Thursday, September 29, 2005

Remote surveilance of CRT's and LCD's

Saw an episode of Numb3rs last night, it included the remote surveilance of a computer LCD screen.

No while the monitoring of CRTs is well known (The US DoD first talked about it in 1947!
ARC Search Results: Details pitty they haven't digitised this!) I hadn't heard of it being extended to LCDs yet.

OK, so I'm not security guru (I'm supposed to be developing most of the time), but I still hadn't come across this.

TEMPEST (see above ARC link and here) discussions mention that some LCDs do intefere with TV reception, leading to the conclusion that there might be something readable there... See here [first of three myths], here, here,

However you can get TEMPEST compliant LCDs
here, here, here and even a whole range of computer equipment here.

But no sign of a device to remotely monitor LCDs yet...

This is as close as I've gotten. It mentions the CEI Tempest Receiving System, but all the pics are long gone and no mention of LCD support. But it does mention using telescopes to look at reflections... or even the modulation of the power LED on a montor!

Did just find this 2003 paper
, so it is possible, and this guy has done it, but it's not the LCD screen that's being snooped on, it's the cable connecting the graphics card and the LCD! [in this case on a laptop]

I wonder if anyone has done any comparisons on the different types of graphics card and monitor/LCD connections? (DVI-Analog, DVI-Digital, standard PC[?], Mac, Sun...)

Very interesting field. Far more intreaging than the cracking of Excel passwords that I did at work today...

Friday, September 23, 2005

Tuesday, September 13, 2005

10 Minute IIS5.0 hack

Flash video, showing someone hacking an IIS5.0 site in just 10 minutes.

Whoppix and WHAX demos from and [flash]

Wednesday, September 07, 2005

Tuesday, September 06, 2005

Intellisene for SQL!

PromptSQL: Intellisense style help for MS Query Analyzer, VS.NET 2003, Management Studio and VS 2005

What a cool idea! Especially since MS apparently have pulled it from SQL Server 2005... couldn't get it to work properly, apparently....

Monday, September 05, 2005

The slacker..

Hi People,

OK, I've been a bit slack on the tech blog of late... that's an understatement...
The jokes have trickled in, thanks to the likes of Con and my IT co-conspiritors (at least the ones that aren't leaving/left!).

So anyway, here's what I've been up to:

Battling Hummingbird's DM and KM products. Mainly to having very little clue :(

Spent three days last week at MicroSoft TechEd, Jesper Johansson and Steve Riley are still the highlights! Not a lot new on the security front, although MS are pushing IPSec policy again, to isolate server from the bad guys, desktops, even each other... Personally, that's what a firewalls for, but I'm happy to have more layers, after all, security is like Ogers.. erk! I mean Onions :)

Recently joined in the Total Sport 12 Hour MountainBike "race", well, we put up three teams in the 6 hour race anyway... (look for REC A/B/C in the results, I was in REC B) Loads of fun!

Thanks to Nolan getting older, I got to go PaintBalling recently. My first time and I had an excellent time, getting hit 2nd lowest number of times, and no injuries, dispite a shot to the neck at close range. We played two fields [1 and 6] of capture the flag, the first game (two 30 minute halves) no one even got close to the flags, the second game, I buddied with Nolan to capture the enimies flag about 2 minutes before the end of the game. Nolan made it back to the base, only to find the other team had done exactly the same thing. Will definitly have to do that again.

Started to get Blog spam on Friday Crud, oh well, at least someone must be reading it, even if it's just a bot....

Sent the family off to Paihia for a holiday with my in-laws, would have been nice to have gone too, but it give me the excuse of working the weekend and late nights to get back on top of some of my projects at work... [and to blog a little]

That's it for now, I had wanted to blog from TechEd, but just got to busy (had to come back to the office every day... even after the mammoth TechFest!)

Have fun people and quit pressuring me to go back to Wellington!