tag:blogger.com,1999:blog-59981745651535874482024-03-17T21:04:07.087-06:00Cliff's Esport CornerEsports & Computer Security Blog. For SC2 tournaments see clocks immediately below. Starts with Korean time at upper left, moves west around the world till you end with PDT/PST clock for Anaheim USA. I earn a small referral fee if you click the occasional Amazon links and then purchase item. It does not affect the purchase price. For more information see "Amazon Associates" link below & left of clocks. Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.comBlogger1967125tag:blogger.com,1999:blog-5998174565153587448.post-53382945678415403452016-05-05T18:12:00.002-05:002016-05-05T18:12:31.840-05:00Shades of Red Dwarf "I am Bread" game<iframe allowfullscreen="" frameborder="0" height="236" src="https://www.youtube.com/embed/yQL4X3F0Bx0" width="420"></iframe> <br />
<br />
For those that prefer link to embed VOD <a href="https://youtu.be/yQL4X3F0Bx0">https://youtu.be/yQL4X3F0Bx0</a><br />
<br />
For those unfamiliar with the Red Dwarf reference to the <b>Talky Toaster</b><br />
<br />
<iframe allowfullscreen="" frameborder="0" height="236" src="https://www.youtube.com/embed/LRq_SAuQDec" width="420"></iframe>
<br />
For those that prefer link vs embed VOD <a href="https://youtu.be/LRq_SAuQDec">https://youtu.be/LRq_SAuQDec</a><br />
<br />
<b>I Am Bread</b> has been out for about a year, but this is first time I've really looked at it, very amusing game.<br />
<br />
Also thought this was good introduction to Jon, the nerd behind <b>Many A True Nerd</b> (MATN) one of my favorite YouTubers, strongly recommend his channel <a href="https://www.youtube.com/user/ManyATrueNerd/featured">https://www.youtube.com/user/ManyATrueNerd/featured</a> to gamers, I'm a particular fan of his Fallout New Vegas & Fallout 4 VOD's. <br />
<br />
He's trying to make a go out of full time YouTubing, so if you like his VODs please give him a follow.<br />
<br />
Additional links of interest:<br />
<ul>
<li>I Am Bread <b>Devs</b> site <a href="http://www.bossastudios.com/games/i-am-bread/">http://www.bossastudios.com/games/i-am-bread/</a></li>
<li>I Am Bread <b>Steam</b> <a href="http://store.steampowered.com/app/327890/">http://store.steampowered.com/app/327890/</a></li>
<li>I Am Bread <b>iTunes</b> (says iPhone & iPad) [<span style="background-color: yellow;">Didn't see Android app</span>] App <a href="https://itunes.apple.com/us/app/i-am-bread/id946903436">https://itunes.apple.com/us/app/i-am-bread/id946903436</a></li>
<li>I Am Bread <b>PS4</b> <a href="https://www.playstation.com/en-us/games/iam-bread-ps4/">https://www.playstation.com/en-us/games/iam-bread-ps4/</a></li>
<li><b>Many A True Nerd</b> (MATN) Reddit, Twitch, Twitter, etc <a href="https://www.youtube.com/user/ManyATrueNerd/about">https://www.youtube.com/user/ManyATrueNerd/about</a></li>
<li> </li>
</ul>
<br />
<br />
<ul>
</ul>
Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com3tag:blogger.com,1999:blog-5998174565153587448.post-89729008394292299082016-01-29T22:16:00.003-06:002016-01-29T22:16:39.779-06:00SC2 LOTV Changes to Units, Buildings, etc.Best single source for information about the changes in <b>Starcraft 2 Legacy of the Void</b>, from Wings of Liberty, that I have found so far is the <b>Teamliquid</b> gaming esport wiki <b>Liquipedia</b> page <a href="http://wiki.teamliquid.net/starcraft2/Legacy_of_the_Void:_All_changes">http://wiki.teamliquid.net/starcraft2/Legacy_of_the_Void:_All_changes</a><br />
<br />
<u><b><span style="font-size: small;">Links:</span></b></u> <br />
<br />
<b>Teamliquid</b> a great esports & gaming site <br />
<ul>
<li><a href="http://www.teamliquid.net/">http://www.teamliquid.net/</a></li>
</ul>
<b>Liquipedia</b> esport wiki that covers: SC Broodwar, SC2, Dota 2, Counter Strike, Hearthstone, Smash, Heroes, & Overwatch<br />
<ul>
<li><a href="http://wiki.teamliquid.net/">http://wiki.teamliquid.net/</a></li>
</ul>
<br />
<br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com2tag:blogger.com,1999:blog-5998174565153587448.post-81933492488725953802016-01-29T21:46:00.001-06:002016-01-29T22:29:30.599-06:00LOTV Cloaked Ghost Rush <a href="http://wiki.teamliquid.net/starcraft2/ALive">aLive</a> vs <a href="http://wiki.teamliquid.net/starcraft2/MyuNgSiK">MyuNgSiK </a><br />
<br />
<iframe allowfullscreen="" frameborder="0" height="270" src="https://www.youtube.com/embed/xKLBSuQBlAI?list=PL-uRIJPCxHjeLyy5ejh8LZn0XhqGLxv_i" width="480"></iframe>
<br />
Link for those that don't like embedded <a href="https://youtu.be/xKLBSuQBlAI">https://youtu.be/xKLBSuQBlAI</a><br />
<br />
<b>SSL 2016 S1</b><br />
<br />
The 2016 Season of the SSL marks first season for the Legacy of the Void (LOTV) expansion pack to Starcraft 2.<br />
<br />
This is a fun Terran opening from the SSL, <a href="https://www.youtube.com/playlist?list=PL-uRIJPCxHjeLyy5ejh8LZn0XhqGLxv_i">SSL 2016 Playlist</a>, though it will probably never be a standard opening.<br />
<br />
