Peter's z80.eu site blog
Some tests with PGP 6.5.8 from NAI and ckt builds of PGP and Windows 7 [offtopic] 
Saturday, January 24, 2015, 04:00 PM
Posted by Administrator
While looking for Symantec PGP 10.x alternatives, I started to think about using old versions of PGP, too. At least the ADK problem should be fixed (see http://senderek.ie/research/security/ke ... ments.html ), so I had to start with 6.5.8ckt or newer.
Unfortunately PGP 7, PGP 8 (which I think personally was the best of all) are not really working in Windows 7, and PGP 9 and newer can be used, but should not be used due to considerations about trusting Symantec (they will cooperate with the NSA for sure and they offered the source only 'til version 10.0.1 from 2011, but they offer and deliver newer versions meanwhile only without source code review possibility).

Also, I read some dumb comments additional keys in the NAI versions.
So I started with the original 6.5.8 PGP version from NAI.

The PGP Memory Page Locking Driver does NOT work with Windows 7, but the programs are still running, if you're giving them administrative rights (that problem is unfortunately not solved yes, but it depends from the installation directory and because this version wants to write his keyring by default into the program directory).

You can fix this by setting a registry value to 1 (the name of it: ClearPageFileAtShutdown), so you can be sure after shutting down the PC, the pagefile is at least cleared.

I created a PGP keypair and encrypted a file (with "PGP tools").
After that, I uninstalled the original PGP 6.5.8 and installed Imad R. Faiad's "ckt build" version 8 (and later 9b3, which shows 9b2, a bit weird), using the already created key. It gaves exactly the same result.

Then, I created a new key (with similar parameters) and encrypted again the above used file. Again the resulting file had at least exactly the same size.
Just for testing purposes, I added an additional key - again with the same file.
I got a different file size for the encrypted file - as expected.
So I can't see any difference between using the NAI version and the "ckt builds".
But you have to use the "ckt builds" for two reasons at least:
There is no ADK weakness in the "ckt builds" (see above) and you can use much longer keys, although most of the cryptographers say, more than 3072 bit key length is wasted effort.

Meanwhile it's a bit difficult to get these ckt builds as a binary.
Try it with the "related link" below, at least you can search the web for "pgp658ckt09b3.zip" and/or "pgp658ckt08.zip", and for the source try to search for "pgp658ckt08s.zip".
add comment ( 2 views )   |  permalink   |  related link   |   ( 3.2 / 23 )
The perfect virus ? NSA's "barnfire" program and implications [offtopic] 
Monday, January 19, 2015, 07:00 PM
Posted by Administrator
The german magazine Spiegel published new infos about some (meanwhile old but still valid) NSA programs in their latest article. They also mentioned "barnfire", which is a codename for a BIOS modification to bypass all virus scanners and other (local) detection mechanisms.
Bruce Schneider offers also infos about at, although it does not contain much more infos, see >here<.
His blog points to http://cryptome.org/2015/01/spiegel-15-0117.7z , inside the 7z archive is also a file named media-35661.pdf which mentions "barnfire"

A modified BIOS (it must be a modified one, not a new one, because otherwise it can be easily discovered) does not help if hard disks are encrypted. May be you can "chain/hook" into Windows API after Windows is already booted (and encryption is active), but this seems to be a much more sophisticated approach. It has to be possible to extend functions while they are loaded in memory, because even Windows API will use in its driver BIOS calls (at least in drivers, but may be in some basic parts of the OS too).
You can't modify directly files on disk unless you the "know" encryption keys/encryption algorithm, but you don't need to have the knowledge about it, if your "base" is the BIOS itself.
It's like placing a virus on your harddisk, but the virus is located in the BIOS itself and can't be detected by scanning files or even memory.
But your PC's BIOS flash memory does not have to be write protected. Fortunately new computers only protects the firmware flashing "entry" of the BIOS, but this is SOFTWARE, so unless your PC is not protected by "jumper", it can be bypassed. The function "Flash BIOS" is also just a piece of software.

