Difference between revisions of "Talk:1354: Heartbleed Explanation"

Explain xkcd: It's 'cause you're dumb.
Jump to: navigation, search
 
(15 intermediate revisions by 12 users not shown)
Line 2: Line 2:
 
:Until I read this wiki, I did not get that. [[Special:Contributions/108.162.216.50|108.162.216.50]] 10:09, 11 April 2014 (UTC)BK201
 
:Until I read this wiki, I did not get that. [[Special:Contributions/108.162.216.50|108.162.216.50]] 10:09, 11 April 2014 (UTC)BK201
 
:There are also references to (if I recall correctly): [[Missed Connections]], "snakes but not too long" from [[Umwelt]], there's boats (of which many comics exist), "bees in car why" may be slightly related to [[Parody Week: TFD and Natalie Dee]]... that's all I see. Also the ip (375.381.283.17) doesn't seem to represent anything, but you never know. {{User:Grep/signature|11:04, 11 April 2014}}
 
:There are also references to (if I recall correctly): [[Missed Connections]], "snakes but not too long" from [[Umwelt]], there's boats (of which many comics exist), "bees in car why" may be slightly related to [[Parody Week: TFD and Natalie Dee]]... that's all I see. Also the ip (375.381.283.17) doesn't seem to represent anything, but you never know. {{User:Grep/signature|11:04, 11 April 2014}}
 +
::The IP most certainly does not represent anything because it is invalid. Three of the octets are >255. [[User:Dan|Dan]] 21:19, 14 April 2014 (UTC)
 +
:::It does not refer to anything as an IP address. It can still represent something that is not a real IP address - fake IP addresses with four random non-octet numbers are far from unheard of in Hollywood products (e.g, Iron Man 3: 936.345.643.21) [[User:Amadan|Amadan]] ([[User talk:Amadan|talk]]) 03:45, 15 April 2014 (UTC)
  
 
While the bug is explained very good, there is one point missing: The word "user" seems to imply that Meg is known to server. But the bug doesn't require that - ANYONE can ask the server. -- [[User:Hkmaly|Hkmaly]] ([[User talk:Hkmaly|talk]]) 11:03, 11 April 2014 (UTC)
 
While the bug is explained very good, there is one point missing: The word "user" seems to imply that Meg is known to server. But the bug doesn't require that - ANYONE can ask the server. -- [[User:Hkmaly|Hkmaly]] ([[User talk:Hkmaly|talk]]) 11:03, 11 April 2014 (UTC)
Line 20: Line 22:
  
 
It looks like the "server key" is a phone number: 1-483-503-8534 {{unsigned ip|199.27.130.228}}
 
It looks like the "server key" is a phone number: 1-483-503-8534 {{unsigned ip|199.27.130.228}}
 +
:I was thinking the same thing. 483 is not a valid area code however. {{unsigned ip|173.245.48.60}}
  
 
The User Ada is a reference to Ingress, in which Ada is the head of the blue team. Ingress, being an ARG, would be an IRL game.{{unsigned ip|108.162.219.10}}
 
The User Ada is a reference to Ingress, in which Ada is the head of the blue team. Ingress, being an ARG, would be an IRL game.{{unsigned ip|108.162.219.10}}
  
 
Why has everyone here missed the reference to Portal 2? It almost seems so obvious :). [[User:YetAnotherGeek|YetAnotherGeek]] ([[User talk:YetAnotherGeek|talk]]) 09:23, 12 April 2014 (UTC)
 
Why has everyone here missed the reference to Portal 2? It almost seems so obvious :). [[User:YetAnotherGeek|YetAnotherGeek]] ([[User talk:YetAnotherGeek|talk]]) 09:23, 12 April 2014 (UTC)
 +
:"Are you still there?" could also be a reference to the turrets in Portal / Portal 2 [[Special:Contributions/173.245.62.126|173.245.62.126]] 09:42, 30 June 2015 (UTC)
  