Though it looks like it still needs refinement, I really enjoyed it.<br />
<br />
Hope to see aLive and others try this out a more.<br />
<br />
Though I'm certain we will see it on Ladder. <br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com1tag:blogger.com,1999:blog-5998174565153587448.post-42454896634154716662015-05-21T20:47:00.001-05:002015-05-21T20:50:48.553-05:00Security & Hacking: Android Factory Reset FailuresA somber research paper, "<a href="http://www.cl.cam.ac.uk/~rja14/Papers/fr_most15.pdf"><b>Security Analysis of Android Factory Resets</b></a>" by Laurent Simon & Ross Anderson, describes multiple security issues for many makes, models, and versions of Android phones. <br />
<br />
These issues impact many Android phones, unfortunately there is no single simple solution, though the authors suggest multiple mitigations.<br />
<br />
Three security issues that caught my attention:<br />
<br />
"<i>In general, we found that devices in our sample logically sanitised all bytes requested through the ioctl command, except for one phone: the Google Nexus 4. This has an 6189744128Bdata partition, fully used by the file system. The last 16KB were not sanitised and fully recoverable about 20% of the time after a Factory Reset.</i>"<br />
<br />
"<i>We found emails in 80% of our sample devices, but generally only a few per device</i>"<br />
<br />
"<i>We recovered Google tokens in all devices with flawed Factory Reset, and the master token 80% of the time.</i>"<br />
<br />
The last one, with Google tokens would allow attacker to synchronize email or other accounts. Enabling access to the current account! Not limited to old (historical) data recovered on the Android device in attacker's possession.<br />
<br />
I strongly recommend reading <a href="http://www.cl.cam.ac.uk/%7Erja14/Papers/fr_most15.pdf"><b>Security Analysis of Android Factory Resets</b></a>.<br />
<br />
<ul>
<li>General audience article from Ars Technica <a href="http://arstechnica.com/security/2015/05/flawed-android-factory-reset-leaves-crypto-and-login-keys-ripe-for-picking/">http://arstechnica.com/security/2015/05/flawed-android-factory-reset-leaves-crypto-and-login-keys-ripe-for-picking/ </a></li>
<li>Research Paper (PDF) from Laurent Simon and Ross Anderson, University of Cambridge <a href="http://www.cl.cam.ac.uk/~rja14/Papers/fr_most15.pdf">http://www.cl.cam.ac.uk/~rja14/Papers/fr_most15.pdf</a></li>
</ul>
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-77207923882832756272015-02-06T18:29:00.004-06:002015-02-06T18:34:05.262-06:00Security & Hacking: 2 Factor listUseful page that maintains a list of websites, companies, etc that offer Two Factor Authentication (aka 2FA).<br />
<br />
<a href="https://twofactorauth.org/">https://twofactorauth.org/</a><br />
<br />
In addition to basic list, they also provide links to documentation for those that provide 2FA, they also offer Twitter links to ask companies to add Two Factor.<br />
<br />
Additional Links:<br />
<ul>
<li><b>Wikipedia 2FA</b> <a href="http://en.wikipedia.org/wiki/Two_factor_authentication">http://en.wikipedia.org/wiki/Two_factor_authentication</a> </li>
<li><b>Wikipedia Multifactor Authentication</b> <a href="http://en.wikipedia.org/wiki/Multi-factor_authentication">http://en.wikipedia.org/wiki/Multi-factor_authentication</a></li>
</ul>
<br />
For more Blog posts click on <a href="http://cliffsesportcorner.blogspot.com/search/label/Two%20Factor%20Authentication">Two Factor Authentication</a>, <a href="http://cliffsesportcorner.blogspot.com/search/label/Hacking">Hacking</a>, or <a href="http://cliffsesportcorner.blogspot.com/search/label/Security">Security</a> labels. Labels can be found at bottom left of every blog post, selected labels can be found in Label Cloud at left side of blog.<br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-47333802145906479722015-01-28T17:00:00.001-06:002015-01-28T17:17:11.948-06:00Android & iPhone Battery replacementFor Apple there are a couple of choices, send it to <b>Apple</b> (by mail or Brick & Mortar Apple Store location), or DIY [<b>D</b>o <b>I</b>t <b>Y</b>ourself].<br />
<br />
<span style="background-color: lime;"><b>WARNING</b></span>: For iPhones & Android phones (the ones that don't have readily swappable battery) replacing battery will generally void your warranty because you have opened up the device's case. <br />
<br />
Note if you send it to Apple there is a $6.95 USD shipping fee in addition to the price for battery replacement.<br />
<br />
Link for Apple battery replacement <a href="http://www.apple.com/batteries/service-and-recycling/">http://www.apple.com/batteries/service-and-recycling/</a>.<br />
<br />
DIY option, IMHO simplest DIY approach is to use <b>iFixit</b>, <a href="https://www.ifixit.com/Guide">https://www.ifixit.com/Guide</a>, in addition to the guides, the iFixit store<a href="https://www.ifixit.com/Store"> https://www.ifixit.com/Store</a> offers the parts & tools needed to repair devices.<br />
<br />
