安全研究專家宣稱他們發現宏達電的部分Android手機的記錄程式不夠安全,可輕易被駭客破解,從而取得完整個人資料。
- 10月 04 週二 201116:02
宏達電Android手機 有重大安全漏洞
安全研究專家宣稱他們發現宏達電的部分Android手機的記錄程式不夠安全,可輕易被駭客破解,從而取得完整個人資料。
- 10月 01 週六 201100:12
快速檢查Firefox每個套件安裝後體積
在理解上述的前提下,讓我們回來說明檢查套件安裝後體積大小的方法。其實,你也可以直接到Firefox Profile資料夾中查看每個套件資料夾所佔用的體積,但因為這裡每個套件都是使用代碼表示,要找出哪個代碼是哪個套件,還要花上不少時間。P.S.安裝Firefox套件時,你會看到下載檔案的體積,但這和套件安裝後的體積不同。
而今天要介紹的方法相對來說就快速許多,首先,我們利用〔Ctrl〕+〔Shift〕+〔J〕打開「錯誤主控台」。
接著切換到〔錯誤〕頁面,在「程式碼」欄位,填入下面適用於Firefox 3.6.x或Firefox 4的程式碼,接著按下〔執行〕。然後就會在彈出視窗中看到每個擴充套件的體積大小清單了。
- 6月 03 週五 201103:12
按「讚」前要知道的9件事
更新日期:
2011/06/02 16:44
文/楊士範
- 5月 22 週日 201109:08
按讚點推 小心上網動態被看光
更新日期:
2011/05/19 20:54
- 9月 02 週四 201021:23
臺大電機教授示範無線竄改悠遊卡金額
ATM設計瑕疵帶來的風險,連超商的Kiosk機臺都可透過PDF漏洞入侵
重 點
● 包括晶片金融卡、悠遊卡等安全產品的安全性遭質疑
● 網路ATM傳輸過程採明碼傳輸,徒增安全風險
● 駭客利用PDF漏洞入侵超商Kiosk機臺
在日前舉辦的第六屆臺灣駭客年會(HIT 2010)中,揭露許多採用NXP公司推出的Mifare卡的產品的安全性風險。
舉例而言,就像是臺大電機系團隊便將發表的論文,以錄影方式,實作如何將悠遊卡透過Sniffer-Based(監聽封包)的方式,竄改悠遊卡的資料。另
外,也由於臺灣最普遍使用的晶片金融卡,進行網路ATM轉帳的過程並未加密,採用明碼傳輸,都讓相關產品的安全性遭遇極大的挑戰。
近期也有許多駭客都利用Flash的漏洞發動零時差攻擊(0 Day
Attack),在臺灣駭客年會上,便有演講者分享如何透過Flash漏洞,入侵便利超商的Kiosk。
透過設備監聽方式,可竄改悠遊卡餘額
在2008年荷蘭曾有論文透過逆向工程的方式,破解NXP推出的、目前全球使用超過100萬張卡的Mifare晶片卡,臺灣大學電機系教授鄭振牟團隊則實
作出Mifare的破解方式。
鄭振牟說,目前Mifare卡的攻擊方式,除了荷蘭論文提出的PCD-Based(非接觸式IC讀卡器)的攻擊手法,臺大團隊則使用改進過的
Sniffer-Based(監聽封包)的攻擊手法攻擊Mifare卡。
他表示,透過從國外購得的Sniffer監聽設備,在悠遊卡與加值機進行資料讀取時,透過監聽封包取得相關的卡片資料,便可藉此進一步更改悠遊卡中的餘額
資料。
在駭客年會中,臺大團隊則將一張實際的悠遊卡,從正100多元,將餘額更改成為負五百多元。
鄭振牟表示,目前這樣的Sniffer攻擊手法,因為可以即時讀取卡片和加值機的卡片資料,能夠在比較短的時間內,就完成更改悠遊卡的餘額。但他也說,這
樣的攻擊手法前提,就是必須能夠監聽到悠遊卡的卡片資料,才能夠進行資料竄改。因此,目前這樣的攻擊手法,時間雖然較短,仍只能是單張的卡片資料竄改,而
非大量的悠遊卡資料竄改。
鄭振牟表示,對於捷運公司而言,防護的方式很簡單,只要能夠在系統後端設備進行防堵措施,例如,偵測卡片是否有異常,資料讀取過程中,不要流洩出足夠的資
訊可供人利用竄改,便可以確保悠遊卡的安全性。
晶片金融卡使用Web ATM時,採明碼傳輸
臺灣為了遏止詐騙集團複製並盜刷磁條的提款卡,自2003年9月15日開始發行晶片金融卡,並於2006年3月1日取消磁條金融卡跨行交易的服務,迄今臺
灣晶片金融卡發行量已經超過4,400萬張,也是世界上晶片金融卡普及率最高的國家之一。
雖然晶片金融卡的設計是為了更安全的銀行交易,並採用點對點的安全設計,但是,全宏科技研發處系統安全部部經理倪萬昇表示,晶片金融卡在設計上有一些安全
性的盲點,例如,晶片金融卡A卡或B卡的密碼長度只有48位元,相較於3DES的112或168位元密碼長度,或者是AES
128、192或256位元的長度,晶片金融卡的密碼只需要時間夠長就足以破解。
