dswp.de :: View topic - perfect trance...oh my god!

Samtron wrote:

YouTube

Samtron wrote:

https

I never thought there would be a correlation between them as per Youtube==flash==Adobe==spyware*.

*I cannot think of any other reason why Adobe products would consume so much resources.

I never thought there would be a correlation between them as per Youtube==flash==Adobe==spyware*.

@Topic: Btw, why does so much trance have the first minute or so of some boring techno. I always thought how the key difference between them is that pure techno lacks melody.

I'm not really sure what you meant

Samtron wrote:

I'm not really sure what you meant

What I meant was: it makes no point in using https on a google/adobe-infested site. (as if https really made any difference to begin with)

@Samtron: As for man-in-the-middle attacks: unless the attack began in the middle of transmission, there is no defense that I can think of that would stop them from getting any information that you transmitted. If you/server can decode a transmission, so can they using the same algorithm. Especially if they also have your encryption key which you and server exchanged anyway.

Author:	AimMe [ 05.24.11 ]
Post subject:	Re: perfect trance...oh my god!
SKracht wrote: What happened?! He went on DJ road...

Author:	SKracht [ 05.24.11 ]
Post subject:	Re: perfect trance...oh my god!
Watch this vid @ Youtube (new Window) k

Author:	Samtron [ 07.20.12 ]
Post subject:	Re: perfect trance...oh my god!
Watch this vid @ Youtube (new Window) A bit annoying but also catchy tune. I like Gareth Emery. PS: YouTube-Embedding works not with https-Links.

Author:	natirips [ 07.20.12 ]
Post subject:	Re: perfect trance...oh my god!
Samtron wrote: YouTube Samtron wrote: https I never thought there would be a correlation between them as per Youtube==flash==Adobe==spyware. I cannot think of any other reason why Adobe products would consume so much resources. @Topic: Btw, why does so much trance have the first minute or so of some boring techno. I always thought how the key difference between them is that pure techno lacks melody.

Author:	zietsh [ 07.20.12 ]
Post subject:	Re: perfect trance...oh my god!
100% OT: natirips wrote: Samtron wrote: YouTube Samtron wrote: https I never thought there would be a correlation between them as per Youtube==flash==Adobe==spyware. I cannot think of any other reason why Adobe products would consume so much resources. About Flash: Flash is not spyware, but you can make it to be spyware. It is just capable of a whole lot of shit (just like javascript) as it turns out example: when you run flash and the programmer wants to know your "real" ip and mac he will get it and i believe he could "push" something onto your computer if he wanted to ... but once compiled for what it can do actionscript is quite fast and easy to use for anyone that ever used any C based language... I'm just saying for a contrast to HTML 5 I still think for the end-user ever thing being separated it is better since at least your able to get rid of javascript (and flash) when you want to be anonymous just a little bit.. So as long as you run js or flash from somebody who wants to get to know you a litte better no https will help you EDIT: I just remembered google needs your location and time spent watching the video for its google analytics

dswp.de http://www.dswp.de/old/

perfect trance...oh my god! http://www.dswp.de/old/huhuuuuu/perfect-trance-oh-my-god-t2160-10.html	Page 2 of 3

Author:	Samtron [ 08.17.12 ]
Post subject:	Re: perfect trance...oh my god!
natirips wrote: Samtron wrote: I'm not really sure what you meant What I meant was: it makes no point in using https on a google/adobe-infested site. (as if https really made any difference to begin with) Of course YouTube knows much about you, because you're accessing their site, doesn't matter if http or https... But with https the man in the middle (sniffing your traffic) can't read the content like login credentials... at least that's the intention behind it. If that really always works in real life is another thing... Back to topic: Two more relaxed tracks, i found in the last days. Watch this vid @ Youtube (new Window) Watch this vid @ Youtube (new Window)

Author:	natirips [ 08.18.12 ]
Post subject:	Re: perfect trance...oh my god!
@Samtron: As for man-in-the-middle attacks: unless the attack began in the middle of transmission, there is no defense that I can think of that would stop them from getting any information that you transmitted. If you/server can decode a transmission, so can they using the same algorithm. Especially if they also have your encryption key which you and server exchanged anyway. This is why passwords are simply useless against such an attack and why challenge-based authentication has been invented. However, youtube uses password-based authentication, so it's trivial to figure it out if someone has a need to break into your youtube account (though I cannot think of a reason to break into someone's youtube account other than perhaps if captcha is giving you hard time or they're insisting on getting your mobile phone number again). Last time I tried to make a youtube account for a friend I could not do it without giving them a mobile phone number, which was out of question. @Topic: http://www.jamendo.com/en/list/a4742/xl-ant ("Sometimes we do" song is awesome IMO)

Author:	eXtr33m [ 08.18.12 ]
Post subject:	Re: perfect trance...oh my god!
natirips wrote: @Samtron: As for man-in-the-middle attacks: unless the attack began in the middle of transmission, there is no defense that I can think of that would stop them from getting any information that you transmitted. If you/server can decode a transmission, so can they using the same algorithm. Especially if they also have your encryption key which you and server exchanged anyway. Wait wait wait. no no no no... I recommend reading about asymetric encryption (2 keys, one encrypts, otherone decrypts), good stuff... Also for the MITM http://en.wikipedia.org/wiki/Transport_Layer_Security Only known possible attack was already fixed in TLS 1.1 (altough it was bit surprise that something was even found (but it used Java aplet )) Also fun reading and yet understandable is for example diffie-helmann algorithm, how without any secure connection nor preshared knowledge 2 entities can make secure connection: http://en.wikipedia.org/wiki/Diffie%E2%80%93Hellman_key_exchange Ofc, anyday vulnerabilty could be found, but yeah... But another joke is CAs(certificate authorities), where big fucking money flows, as big as security holes that come with this system.

Page 2 of 3	All times are UTC + 1 hour
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group http://www.phpbb.com/