<iframe allowfullscreen="" frameborder="0" height="276" src="https://www.youtube.com/embed/RW8RSA51VlY" width="448"></iframe><br />
<br />
Though it varies by model battery replacement for the iPhones seem to be a little easier than iPad, and the iPod Touch 5th Gen is one of the most difficult since it requires a "temperature controlled soldering iron".<br />
<br />
For <b>Android</b>, AFAIK its generally going to be DIY unless your device is still under warrenty, <b>iFixit </b>also offers Guides for <b>Android</b> & <b>Windows Phone</b> <a href="https://www.ifixit.com/Device/Phone">https://www.ifixit.com/Device/Phone</a>.<br />
<br />
VOD of Nexus 7 (pretty easy) battery replacement<br />
<br />
<iframe allowfullscreen="" frameborder="0" height="276" src="https://www.youtube.com/embed/Oi2RoheGfzg" width="448"></iframe><br />
<br />
For more post like this one just click on a Label such as <a href="http://cliffsesportcorner.blogspot.com/search/label/DIY">DIY</a>, <a href="http://cliffsesportcorner.blogspot.com/search/label/apple">Apple</a>, or <a href="http://cliffsesportcorner.blogspot.com/search/label/Android">Android</a>.<br />
<br />
Labels can be found at bottom left of every post, and selected labels can be found in Label Cloud at left side of Blog.Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com2tag:blogger.com,1999:blog-5998174565153587448.post-28196053313072831522015-01-24T11:47:00.001-06:002015-01-24T11:50:16.230-06:00Minecraft Saving Worlds Mac/PC/LinuxQuick reference for saving, backing up, or transferring Minecraft saved games.<br />
<br />
I'd like to find good, meaning clear audio & clear presentation, Youtube for PC, Mac, & Linux. <br />
<br />
Mac Lion 10.7 (show how to without using Terminal)<br />
<a href="http://www.speedofcreativity.org/2011/12/15/transfer-saved-minecraft-worlds-to-another-computer-on-mac-os-x-10-7-lion/">http://www.speedofcreativity.org/2011/12/15/transfer-saved-minecraft-worlds-to-another-computer-on-mac-os-x-10-7-lion/</a><br />
<br />
Instructions for Linux, PC, & Mac (via Terminal)<br />
<a href="http://www.howtogeek.com/60264/how-to-backup-restore-and-sync-your-minecraft-saves-on-all-your-pcs/">http://www.howtogeek.com/60264/how-to-backup-restore-and-sync-your-minecraft-saves-on-all-your-pcs/</a><br />
<br />
<iframe allowfullscreen="" frameborder="0" height="276" src="//www.youtube.com/embed/E4PKBDlhcDI" width="448"></iframe><br />
<br />
XX<br />
<br />
For more posts just click <a href="http://cliffsesportcorner.blogspot.com/search/label/Minecraft">Minecraft</a> or other label such as <a href="http://cliffsesportcorner.blogspot.com/search/label/Backups%20Computers%20Data">Backup Computers Data</a>. <br />
<br />
Labels can be found at bottom left of every post, and selected labels can be found in Label cloud at left side of blogCliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-71791456951281707122015-01-21T16:29:00.002-06:002015-01-21T16:29:11.827-06:00Security & Hacking: "Getting Started in Information Security"Useful list of resources for people interested in Computer/Cyber Security, Hacking, Pen Testing, etc.<br />
<br />
<a href="https://www.reddit.com/r/netsec/wiki/start">https://www.reddit.com/r/netsec/wiki/start</a><br />
<br />
Includes online course, books, etc<br />
<br />
Comment/Suggestion thread for it is <a href="http://www.reddit.com/r/netsec/comments/1l9l70/getting_started_in_information_security/">http://www.reddit.com/r/netsec/comments/1l9l70/getting_started_in_information_security/</a>Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-36820957125210996712015-01-21T16:07:00.001-06:002015-01-21T16:13:32.726-06:00Nerd News: "Google to launch wireless service this year?"Rumors, via <b>Ars</b> <a href="http://arstechnica.com/gadgets/2015/01/report-google-to-launch-wireless-service-this-year/">http://arstechnica.com/gadgets/2015/01/report-google-to-launch-wireless-service-this-year/</a>, that <b>Google</b> is going to be operating a pilot MVNO (<a href="http://en.wikipedia.org/wiki/Mobile_virtual_network_operator">http://en.wikipedia.org/wiki/Mobile_virtual_network_operator</a>) combining <b>Sprint</b> & <b>T Mobile</b> networks.<br />
<br />
Also <b>Ting</b>, a Sprint MVNO, is adding <b>GSM</b> to it's offerings <a href="https://ting.com/blog/ting-to-offer-service-on-a-gsm-network/">https://ting.com/blog/ting-to-offer-service-on-a-gsm-network/</a>.<br />
<br />
[<b>Wikipedia</b> on <b>GSM</b> & <b>CDMA</b> <a href="http://en.wikipedia.org/wiki/Comparison_of_mobile_phone_standards">http://en.wikipedia.org/wiki/Comparison_of_mobile_phone_standards</a>] <br />
<br />
Suspect there is some connection here, not necessarily that they are working together, perhaps T Mobile & Sprint are partnering at some level?<br />
<br />
Ting has a very interesting pricing structure, you pay for what you use, see <a href="https://ting.com/rates">https://ting.com/rates</a> for details.<br />
<br />
I'm planning on giving Ting a try around March/April 2015, to see how good it is with GSM.<br />