也因為晶片金融卡上儲存的資料包含:帳戶名稱、銀行帳號、使用者PIN碼、銀行認證碼,並支援DES、3DES的加密演算法,對於可確保交易的唯一性,防
止重送攻擊(Replay Attack)的IC卡交易序號,其所產生的交易認證碼(Transaction Authentication
Code,簡稱TAC),則可以進一步做到確保交易資訊的正確性,並能辨識來源為何;而相關的硬體設備,也都通過EAL 4+的安全性認證。
曾經揭露晶片金融卡在網路ATM轉帳交易上使用漏洞的竹科工程師Jim,他在臺灣駭客年會上也表示,晶片金融卡端末設備的驗證碼,雖然已經將過短的密碼改
為8碼,他認為,根據銀行公會規範的14條晶片金融卡網路開發事項中,銀行認為只要網站採用SSL傳輸就夠安全,但事實上,晶片金融卡在元件應設計存取卡
片的限定提款卡程式,才夠安全。至於支援熱插拔技術,主要是限制只能輸入一次密碼,但Jim表示,這其實可以透過虛擬設備,不需要熱插拔就可以直接略過這
道認證手續。
倪萬昇指出,這些晶片金融卡在使用與傳輸資料的過程中,最大的風險就是認證使用者PIN碼時,其實是明碼傳輸的,當認證PIN碼後,則可產生多次的
TAC,而後端銀行伺服器則沒有提供必要的資訊給晶片金融卡作為產生TAC之用。交易資訊雖然都由後端銀行伺服器決定,除了隨機性並具有唯一性,但是當駭
客使用中間人攻擊(Man In The Middle,簡稱MITM)手法時,交易轉帳過程中的資料,都可能提前遭到駭客竄改。
目前晶片金融卡使用上最大的風險就是網路ATM的使用,倪萬昇認為,解決銀行使用晶片金融卡的風險,除了將整個ATM(尤其是Web
ATM)的流程跟應用請專家檢視,並且所有的銀行都必須同步進行外,在Web
ATM的應用應該加上雙重確認機制,例如簡訊OTP等密碼確認機制。他說,銀行轉帳都有10或17元的手續費,確認安全性的簡訊費用,相較而言並不多,這
是做不做而不是花不花錢的問題。
由於Web ATM的漏洞有一半是因為ATM卡本身設計並不安全,在不安全的設備裝置上使用會有風險,另外一半則是銀行過度小看Web
ATM造成的風險。倪萬昇表示,如果後端銀行伺服器沒有提供必要的資訊給晶片金融卡作為產生TAC,駭客攻擊只要能夠隨機增加一個亂數來確認交易資料的唯
一性就可以了。
Jim指出,由於晶片金融卡傳輸中並沒有加密,因為設備不支援動態密碼,加上TAC機制有問題,一旦遇到一些Active
X的漏洞,都可能增加資料傳輸時的風險。他建議,相關單位若能選擇較為安全的Fire & Forget的動態密碼,將可提升相關的安全性。
也因為目前悠遊卡的攻擊手法仍不是大規模的攻擊方式,側面得知,悠遊卡公司並不擔心悠遊卡的安全機制遭到破解,反而是,晶片金融卡在網路ATM的使用上,
已經存在既有的設計瑕疵,銀行公會也積極探詢解決方式,降低因為系統設計帶來的持卡人風險。
PDF漏洞入侵便利商店Kiosk
此次駭客年會的重頭戲之一就是示範如何透過PDF的Flash漏洞,讓便利超商的Kiosk機器遭到攻擊。
主講者Zha0表示,由於便利超商現有的Kiosk都是微軟介面,機臺在設計上,都會隱藏微軟系統的開關機選項,讓人無法在機臺的螢幕上進行操作。看不到
並不意味著功能不存在,加上部分超商允許使用USB隨身碟進行資料讀取和列印,只要隨身碟中的PDF文件,具有待修補的漏洞,駭客便可利用該漏洞,入侵該
臺Kiosk系統。
透過主講者Zha0的示範,他在USB隨身碟中,存放一個具有漏洞的PDF文件,當他利用PDF的漏洞進入該臺Kiosk系統中並重新開機後,他取得該
Kiosk機臺的主控權,並將原本機臺的顯示畫面置換成該隨身碟中的圖檔。
這個圖檔將原本機臺的螢幕畫面其中的一項服務顯示,修改成為「0
Day漏洞販賣」,這樣的示範也獲得現場熱烈掌聲。不過,Zha0表示,這樣的示範只是突顯出這類的Kiosk具有的風險,其實和一般的電腦是一樣的,相
關的安全性控制與漏洞修補,都不可忽略。
根據記者實地勘查,由於多數超商的Kiosk都將金流部分交由當店的櫃臺服務人員,雖然無法迴避Kiosk原本就有的系統風險,但這樣的金流切割作法,則
將金流的風險降到最低。文⊙黃彥棻
- 8月 30 週一 201021:49
各家筆電的保固說明
筆電的保固各家不等 要購買前請先看清楚下列保固 避免被不肖賣家欺騙
小筆電類:
一律一年保固
少部分11.6"的機種有2年保固
acer:
傳統筆電含CULV機種(13.3"以上)二年保固
購買日起三個月內可加買第三年保固
ASUS:
一律二年保固 少部分專案機會出現三年保固 可於購買日期內加買第三年保固
HP:
分
為331機種與1+1機種 敘述如下
331機種
