Archive for the ‘satellites’ Category
Coming up on this week’s TechSNAP…
Researches have developed a way to tie your file sharing to your Skype account. We’ll share the details on how this works, and what you can do to prevent being tracked!
Plus we cover the Ultimate way to host your own email, and what happened when Chinese hackers took control of US Satellites!
All that and more, on this week’s episode of TechSNAP!
Direct Download Links:
Subscribe via RSS and iTunes:
- On four separate occasions during 2007 and 2008 US satellites were hijacked by way of their ground control stations.
- The effected satellites were Landsat–7 (Terrain Mapping and Satellite Photography, example 1 example 2) and Terra AM–1 (Climate and Environmental Monitoring, 2010 Hurricane Karl)
- While the US does not directly accuse the Chinese government in writing, these types of actions are consistent with known war plans that involve disabling communications, command and control, and GPS satellites as a precursor to war.
- In one incident with NASA’s Terra AM–1, “the responsible party achieved all steps required to command the satellite,” however the attackers never actually took control of the satellite.
- It was not until the 2008 investigation that the previous compromises in 2007 were detected
- This raises an important question, are the US military and other NATO members, too reliant of satellite communications and GPS?
- In a recent NATO exercise called ‘Joint Warrior’, it was planned to jam GPS satellite signals, however the jamming was suspended after pressure on the governments over civilian safety concerns. Story
- The tools developed by the researchers at New York University allow any to determine a strong correlation between bittorrent downloads and a specific skype user.
- Importantly, unlike RIAA/MPAA law suites, the researchers consider the possibility of false positives because of multiple users behind NAT.
- The researchers resolve this issue by probing both the skype and bittorrent clients after a correlation is suspected. By generating a response from both clients at nearly the same time and comparing the IP ID (similar to a sequence number) of the packets, if the ID numbers are close together, than it is extremely likely that the response was generated by the same physical machine. If the IDs are very different, then it is likely that the Skype and BitTorrent users are on different machines, and there is no correlation between them.
- This same technique could be made to work with other VoIP and P2P applications, and could be used to gather enough evidence to conclusively prove a bittorrent user’s identity.
- This situation can be mitigated by using the feature of some OS’s that randomizes the IP ID to prevent such tracking. (net.inet.ip.random_id in FreeBSD, separate ‘scrub random-id’ feature in the BSD PF firewall)
- The discovery could also be prevented by fixing the skype client such that it will not reply with its IP address if the privacy settings do not allow calls from that user. The current system employed by the researches does not actually place a call to the user, just tricks skype into thinking that a call will be placed, and skype then leaks the sensitive information by returning its IP address or initiating a connection to the attacker.
- Read the full research paper
- Directors Desk is a web application designed to allow executives to share documents and other sensitive information
- When NASDAQ was hacked in February, they did not believe that any customer data was stolen
- The attackers implanted spyware into the Directors Desk application and were able to spy on the sensitive documents of publicly traded companies as they were passed back and forth through the system
- This is another example of the Advanced Persistent Threat (APT) as we saw with the RSA and South Korea Telecom hacks, where the attackers went after a service provider (in his case NASDAQ) to compromise the ultimate targets, the publicly traded companies and their sensitive documents.
- It is not known what if any protection or encryption systems were part of Directors Desk, but it seems that the application was obviously lacking some important security measures, including an Intrusion Detection System that would have detected the modifications to the application.
- The new guidance from the SEC spells out some of the things that companies may need to disclose to investors and others, depending upon their situation.
- Some of the potential items companies may need to disclose include:
- Discussion of aspects of the registrant’s business or operations that give rise to material cybersecurity risks and the potential costs and consequences
- To the extent the registrant outsources functions that have material cyber security risks, description of those functions and how the registrant addresses those risks
- Description of cyber incidents experienced by the registrant that are individually, or in the aggregate, material, including a description of the costs and other consequences
- Risks related to cyber incidents that may remain undetected for an extended period
- “For example, if material intellectual property is stolen in a cyber attack, and the effects of the theft are reasonably likely to be material, the registrant should describe the property that was stolen and the effect of the attack on its results of operations, liquidity, and financial condition and whether the attack would cause reported financial information not to be indicative of future operating results or financial condition,” the statement says.
- From the SEC guidance: The federal securities laws, in part, are designed to elicit disclosure of timely, comprehensive, and accurate information about risks and events that a reasonable investor would consider important to an investment decision”
- CF Disclosure Guidance: Topic No. 2 – Cybersecurity
- Q: Owning my own Email?
- Roundcube – Free webmail for the masses
- MailServer – Community Ubuntu Documentation
- Postfix – Community Ubuntu Documentation
- Setting up a Forwarding Account in the Email Control Center – GoDaddy Help Center (Remember to use the coupon code LINUX or LINUX20)
- Google apps for your domain (free)
It is definitely advantageous to own the domain that your email address is on. On top of looking more professional than a hotmail, or even gmail address, it also allows you to choose your host and have full control over everything. There are some caveats though, of course you must remember to renew your domain name, else your email stops working (just ask Chris about that one), you also have to be careful about picking where to host your domain, having your site or email hosted by a less reputable service can result in your domain being included on blacklists and stopping delivery of your mail to some users. The biggest problem with hosting your own email, from your home, is that you must keep the server up 24/7, and it must have a reasonable static IP address. If you are going to host from your home, I recommend you get a ‘backup mx’ service, a backup mail server that will collect mail sent to you while you are offline, and then forward it to your server when it is back up. Even if you are using a dedicated server or VPS, this is important, because email is usually the most critical service on your server. The other major issue with hosting your email from home, is that most ISPs block port 25 inbound and outbound, to prevent infected computers from sending spam. This means that you will not be able to send or receive email to other servers. Usually your ISP will require you to have a more expensive business class connection with a dedicated static IP address in order to allow traffic on port 25. Also, a great many spam filtering systems, such as spamassassin, use blacklists that contain the IP ranges of all consumer/home Internet providers, designed to stop spam from virus infected machines, because email should not be send from individual client machines, but through the ISP or Domain email server.