<br />
I'll post my thoughts on Ting's GSM here on my Blog.<br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-84065049117333005162015-01-04T04:23:00.002-06:002015-01-04T04:28:35.387-06:00Starcraft 2 Thoughts: ZvT Nydus Terran's 3rd<br />
<iframe allowfullscreen="" frameborder="0" height="276" src="//www.youtube.com/embed/PwjykTvZU9o" width="448"></iframe><br />
<br />
Game 2 of <b>Solar</b> vs <b>Yoda</b> in "<a href="http://wiki.teamliquid.net/starcraft2/The_Fight_Before_Christmas"><b>The Fight Before Christmas</b></a>" <br />
<br />
For some time I have been telling Zerg they should use Nydus for a lot more than cheesy sneak attacks inside opponents base.<br />
<br />
While effective when it works, it relies on failure of opponent to have proper vision of their base to be successful, which fits my working definition of Cheese.<br />
<br />
In contrast, using a Nydus to block Terran's Third, like this case, should at least delay expansion timing.<br />
<br />
Not that blocking the 3rd was a significant priority in this particular case, it was probably intended more to make it harder to spot & target the Nydus.<br />
<br />
But with similar timing, you could drop a Nydus at Terran's likely 4th base, have a Queen hop through and drop a Creep tumor or 2 and spread a lot of creep.<br />
<br />
For more Blog posts & VODs on <a href="http://cliffsesportcorner.blogspot.com/search/label/Nydus">Nydus</a>, just click the <a href="http://cliffsesportcorner.blogspot.com/search/label/Nydus">Nydus</a> label, additional Labels can be found at bottom left of every blog post, and in the Label Cloud on left side of Blog. Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-41184654634641772252014-12-22T11:18:00.001-06:002014-12-22T11:18:05.013-06:00Security & Hacking: Tor warns of Possible Attack on Network<blockquote class="tr_bq">
Snippet: "<i><b>The Tor Project has learned that there may be an attempt to incapacitate
our network in the next few days through the seizure of specialized
servers in the network called directory authorities</b></i>"</blockquote>
<br />
Full story:<br />
<ul>
<li><a href="https://blog.torproject.org/blog/possible-upcoming-attempts-disable-tor-network">https://blog.torproject.org/blog/possible-upcoming-attempts-disable-tor-network</a></li>
<li><a href="https://threatpost.com/tor-project-warns-of-possible-upcoming-attack-on-network/110013">https://threatpost.com/tor-project-warns-of-possible-upcoming-attack-on-network/110013</a></li>
</ul>
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-20687980025992090652014-11-03T05:06:00.003-06:002014-11-03T05:06:28.002-06:00SC2 Thoughts: Power of Queens x Nydus!<br />
<iframe allowfullscreen="" frameborder="0" height="252" src="//www.youtube.com/embed/XsFZc3LZskk" width="448"></iframe><br />
<br />
Life (Z) vs Stats (P) <br />
<br />
Comments with Spoilers below:<br />
<br />
3<br />
<br />
2<br />
<br />
1<br />
<br />
This was a well planned & executed counter to Stats play.<br />
<br />
Few points I want to emphasize:<br />
<br />
<b>Life</b> used a burrowed Zergling to provide vision for Nydus, this provides more tactical surprise, as well as being safer since what isn't seen can't be killed or pushed back.<br />
<br />
Burrow is started at 10:15 at same time Life is getting a Zergling into Stats main for a complete scout.<br />
<br />
The Zergling that provides vision for the Nydus is sent at ~13:13 game time <a href="http://youtu.be/XsFZc3LZskk?t=9m9s">link to that momment</a>. <br />
<br />
<b>Note</b>: In addition to that Ling, there are 2 others to either side of it, for total of 3 Lings, all burrowed, providing vision on the left side of Protoss half of the map.<br />
<br />
Also, more importantly for that Nydus attack, the 2 additional burrow Lings provide vision in case Protoss tries to flank or surround the Nydus force. <br />
<br />
At nearly the same time as the Lings on the left are being burrowed, Life sends a group of Zerglings around right side of map for both Scouting and attempt at another run by into Natural/Main (typical Life Ling Tactics).<br />
<br />
Near end of the game, Stats does send a Probe or two to drop a Pylon near Life's 4th Base (Bottom Right) while the Nydus attack is in progress.<br />
<br />
But realizes there is no way he can put enough pressure on there to win a base race and GG's moments after that Pylon finishes.Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-40935245109505239722014-11-03T04:05:00.004-06:002014-11-03T04:07:31.833-06:00Lee Hutchinson fed up with AT&T unlock policiesPersonal frustration with AT&T from staff member of <b>Ars Technica</b>, Lee Hutchinson <a href="http://arstechnica.com/staff/2014/11/atts-outdated-unlock-policies-cost-it-a-loyal-customer-me/">arstechnica.com/staff/2014/11/atts-outdated-unlock-policies-cost-it-a-loyal-customer-me/</a><br />
<br />
Doesn't surprise me, AT&T was first carrier I used many years ago, won't ever use them again.<br />