3年保固 30分鐘快速維修 1年國際保固 也就是說 在台灣買的機器三年保固
但是帶到國外只有一年保固 30分鐘快修請詳看官方公告 缺料不再此服務內
1+1機種
一年國際保固 一年到府收送 也就是保固只有一年 非1+1=2年 目前以編號CQ系列的為主
DELL:
商務機種三年保固 (最好加買三年完美保固)
SONY:
保固一年半
需上網登錄個人購買資料後才會延長至2年
TOSHIBA:
專案機一年保固 大部分都是二年 少部分機種三年
聯想
(LENOVO):
THINKPAD 三年保固 IDEAPAD 二年保固 保內可隨時加購延長保固 最高以2次為限
保外則須原廠判定無異常後才能加買
MSI:
全機種二年保固(含部分11.6"筆電 例如U210L這種的)
GIGABYTE:
全
機種二年保固 99/1/1起出廠的筆電享有二年到府收送
BENQ:
全機種二年保固
聯強捷元自有品牌:
二
年保固 聯強可自行送聯強 捷元可透過全家代收
以上資訊僅供要在此購買筆電的人參考 如有異動 以各官網公告為主
小筆電類:
一律一年保固
少部分11.6"的機種有2年保固
acer:
傳統筆電含CULV機種(13.3"以上)二年保固
購買日起三個月內可加買第三年保固
ASUS:
一律二年保固 少部分專案機會出現三年保固 可於購買日期內加買第三年保固
HP:
分
為331機種與1+1機種 敘述如下
331機種
3年保固 30分鐘快速維修 1年國際保固 也就是說 在台灣買的機器三年保固
但是帶到國外只有一年保固 30分鐘快修請詳看官方公告 缺料不再此服務內
1+1機種
一年國際保固 一年到府收送 也就是保固只有一年 非1+1=2年 目前以編號CQ系列的為主
DELL:
商務機種三年保固 (最好加買三年完美保固)
SONY:
保固一年半
需上網登錄個人購買資料後才會延長至2年
TOSHIBA:
專案機一年保固 大部分都是二年 少部分機種三年
聯想
(LENOVO):
THINKPAD 三年保固 IDEAPAD 二年保固 保內可隨時加購延長保固 最高以2次為限
保外則須原廠判定無異常後才能加買
MSI:
全機種二年保固(含部分11.6"筆電 例如U210L這種的)
GIGABYTE:
全
機種二年保固 99/1/1起出廠的筆電享有二年到府收送
BENQ:
全機種二年保固
聯強捷元自有品牌:
二
年保固 聯強可自行送聯強 捷元可透過全家代收
以上資訊僅供要在此購買筆電的人參考 如有異動 以各官網公告為主
- 6月 20 週日 201018:02
MS官方公開的 boot.ini 設定參數
Available switch options for the Windows XP and the Windows Server 2003
Boot.ini files
適用於
SUMMARY
You can add many different switches to the Boot.ini file that will
modify the way that Microsoft Windows XP or Microsoft Windows Server
2003 start.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
102873 Boot.ini and ARC path naming conventions and usage
MORE INFORMATION
You can add the following switches to the Boot.ini file.
Note These switches apply to Microsoft Windows XP and to Microsoft
Windows Server 2003, unless otherwise specified.
/basevideo
The /basevideo switch forces the system into standard 640x480 16-color
VGA mode by using a video driver that is compatible with any video
adapter. This switch permits the system to load if you selected the
wrong video resolution or refresh rate. Use this switch in conjunction
with the /sos switch. If you install a new video driver, and it does not
