PaulDotCom Security Weekly - Episode 50 - Nov 2, 2006
Live from the Brand New PaulDotCom Security Weekly Studio....
- Sponsored by Core Security, listen for the discount code at the end of the show
- Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book!
- Sponsored by Astaro, Astaro Security Gateway line of network security appliances. Listen to the show for a special offer!
- Please go update our frapper map!
- Want some cool PaulDotCom Gear? Do you hack naked? Check out our Cafepress Store!
- Full Show Notes
Hosts: Larry "Uncle Larry" Pesce, Paul "PaulDotCom" Asadoorian, Nick "Twitchy" Depetrillo, Joe "Mr. C" Conlin
Email: psw@pauldotcom.com
Audio Feeds: 
Comments
0xCAFEBABE 0XFEEDFACE
Posted by: BlackDragon | November 5, 2006 10:42 PM
The magic number for the archive header is 0xCAFEBABE.
The PPC mach-o binary magic number is 0xFEEDFACE.
The archive header, as I understand it, is at the beginning of any mac "fat" binary which contains code for both intel and ppc architectures. The Mach-O magic number marks the portion of the binary that corresponds to the executable code for the Power PC architecture. By searching for this magic number and using a clever unix trick with the 'dd' command, you can strip the intel part of the binary out in order to slim down your binary files.
Link:
http://www.matasano.com/log/579/de-universalizing-mac-binaries-for-disassembly/
Posted by: kev | November 6, 2006 03:51 PM
About the Seagate Encryption. how safe is it?
http://www.dataclinic.co.uk/password-protected-encrypted-hard-disk-recovery.htm
All I have to say is that there is always a backdoor in a closed system. That's the creed I've adopted.
Axton Grams
Posted by: Axton Grams | November 7, 2006 06:46 PM