<br />
There are things Verizon & T Mobile do that frustrate me, but they at least have some things they do well than balance the negatives much better than AT&T IMO.<br />
<br />
Devil's Advocate: I can think of a single reason for AT&T to do this, though one would still have contract, enforcing that on someone who has unlocked device and isn't happy with AT&T is more expensive than using leverage of not unlocking phone.<br />
<br />
That could be significant for AT&T's cash flow if many others share my opinion that AT&T is the worst carrier in USA after they become a customer.Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-63313044320647414432014-11-03T03:45:00.001-06:002014-11-03T03:45:19.210-06:00Game of the Month: Bunny vs Life<br />
<iframe allowfullscreen="" frameborder="0" height="252" src="//www.youtube.com/embed/Xv06fWq9Pu0" width="448"></iframe><br />
<br />
<b>Bunny</b> (T) vs <b>Life</b> (Z)<br />
Game 3 in Bo3 <br />
<br />
No comments, at least for now, because don't want any spoilers.<br />
<br />
I also liked <a href="https://www.youtube.com/watch?v=2-JoLlNKc4U">Game 2</a> of this series, though it wasn't as awesome as Game 3.Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-32496833746594877702014-10-28T11:09:00.001-06:002014-10-28T11:11:06.753-06:00Nerd News: Dell Alienware external Graphics optionI've been interested in external GPU (eGPU) for some time, for all my posts on that click <a href="http://cliffsesportcorner.blogspot.com/search/label/eGPU">eGPU</a> Label,since laptops are far more practical when you have to travel, but I don't care for 8+ lbs (4+ kilo) gaming laptops.<br />
<br />
Heavy laptops like that aren't much more portable than some desktops, I helped a Nerd buddy drag his desktop around to many events when I was in high school.<br />
<br />
So real interested in news from Dell Alienware about their "Graphics Amplifier", an external GPU bay designed to pair with their new 13" laptop.<br />
<br />
Links to the eGPU: <br />
<ul>
<li><b>WSJ</b> <a href="http://blogs.wsj.com/personal-technology/2014/10/27/alienwares-huge-graphics-amplifier-turns-laptops-into-gaming-infernos/">http://blogs.wsj.com/personal-technology/2014/10/27/alienwares-huge-graphics-amplifier-turns-laptops-into-gaming-infernos/</a></li>
<li><b>Anandtech</b> <a href="http://www.anandtech.com/show/8653/alienware-graphics-amplifier">http://www.anandtech.com/show/8653/alienware-graphics-amplifier</a></li>
</ul>
<br />
Link to 13" Alienware laptop info:<br />
<br />
<ul>
<li>Dell <b>Alienware</b> (Graphics Amplifier under "Accessories & Services" tab in middle of page) <a href="http://www.dell.com/us/p/alienware-13/pd.aspx">http://www.dell.com/us/p/alienware-13/pd.aspx</a></li>
<li><b>Anandtech</b> <a href="http://www.anandtech.com/show/8652/alienware-launches-the-alienware-13-gaming-laptop-with-a-twist">http://www.anandtech.com/show/8652/alienware-launches-the-alienware-13-gaming-laptop-with-a-twist</a></li>
</ul>
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-51595609939148773332014-10-27T09:34:00.001-06:002014-10-27T09:48:28.519-06:00Starcraft 2 Thoughts: Roach Baneling vs Terran<br />
<iframe allowfullscreen="" frameborder="0" height="315" src="//www.youtube.com/embed/Y0fNXFcG78Q" width="480"></iframe><br />
<br /><b>Symbol (Z) vs Flash (T)</b><br />
<br />
Very nice Zerg play!<br />
<br />
A few significant choices Symbol made worth pointing out IMO:<br />
<ul>
<li>In his first attack, he made a point to focus down 4 Supply Depots (3 at third base, & 1 at wall in Natural), this supply blocked Terran for a bit.</li>
<li>He also destroyed the 2 Ebays that were part of the front wall.</li>
<li>He immediately withdrew after accomplishing these limited objectives (ie he didn't overextend). </li>
</ul>
<br />
<br />
I've blogged before about how strong Roach & Banelings with Air Support can be, see this <b>TLO vs Satini</b> game <a href="http://cliffsesportcorner.blogspot.com/2012/02/tlo-vs-satini.html">http://cliffsesportcorner.blogspot.com/2012/02/tlo-vs-satini.html</a>, though I tend to favor Corrupters over the Mutas used here.<br />
<br />
I prefer Corrupters because I feel they are more cost efficient vs Terran than Mutas.<br />
<br />
Six (6) Corrupters will 2 shot Medivacs, so 6 to 12 Corrupters in early game, and in mid or late game Broodlords can be much more useful than Mutas. <br />
<br />
Midgame I would use them more for harassment on certain maps that have dead air space behind bases.<br />
<br />
You can fly 1 or 2 Corrupters behind a Terran base, and then upgrade them to Broodlord.<br />
<br />
If you do that to 2 bases at same time, and have a Nydus network, you can drop Nydus in weak or undefended base with Broodlings providing vision & cover for Nydus.<br />
<br />