work correctly, you can use this parameter to start the operating
system. You can then remove, update, or roll back the problem video
driver.
/baudrate=number
This switch sets the baud rate of the debug port that is used for kernel
debugging. For example, type /baudrate=9600. The default baud rate is
9600 kilobits per second (Kbps) if a modem is attached. The default baud
rate is 115,200 Kbps for a null-modem cable. 9,600 is the normal rate
for remote debugging over a modem. If this switch is in the Boot.ini
file, the /debug switch is automatically enabled.
For additional information about modem configuration, click the
following article number to view the article in the Microsoft Knowledge
Base:
148954 How to set up a remote debug session using a modem
For additional information about null modem configuration, click the
following article number to view the article in the Microsoft Knowledge
Base:
151981 How to set up a remote debug session using a null modem cable
/crashdebug
This switch loads the kernel debugger when you start the operating
system. The switch remains inactive until a Stop message error occurs.
/crashdebug is useful if you experience random kernel errors. With this
switch, you can use the COM port for normal operations while Windows is
running. If Windows crashes, the switch converts the port to a debug
port. (This action turns on remote debugging.)
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
151981 How to set up a remote debug session using a null modem cable
/debug
This switch turns on the kernel debugger when you start Windows. The
switch can be activated at any time by a host debugger that is connected
to the computer, if you want to turn on live remote debugging of a
Windows system through the COM ports. Unlike the /crashdebug switch,
/debug uses the COM port whether you are debugging or not. Use this
switch when you are debugging problems that are regularly reproducible.
