Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.
Showing posts tagged cryptography — 4 results.
I have been promising myself I would read OpenSSH source carefully all year. A week of evenings has produced enough notes to write up. The implementation is more disciplined than I had expected and the architectural choices are educational.
On the 30th of December, a tool called Stacheldraht was reported on Bugtraq. It is the third major DDoS toolkit of the year and visibly the most sophisticated. The architecture combines features of Trinoo and TFN with proper encryption and authentication. The trajectory continues.
Every defender should read the SYN cookies implementation in the Linux kernel at least once. It is short, clever, and a perfect example of a real-world cryptographic trick. A walk through the actual code.
PGP solved end-to-end mail encryption in 1991. Eight years later, almost nobody uses it. The reasons are interesting and they are mostly not technical.