Just click on the <a href="http://cliffsesportcorner.blogspot.com/search/label/Starcraft%202%20Thoughts">Starcraft 2 Thoughts</a> Label for more posts like this, more Labels can be found at bottom left of every post and in Label cloud at left side of Blog.<br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-60643232224347723392014-10-27T08:53:00.001-06:002014-10-27T08:53:56.510-06:00IEM 2014 San Jose: Catz vs Creature <br />
<iframe allowfullscreen="" frameborder="0" height="315" src="//www.youtube.com/embed/C3WISPcVqZk" width="480"></iframe><br />
<br />
Interesting series<br />
Catz (Z) vs Creature (P) <br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-12909550243502113602014-10-06T03:41:00.003-05:002014-10-06T03:41:59.062-05:00Nerd News: "Silk Road Lawyers Poke Holes in FBI’s Story"Brian Krebs has an interesting article up, <a href="http://krebsonsecurity.com/2014/10/silk-road-lawyers-poke-holes-in-fbis-story/">http://krebsonsecurity.com/2014/10/silk-road-lawyers-poke-holes-in-fbis-story/</a>, about the trial of alleged leader of Silk Road.<br />
<br />
Short version, government's explanation for how they found the hidden servers appears to be BS.<br />
<br />
This seems like they are hiding real way & means that they discovered the information.<br />
<br />
Which, though IANAL, isn't legal as I understand it, in US Trials, there is a step called "Discovery" see <a href="http://www.americanbar.org/groups/public_education/resources/law_related_education_network/how_courts_work/discovery.html">http://www.americanbar.org/groups/public_education/resources/law_related_education_network/how_courts_work/discovery.html</a> & <a href="http://en.wikipedia.org/wiki/Civil_discovery_under_United_States_federal_law">http://en.wikipedia.org/wiki/Civil_discovery_under_United_States_federal_law</a>.<br />
<br />
So unlike TV or Movie Courtroom drama, there isn't surprise evidence introduced in the middle of the trial.<br />
<br />
There are several reasons why information isn't supposed to be hidden during Discovery.<br />
<br />
Discovery reduces wasting time, Judges generally have more cases than they can get to in any given time period, so as a practical matter, parties are encouraged to settle before Court date.<br />
<br />
It also reduces some types of false testimony & evidence, or at least makes it easier to illuminate that it is occurring.<br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-46885843872600188202014-09-19T16:30:00.001-05:002014-09-19T16:33:09.228-05:00Security & Hacking: Apple iOS 8 & Data ExtractionPeople have been citing a statement on this page <a href="http://www.apple.com/privacy/government-information-requests/">http://www.apple.com/privacy/government-information-requests/</a> as proof that with iOS 8 Apple can't extract data from devices secured with a passcode.<br />
<br />
I don't think most people are reading Apple's statement with a critical enough mindset, here is last part of what Apple actually wrote about data extraction:<br />
<br />
<blockquote class="tr_bq">
"<i>So it's not technically feasible for us to respond to government warrants for the extraction of this data from devices in their possession running iOS 8.</i>" </blockquote>
<br />
The key part is <i>"extraction of this data from devices <b>in</b> <b>their</b></i> [government] <i>possession running iOS 8.</i>" Note my bolded emphasis.<br />
<br />
What Apple is really saying, I think, is just like iOS 7 <b>Apple needs devices in their possession to extract data</b>, they can't do it remotely and didn't provide government agencies with the tools to do so either.<br />
<br />
Here is a snippet from Apple's page <b>Legal Process Guidelines U.S. Law Enforcement</b>. <b>Important Note</b>, the original link "<span style="background-color: yellow;">https://www.apple.com/legal/more-resources/law-enforcement/</span>" to this information at Apple gets redirected to "<span style="background-color: lime;">https://www.apple.com/privacy/government-information-requests/</span>" now, so if you don't have a copy of original page you will need to find cached version to verify:<br />
<blockquote class="tr_bq">
" <b>I. Extracting Data from Passcode Locked iOS Devices<i> </i></b></blockquote>
<blockquote class="tr_bq">
<i>Upon receipt of a valid search warrant, Apple can extract certain categories of active data from passcode locked iOS devices. Specifically, the user generated active files on an iOS device that are contained in Apple’s native apps and for which the data is not encrypted using the passcode (“user generated active files”), can be extracted and provided to law enforcement on external media. Apple can perform this data extraction process on iOS devices running iOS 4 or more recent versions of iOS. Please note the only categories of user generated active files that can be provided to law enforcement, pursuant to a valid search warrant, are: SMS, photos, videos, contacts, audio recording, and call history. Apple cannot provide: email, calendar entries, or any third-party App data.</i><b><i>"</i></b> </blockquote>
<br />
And from the FAQ section of that page:<br />
<blockquote class="tr_bq">