For additional information about remote debugging, click the following
article number to view the article in the Microsoft Knowledge Base:
121543 Setting up for remote debugging
/debugport=comnumber
This switch specifies the communications port to use for the debug port,
where number is the communications port, such as COM1, that you want to
use. By default, /debugport uses COM2 if it exists. Otherwise, the
switch uses COM1. If you include this switch in the Boot.ini file, the
/debug switch becomes active.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
151981 How to set up a remote debug session using a null modem cable
/maxmem=number
This switch specifies the maximum amount of RAM that Windows can use. Do
not make this setting less than 12. Use this parameter to confirm
whether a memory chip is faulty. For example, if you have a 128-megabyte
(MB) system that is equipped with two 64-MB RAM modules, and you are
experiencing memory-related Stop messages, you can type /maxmem=64. If
the computer starts Windows and operates without problems, replace the
first module to see if this action resolves the problem.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
108393 MAXMEM option in Windows NT Boot.ini file
/noguiboot
This switch disables the bitmap that displays the progress bar for
Windows startup. (The progress bar appears just before the logon
prompt.)
/nodebug
This switch turns off debugging. This scenario can cause a Stop error if
a program has a debug hardcoded breakpoint in its software.
/numproc=number
This switch sets the number of processors that Windows will run at
startup. With this switch, you can force a multiprocessor system to use
only the quantity of processors (number) that you specify. This switch
can help you troubleshoot performance problems and defective CPUs.
/pcilock
For x86-based systems, this switch stops the operating system from
dynamically assigning hardware input, hardware output, and interrupt
request resources to Peripheral Connect Interface (PCI) devices. With
this switch, the BIOS configures the devices.
/fastdetect:comnumber
This switch turns off serial and bus mouse detection in the Ntdetect.com
file for the specified port. Use this switch if you have a component
other than a mouse that is attached to a serial port during the startup
process. For example, type /fastdetect:comnumber, where number is the
number of the serial port. Ports may be separated with commas to turn
off more than one port. If you use /fastdetect, and you do not specify a
communications port, serial mouse detection is turned off on all
communications ports.
Note In earlier versions of Windows, including Windows NT 4.0, this
switch was named /noserialmice.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
131976 How to disable detection of devices on serial ports
/sos
The /sos switch displays the device driver names while they are being
loaded. By default, the Windows Loader screen only echoes progress dots.
Use this switch with the /basevideo switch to determine the driver that
is triggering a failure.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
99743 Purpose of the Boot.ini file in Windows 2000 or Windows NT
Boot.ini files
適用於
SUMMARY
You can add many different switches to the Boot.ini file that will
modify the way that Microsoft Windows XP or Microsoft Windows Server
2003 start.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
102873 Boot.ini and ARC path naming conventions and usage
MORE INFORMATION
You can add the following switches to the Boot.ini file.
Note These switches apply to Microsoft Windows XP and to Microsoft
Windows Server 2003, unless otherwise specified.
/basevideo
The /basevideo switch forces the system into standard 640x480 16-color
VGA mode by using a video driver that is compatible with any video
adapter. This switch permits the system to load if you selected the
wrong video resolution or refresh rate. Use this switch in conjunction
with the /sos switch. If you install a new video driver, and it does not
work correctly, you can use this parameter to start the operating
system. You can then remove, update, or roll back the problem video
driver.
/baudrate=number
This switch sets the baud rate of the debug port that is used for kernel
debugging. For example, type /baudrate=9600. The default baud rate is
9600 kilobits per second (Kbps) if a modem is attached. The default baud
rate is 115,200 Kbps for a null-modem cable. 9,600 is the normal rate
for remote debugging over a modem. If this switch is in the Boot.ini
file, the /debug switch is automatically enabled.