- Facebook to build server farm on edge of Arctic Circle
- Passwords of 93,000 Politicians, Reporters, Bloggers Leaked
- Stuxnet’s Son “Duqu” Removal Tool released by Bitdefender
- Japanese parliament hit by cyber-attack
- FBI to launch nationwide facial recognition service
- Anonymous Attacks Child Porn Websites and Publish User Names
This week on SciByte …
We look at the results from Gravity Probe B and how they relate to Einstein’s predictions on mass, space, time and how they all interact with one another. We’ll also open up the guts of that crazy contraption, and discuss some of the impressive tech that made the whole experiment possible to begin with.
Direct Download Links:
|SciByte RSS Feeds:|
-Sir Issac Newton [Mathematician]
-1687 – His predictions predicted the existence of Neptune based on the motions of Uranus
-Mercury’s Orbit hower can NOT be explained by Newtonian math alone, but was resolved with Einsteins general theory of relativity in 1915
-Newtonian Calculations however still are accurate enough for most applications
-General Relativity – Albert Einstein [1907-1915] The observed gravitational attraction between masses results from their warping of space and time.
→ Space-Time is not flat, but can be stretched and warped by matter
-What this means, boiled down: Time moves slower under gravity
-A device for measuring or maintaining orientation, based on the principles of conservation of angular momentum.
-Video : Gyroscope
-Video : Conservation of Angular Momentum : Spinning Skater
-“A” confirmed the prediction that gravity slows the flow of time, and the observed effects matched the predicted effects to an accuracy of about 70 parts per million. [1976, and lasted <2hours]
-Used a hydrogen maser, a highly accurate frequency standard, to measure the rate change of a clock in lower gravity with high precision.
-A star, a telescope, a spinning sphere [conceived in 1959, launched in 2004, decommissioned in Dec 2010] [A Star, telescope, and space time]
-Gravity Probe B Cutaway
-Reference telescope sighted on IM Pegasi, a binary star in the constellation Pegasus
-Drag Free System
-Solar Radiation Pressure – Particles streaming away from Sun transferring momentum
-Atmospheric Drag [@624KM]
-Compensation done with helium boosters, full 6-degree motion (first ever)
-London moment gyroscopes
-A spinning superconductor generates a magnetic field whose axis lines up exactly with the spin axis of the gyroscopic rotor.
-Are housed in a dewar of superfluid helium @ a temperature of under 2 kelvins (−271 °C, −456 °F)
-A magnetometer determines the orientation of the generated field, which is interpolated to determine the axis of rotation.
** The pointer shifted by just 6,000 milliarcseconds — the width of a human hair as seen from 10 miles away
* At the time, the gyroscopes were the most nearly spherical objects ever made.
~ size of ping pong balls, they are perfectly round to within forty atoms
- Scaled to the size of the Earth, the elevation of the entire surface would vary by no more than 12 feet
* Measured changes in gyroscope the equivalent to an angular separation the width of a human hair viewed from 32 kilometers (20 miles) away over a one-year period. [0.5 milliarcseconds (1.4×10−7 degrees)]
The Apollo astronauts left retro-reflector mirrors on the Moon, and laser ranging from Earth can now track their positions to millimeters. At that level of precision, the Moon’s motion in orbit has confirmed gravitomagnetism, the source of frame-dragging, to 0.15%, or 130 times better than GP-B.
Precision measurements of the Shapiro effect or gravitational time delay for light, most recently in 2002 by the Cassini space probe
Gravity – no uniform model for all scales
The laws of classical Newtonian physics remain accurate in predicting the behavior of the vast majority of large objects—of the order of the size of large molecules and bigger—at velocities much smaller than the velocity of light
-By Newtonian Standards Atoms can’t exist
-Newtonian physics says that electrons would fall out of orbit into the nuclues
-Electron Orbits in actuality can only exist as very specific points
-Heisenburg Uncertainty principle – can’t know location AND speed
-First conceptualized in 1783 by Henry Cavendish
-Infinite Density; Event Horizon [point of no return]
-Matter that is inferred to exist from gravitational effects on visible matter and background radiation, but is undetectable by emitted or scattered electromagnetic radiation
-Hypothetical form of energy that permeates all of space and tends to increase the rate of expansion of the universe
-Dark Matter/Dark Energy Estimates
-Some estimates state The Universe is made up of 23% Dark Matter; 72% Dark Energy; and Atoms a mere 4.6%
Additional Information :
SPACETIME: From the Greeks to Gravity Probe B
NASA : Gravity Probe B
Sky&Telescope : Gravity Probe B: Relatively Important?
PC Magazine : It Took More Than 50 Years, But NASA Proves That Einstein Was CorrectScientific American : Earth’s Mass and Motion Warps Spacetime as Einstein Said
engadget : NASA concludes Gravity Probe B space-time experiment
National Geographic : Einstein Theories Confirmed by NASA Gravity Probe
NASA Gravity Probe Confirms Two Einstein Theories
Wired : Floating Gyroscopes Vindicate Einstein
spaceRef : NASA’s Gravity Probe B Confirms Two Einstein Space-Time Theories
PCWorld:Experiment Confirms Space-Time Vortex Around Earth, Makes Our Heads Hurt
What’s 96 Percent of the Universe Made Of? Astronomers Don’t Know
YouTube | Lecture 1 | Modern Physics: Quantum Mechanics (Stanford)