"<b>Can Apple provide me with the passcode of an iOS device that is currently locked?</b></blockquote>
<blockquote class="tr_bq">
<i>No, Apple does not have access to a user’s passcode but may be
able to extract some data from a locked device with a valid search
warrant as described in the Guidelines.</i>" </blockquote>
So what it seems like to me, is that iOS 8 offers at best same protection as earlier versions, Apple can still extract data from from devices in their possession, though they worked hard to write a factually accurate statement that was misleading. <br />
<br />
I also haven't noticed any comments about data from the coprocessor that tracks movement and other data on iPhone 5S and newer, even when phone is sleeping. <br />
<br />
<br />
<b>Additional Links of Interests</b>:<br />
<ul>
<li><b>Apple's 2014 iOS Security Whitepaper</b> <a href="http://images.apple.com/privacy/docs/iOS_Security_Guide_Sept_2014.pdf">http://images.apple.com/privacy/docs/iOS_Security_Guide_Sept_2014.pdf</a></li>
<li><b>Apple iMessage encryption</b> <a href="http://cliffsesportcorner.blogspot.com/2013/04/cnet-apples-imessage-encryption-trips.html">http://cliffsesportcorner.blogspot.com/2013/04/cnet-apples-imessage-encryption-trips.html </a></li>
<li><b>iPhone 5S Good, Bad, & Big Brother</b> <a href="http://cliffsesportcorner.blogspot.com/2013/09/nerd-news-iphone-5s-good-bad-big-brother.html">http://cliffsesportcorner.blogspot.com/2013/09/nerd-news-iphone-5s-good-bad-big-brother.html</a></li>
</ul>
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com1tag:blogger.com,1999:blog-5998174565153587448.post-71618677829121921182014-09-11T20:15:00.000-05:002014-09-11T20:20:09.372-05:00DEFCON 22 Weaponizing Your Pets Gene Bransfield<br />
<iframe width="500" height="315" src="//www.youtube.com/embed/DMNSvHswljM?rel=0" frameborder="0" allowfullscreen></iframe>
<br />
<br />
Weaponizing Your Pets<br />
Gene Bransfield Twitter @gbransfield<br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-29636294005201353262014-09-11T19:08:00.001-05:002014-09-11T20:15:23.123-05:00DEFCON 22: Dark Mail Ladar Levison and Stephen Watt<iframe allowfullscreen="" frameborder="0" height="315" src="//www.youtube.com/embed/TWzvXaxR6us?rel=0" width="480"></iframe><br />
<br />
<b>DEF CON 22</b> <i><b>Darkmail</b></i> <br />
Ladar Levison & Stephan Watt<br />
<br />
I also strongly recommend Leo Laporte's interview of Ladar Levison on <b>Triangulation</b>, its available as podcast on iTunes or as download at<br />
<a href="http://twit.tv/show/triangulation/125">http://twit.tv/show/triangulation/125</a><br />
<br />
<iframe align="middle" frameborder="0" height="318" hspace="0" marginheight="0" marginwidth="0" scrolling="no" src="http://twit.tv/embed/13989" width="480"></iframe> Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-5738788307726808922014-09-11T18:59:00.003-05:002014-09-11T19:21:51.788-05:00Nerd News: "U.S. threatened massive fine to force Yahoo to release data"Washington Post article about how US Government forced Yahoo to hand over information & messages from its users.<br />
<br />
And forced their participation in PRISM.<br />
<br />
Washington Post article: <br />
<a href="http://www.washingtonpost.com/business/technology/us-threatened-massive-fine-to-force-yahoo-to-release-data/2014/09/11/38a7f69e-39e8-11e4-9c9f-ebb47272e40e_story.html">http://www.washingtonpost.com/business/technology/us-threatened-massive-fine-to-force-yahoo-to-release-data/2014/09/11/38a7f69e-39e8-11e4-9c9f-ebb47272e40e_story.html</a><br />
<br />
Wikipedia PRISM:<br />
<a href="http://en.wikipedia.org/wiki/PRISM_%28surveillance_program%29">http://en.wikipedia.org/wiki/PRISM_%28surveillance_program%29</a><br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-5454317387714248612014-08-12T14:56:00.001-05:002014-08-12T15:05:06.738-05:00Nerd News: LastPass Back Up LastPass has been down for a while, but according to LastPass and
other reports it should be back up, though there may still be some
issues.<br />
<br />
Sounds like they only use 2 datacenters, or maybe even only single primary one with a "backup".<br />
<blockquote class="tr_bq">
"<i><b>Update: 1:28 pm EST</b></i><br />
<i><b><br /></b></i>
<i><b>Though one of our data centers remains completely down, the service is
generally stable and should be available to the majority of users (with
the exception of login favicons). Some users may see connection errors
but should still be able to access their data. We continue to work as
quickly as possible to get the service back to 100%.
</b></i>"</blockquote>
Source <a href="http://blog.lastpass.com/">http://blog.lastpass.com/</a> <br />
<br />
<br />
<blockquote class="tr_bq">
"<i><b>Aug 12, 2014 - One of LastPass' datacenters has been down since 3:57am EDT. The service is now running fully off one Herndon VA datacenter and we have been engaged with our provider all morning. Currently favicons/sprites are impacted. We are doing what we can to minimize the impact and apologize for the inconvenience.