For additional information about modem configuration, click the
following article number to view the article in the Microsoft Knowledge
Base:
148954 How to set up a remote debug session using a modem
For additional information about null modem configuration, click the
following article number to view the article in the Microsoft Knowledge
Base:
151981 How to set up a remote debug session using a null modem cable
/crashdebug
This switch loads the kernel debugger when you start the operating
system. The switch remains inactive until a Stop message error occurs.
/crashdebug is useful if you experience random kernel errors. With this
switch, you can use the COM port for normal operations while Windows is
running. If Windows crashes, the switch converts the port to a debug
port. (This action turns on remote debugging.)
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
151981 How to set up a remote debug session using a null modem cable
/debug
This switch turns on the kernel debugger when you start Windows. The
switch can be activated at any time by a host debugger that is connected
to the computer, if you want to turn on live remote debugging of a
Windows system through the COM ports. Unlike the /crashdebug switch,
/debug uses the COM port whether you are debugging or not. Use this
switch when you are debugging problems that are regularly reproducible.
For additional information about remote debugging, click the following
article number to view the article in the Microsoft Knowledge Base:
121543 Setting up for remote debugging
/debugport=comnumber
This switch specifies the communications port to use for the debug port,
where number is the communications port, such as COM1, that you want to
use. By default, /debugport uses COM2 if it exists. Otherwise, the
switch uses COM1. If you include this switch in the Boot.ini file, the
/debug switch becomes active.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
151981 How to set up a remote debug session using a null modem cable
/maxmem=number
This switch specifies the maximum amount of RAM that Windows can use. Do
not make this setting less than 12. Use this parameter to confirm
whether a memory chip is faulty. For example, if you have a 128-megabyte
(MB) system that is equipped with two 64-MB RAM modules, and you are
experiencing memory-related Stop messages, you can type /maxmem=64. If
the computer starts Windows and operates without problems, replace the
first module to see if this action resolves the problem.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
108393 MAXMEM option in Windows NT Boot.ini file
/noguiboot
This switch disables the bitmap that displays the progress bar for
Windows startup. (The progress bar appears just before the logon
prompt.)
/nodebug
This switch turns off debugging. This scenario can cause a Stop error if
a program has a debug hardcoded breakpoint in its software.
/numproc=number
This switch sets the number of processors that Windows will run at
startup. With this switch, you can force a multiprocessor system to use
only the quantity of processors (number) that you specify. This switch
can help you troubleshoot performance problems and defective CPUs.
/pcilock
For x86-based systems, this switch stops the operating system from
dynamically assigning hardware input, hardware output, and interrupt
request resources to Peripheral Connect Interface (PCI) devices. With
this switch, the BIOS configures the devices.
/fastdetect:comnumber
This switch turns off serial and bus mouse detection in the Ntdetect.com
file for the specified port. Use this switch if you have a component
other than a mouse that is attached to a serial port during the startup
process. For example, type /fastdetect:comnumber, where number is the
number of the serial port. Ports may be separated with commas to turn
off more than one port. If you use /fastdetect, and you do not specify a
communications port, serial mouse detection is turned off on all
communications ports.
Note In earlier versions of Windows, including Windows NT 4.0, this
switch was named /noserialmice.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
131976 How to disable detection of devices on serial ports
/sos
The /sos switch displays the device driver names while they are being
loaded. By default, the Windows Loader screen only echoes progress dots.
Use this switch with the /basevideo switch to determine the driver that
is triggering a failure.
For additional information, click the following article number to view
the article in the Microsoft Knowledge Base:
99743 Purpose of the Boot.ini file in Windows 2000 or Windows NT
- 5月 27 週四 201010:17
英科學家 人體感染電腦病毒第一人?
更新日期:
2010/05/27 04:11
- 4月 15 週四 201013:54
科學家創造真正隨機數字 防堵密碼破解漏洞
更新日期:
2010/04/15 11:20
張稚昀