So the possible attack sequence might be:
1 - try to use a zero day exploit
2 - if successful, identify the used firmware
3 - load the appropriate but modified BIOS
4 - flash the BIOS
5 - delete all traces
6 - reboot (or just wait)

Remember, you will be still protected by external IT security components like http-Proxy servers, unless you analyze also the network traffic with your backdoor code. But this will make the BIOS modifications almost impossible, because you need much more code.

I guess the simpler variation of the BIOS mod is already existing, made by smart programmers @NSA ...
add comment ( 2 views )   |  permalink   |  related link   |   ( 3 / 238 )
640K Ought to be Enough for Anyone 
Monday, January 12, 2015, 10:00 PM
Posted by Administrator
For most DOS software, this might be true.
I am referring to that "quote", because a few days ago, I upgraded my Schneider (Amstrad) PC 1512 to 640KB RAM. And yes, for this machine, it is enough to run most of the programs of an exciting decade.

But where does this "out to be enough" sentence come from ?

Most of the "googled" internet hits says Bill Gates said this.
At least there is one source of a similar sentence he said:
In Infoworld magazine from April 29th, 1985 (Vol.7 Issue 17), you can read at page 5:

When we set the upper limit of PC-DOS at 640K, we thought nobody would ever need that much memory.

William Gates, Chairman of Microsoft

You can read the whole article here (click on picture):


But some already further investigated some more possible sources, so it's difficult to say "Bill Gates" said this. Go on reading at http://quoteinvestigator.com/2011/09/08/640k-enough/

At least, this all is (interesting) history.
add comment ( 2 views )   |  permalink   |  related link   |   ( 2.6 / 197 )
Pioneer hardware with a (meanwhile) rare CPU: Cosmac Elf (1976) ... and his successors 
Sunday, January 4, 2015, 10:00 PM
Posted by Administrator
This is really cool:
The "ancient" CMOS CPU from RCA, the 1802, can be still found in SBC projects like the "1802 Cosmicos" and the "COSMAC Elf 2000" !

Why is a SBC so interesting with the RCA 1802 ?
Because the CPU is also used in many satellites and (former) rockets (it was also manufactured as a radiation resistant variation), and it was one of the first 8 Bit CPUs available, too.
Some of the first video consoles used the RCA 1802, too.
In 1976, it was the fastest (3.58Mhz) running CPU, unfortunately no bigger computer manufacturing company used it for their models.
The CPU was also used in a rare homecomputer named "COMX35", but that's the only one of his kind I know.
The first SBC, the Cosmac Elf, was published in August 1976 in "Popular Electronics".

You can take a look at the articles also >here< and >here<.
You should also visit http://www.cosmacelf.com/

NOW WHERE'S THE BEEF ?

Hans Otten has his own page about his 1802 Cosmicos SBC:
http://retro.hansotten.nl/index.php?page=1802-cosmicos
Infos about the "COSMAC Elf 2000" can be found here:
http://www.sparetimegizmos.com/Hardware/Elf2K.htm

But you don't need real hardware to try to program a RCA 1802.
There is a really good emulator: http://www.elf-emulation.com/emulator.html
Another emulator can be found here: http://www.emma02.hobby-site.com/index_download.html

Take a look at http://en.wikipedia.org/wiki/RCA_1802 for a first impression about the CPU.
Then look at the instruction list at http://www.elf-emulation.com/1802.html

Picture was taken from wikipedia.
add comment ( 2 views )   |  permalink   |  related link   |   ( 3.2 / 206 )
Merry Christmas to all blog readers 
Wednesday, December 24, 2014, 02:00 PM
Posted by Administrator
I wish you a merry christmas and a happy new year !
Thank you for reading my humble vintage computer blogs, some already for years.

The shown animated GIF is taken from the "Sierra Electronic Christmas Card 1986" and runs with MS-DOS 3.2 and above, also on my old Amstrad (Schneider) PC 1512.


You can download the AGI or SCI version here:
http://www.sierrahelp.com/Misc/Demos.html#Christmas

There are much more animations (be amazed, even Santa will show up), not only a fireside.

add comment ( 4 views )   |  permalink   |  related link   |   ( 3.3 / 281 )

| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | Next> Last>>