 2009

    In 2005 I wrote my blog post Fingerprints versus Eczema. While I have determined many of the allergens and chemicals which provoke my eczema in the intervening years — and eliminated them — from time to time my skin gets dry and cracked, particularly as the winter months approach. On the day after I spotted the campaign for the Manchester launch of the notional identity card I decided to have another look at my fingerprints. Different fingers, but same old problems. What am I going to do!?

    0 notes
    Comments (View)
  6. Wed08
    Jul2009
    @09:22
  7. Tue10
    Feb2009
    @23:40
    Marek failed to get sainfo; failed to get sainfo; failed to pre-process packet.

    Damn you, racoon! I don’t want to be messing with IPsec at this time of night!

    0 notes
    Comments (View)
  8. Tue10
    Feb2009
    @12:53
    …information is received in inverse proportion to its predictability.
    Mike Ford, This American Life #258: Leaving the Fold. (Keep that one around the next time you’re underestimated.) (via heather-rivers)

    I was flicking through Cryptography: An Introduction by Nigel Smart this morning to keep my crypto-sec neurons from rusting over and this quote rings true with information theory. Information is entropy: you learn information when something you couldn’t predict happens.

    5 notes
    Comments (View)
  9. Wed24
    Dec2008
    @15:51

    New PGP Key

    Every Christmas I generate a new public key for the year ahead, and sign it with my master key and the outgoing key: 

    -----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.8 (Darwin)
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=gqPO
-----END PGP PUBLIC KEY BLOCK-----

    0 notes
    Comments (View)
  10. Fri15
    Aug2008
    @00:00

    NHS.net Mail Certificates

    A quick look at the NHSmail Certificate presented on STARTTLS over SMTP:

      > openssl s_client -starttls smtp -bugs -connect smtp.nhs.net:25 -showcerts
  CONNECTED(00000004)
  depth=0 /C=US/ST=California/L=Sunnyvale/O=Mirapoint, Inc./OU=MAS/CN=myname.my.domain/emailAddress=postmaster@myname.my.domain
  verify error:num=20:unable to get local issuer certificate
  verify return:1
  depth=0 /C=US/ST=California/L=Sunnyvale/O=Mirapoint, Inc./OU=MAS/CN=myname.my.domain/emailAddress=postmaster@myname.my.domain
  verify error:num=27:certificate not trusted
  verify return:1
  depth=0 /C=US/ST=California/L=Sunnyvale/O=Mirapoint, Inc./OU=MAS/CN=myname.my.domain/emailAddress=postmaster@myname.my.domain
  verify error:num=21:unable to verify the first certificate
  verify return:1

  [snip]

    Emails to the Information Governance Team at Connecting for Health programme have, of course, been sent in.

    0 notes
    Comments (View)
  11. Tue26
    Jul2005
    @00:00

    Fingerprints versus Eczema

    I am one of the allergic individuals who suffer from eczema. Thankfully mine is quite mild, and is generally limited to a few areas of skin: backs of knees, hands/fingers and occasionally feet. What effect does this skin condition have on my fingerprints?

    For the past few months the skin some of my fingers has been particularly dry and flaky, with the result that my fingerprints have worn away to nothing. Looking closely at them there are deep cracks or grooves in the skin, and a shiny smoothness where one would normally see loops, whorls and arches.

    Methodology

    First, I looked at my fingers in daylight. Various fingers are in different states of dermatitis. I chose four fingers showing different signs of print deterioration. I used a smooth ink-pad and smooth paper to make prints, applying approximately equal force to each finger (a firm press). These were then scanned, cropped and reduced, and saved using identical compression/quality settings for each image.

    A representative portion of the full print of each finger is shown below. Image compression has been set high (30% JPEG quality on all images). Both of these are deliberate: I do not want to publish my notional identity for all and sundry (I’m going to have enough trouble getting fingerprinted for a national identity card that I don’t need other people forging my fingerprints and stealing my identity).

    Fingerprint Pictures

    Perfect Fingerprint

    This finger has an almost perfect fingerprint.


    Good Fingerprint

    The horizontal line about two-thirds of the way down is a groove/crack showing that the skin on this finger is getting dry. The dark patch in the upper-right of the image is where the skin is starting to wear away.


    Dry, Cracked Fingerprint

    The cracks in the skin of this finger produce more noticable features than the ridges and grooves of the pad. When I first saw this scan it reminded me of mycology slides I once saw, depicting fungal growth in animal tissue!


    Eroded Fingerprint

    Looking at this finger in the light shows an almost completely smooth surface. The print confirms this: wear-and-tear have eroded the ridges to an almost completely flat surface.


    0 notes
    Comments (View)
  12. Fri21
    May1999
    @15:02
    You left yourself logged in to PC401 in Cockroft 4 - just logging you out
    Personal email from “myself” to myself
    0 notes
    Comments (View)