</b></i>"</blockquote>
<br />
Source <a href="https://lastpass.com/status.php">https://lastpass.com/status.php</a><br />
<br />
<br />
Also <a href="http://www.isitdownrightnow.com/lastpass.com.html">http://www.isitdownrightnow.com/lastpass.com.html </a><br />
<br />
For <b>LastPass</b> users that want an <b>offline solution</b> to prevent this type of problem in future consider<a href="https://helpdesk.lastpass.com/lastpass-on-the-go-2/lastpass-pocket/"> LastPass Pocket</a><br />
<br />
This is LastPass link specifically about offline access <a href="https://helpdesk.lastpass.com/password-manager-basics/your-lastpass-vault/offline-access-to-your-lastpass-vault/">https://helpdesk.lastpass.com/password-manager-basics/your-lastpass-vault/offline-access-to-your-lastpass-vault/</a> <br />
<br />
<br />Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-16200581436922125772014-08-11T14:19:00.000-05:002014-08-11T15:13:10.182-05:00Def Con 21: "Pentesting with an Army of Low-power Low-cost Devices"<iframe allowfullscreen="" frameborder="0" height="270" src="//www.youtube.com/embed/Mdlcfys8-2A" width="480"></iframe><br />
<br />
<br />
<br />
Couldn't go to Def Con 22, waiting for vods to come out, so started watching some of the Def Con 21 Youtubes in the meanwhile.<br />
<br />
I like this one about Pen Testing with cheap Arm devices by Dr. Philip Polstra aka Dr. Phil the Hacker his Twitter is <b>ppolstra</b> | <a href="https://twitter.com/ppolstra">https://twitter.com/ppolstra</a>.<br />
<br />
He uses the BeagleBoard Black as the starting point for his hardware.<br />
<br />
Some useful links:<br />
<ul>
<li>Current version that's available <i><b>BeagleBone Black Rev C - 4GB Flash - Pre-installed Debian</b></i> <a href="https://www.adafruit.com/products/1876">https://www.adafruit.com/products/1876</a></li>
<li><b>Jan Axelson</b> was LVR.com now <a href="http://janaxelson.com/">http://janaxelson.com/</a> ["<i>The developer's resource for computer interfacing, especially USB, serial (COM) ports, mass storage, Ethernet and Internet for embedded systems, and the parallel port.</i>"] </li>
<li><b>Xbee </b><a href="http://www.digi.com/xbee/">http://www.digi.com/xbee/ </a></li>
<li><b>The Deck</b> [a full-featured penetration testing & forensics Linux distribution] for BeagleBone Black <a href="http://ppolstra.blogspot.com/2013/08/the-deck-for-beaglebone-black-has.html">http://ppolstra.blogspot.com/2013/08/the-deck-for-beaglebone-black-has.html</a></li>
<li><b>Installing Deck</b> Youtube <a href="http://youtu.be/98kbOKuInv4?t=1m18s">http://youtu.be/98kbOKuInv4?t=1m18s</a></li>
<li><b>BeagleBoard</b> site <a href="http://beagleboard.org/">http://beagleboard.org/</a> </li>
<li><b>BeagleBoard Black</b> site <a href="http://beagleboard.org/black">http://beagleboard.org/black</a></li>
<li><b>Wikipedia</b> on <b>BeagleBoard</b> <a href="http://en.wikipedia.org/wiki/BeagleBoard">http://en.wikipedia.org/wiki/BeagleBoard</a></li>
<li><b>Wikipedia</b> on <b>Xbee</b> <a href="http://en.wikipedia.org/wiki/XBee">http://en.wikipedia.org/wiki/XBee</a> </li>
</ul>
For new readers of my blog, I have labels at bottom left of every post & selected labels at left side of the blog to help find related posts.<br />
<br />
These labels can be booked marked so you can just check topics your interested in, so for more posts like this you could click on: <br />
<ul>
<li><a href="http://cliffsesportcorner.blogspot.com/search/label/DEFCON">DEFCON</a> </li>
<li><a href="http://cliffsesportcorner.blogspot.com/search/label/Pen%20Testing">Pen Testing</a> </li>
<li><a href="http://cliffsesportcorner.blogspot.com/search/label/Security">Security</a> </li>
<li><a href="http://cliffsesportcorner.blogspot.com/search/label/Hacking">Hacking</a> </li>
</ul>
Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0tag:blogger.com,1999:blog-5998174565153587448.post-31643985440606635562014-08-11T13:48:00.000-05:002014-08-11T13:59:23.625-05:00Security & Hacking: The Matasano Crypto ChallengesReally cool the <a href="http://web.archive.org/web/20140213141638/http://www.matasano.com/articles/crypto-challenges/"><b>Matasano Crypto Challenges</b></a> is "<b><i>a collection of 48 exercises that demonstrate attacks on real-world crypto</i></b>."<br />
<br />
It's designed to teach real Crypto attacks by doing, great for improving the security of code you write, or to get an idea of what Pen Testing or malicious hacking involves. <br />
<br />
Very good review, worth reading in it's own right here <a href="https://blog.pinboard.in/2013/04/the_matasano_crypto_challenges/">https://blog.pinboard.in/2013/04/the_matasano_crypto_challenges/</a><br />
<br />
Note in the Pinboard review the original link for <b>Matasano Crypto Challenges</b> didn't update for server move, current working link (I have correct link at top of this blog post of mine as well) is <a href="http://web.archive.org/web/20140213141638/http://www.matasano.com/articles/crypto-challenges/">http://web.archive.org/web/20140213141638/http://www.matasano.com/articles/crypto-challenges/</a>Cliffhttp://www.blogger.com/profile/08192294668533306749noreply@blogger.com0