 
Are we sure that the hacker in the comic is Megan? She has long, curly hair as opposed to short straight hair. Considering she has long hair and has malicious intent, she might be Danish. {{unsigned ip|108.162.216.71}}
 
Are we sure that the hacker in the comic is Megan? She has long, curly hair as opposed to short straight hair. Considering she has long hair and has malicious intent, she might be Danish. {{unsigned ip|108.162.216.71}}
 
:The server refers to her as "Meg", and if she were spoofing the source address, the packets wouldn't go back to her. That would be an amplification DoS attack. --[[Special:Contributions/108.162.246.4|108.162.246.4]] 22:42, 13 April 2014 (UTC)
 
:The server refers to her as "Meg", and if she were spoofing the source address, the packets wouldn't go back to her. That would be an amplification DoS attack. --[[Special:Contributions/108.162.246.4|108.162.246.4]] 22:42, 13 April 2014 (UTC)
 +
::What's to say that [[Danish|Danish's]] real name isn't Margaret? Last I checked, Margaret and Megan are not the same name. That and I'm pretty sure Megan doesn't have curly hair. --[[User:XndrK|XndrK]] ([[User talk:XndrK|talk]]) 19:56, 28 December 2014 (UTC)
  
 
Has anybody figured out what the selfie.jpg contents reaaly are? It isn't a valid JPG because the magic numbers don't match, and it isn't ASCII text because multiple bytes have the most significant bit set. [[Special:Contributions/108.162.215.45|108.162.215.45]] 07:52, 13 April 2014 (UTC)
 
Has anybody figured out what the selfie.jpg contents reaaly are? It isn't a valid JPG because the magic numbers don't match, and it isn't ASCII text because multiple bytes have the most significant bit set. [[Special:Contributions/108.162.215.45|108.162.215.45]] 07:52, 13 April 2014 (UTC)
 +
:I put 834ba962e2ceb9ff89bd3bff8c into a file and [https://www.virustotal.com/en/file/809c727dee625e37c3487f6d57d42e295e2fdd74a8c1f89ce7e667d8ae3e2fcc/analysis/1397428742/#additional-info sent it to VirusTotal]. The magic literal seems to match "DBase 3 data file with memo(s)", so I'd say that it's just random data. --[[Special:Contributions/108.162.246.4|108.162.246.4]] 22:51, 13 April 2014 (UTC)
 +
 +
Has anyone figured out if the words "potato", "bird", and "hat" are supposed to mean something in particular? --[[User:Dfeuer|Dfeuer]] ([[User talk:Dfeuer|talk]]) 07:43, 14 April 2014 (UTC)
 +
 +
I don't know about "potato" and "bird", but "hat" could possibly be a reference to Black Hat Guy, who often creates havoc to prove a point.  Also, completely separately from Black Hat Guy, in security discussions, attackers are broken up between black hat ("bad") and white hat ("good") hackers.  So "hat" could be a sort of generic reference for a hacker. {{unsigned ip|199.27.128.116}}
 +
:Black Hat Guy is not completely separate. He wears a black hat because he is a black hat hacker. [[Special:Contributions/173.245.55.65|173.245.55.65]] 23:48, 17 April 2014 (UTC) TooMuchBlue
 +
 +
I think that "potato" and "bird" are a reference to portal 2, (possibly) how the computer cores constantly malfunction. [[User:mailmindlin|mailmindlin]]
 +
 +
 +
To understand better how far this goes, [http://www.pabr.org/heartbleedtax/heartbleedtax.en.html A taxonomy of Heartbleed attacks] contains a very interesting list of attack cases. --[[User:MGitsfullofsheep|MGitsfullofsheep]] ([[User talk:MGitsfullofsheep|talk]]) 12:53, 9 September 2014 (UTC)

Latest revision as of 09:42, 30 June 2015

I assume everybody got the (truncated) reference to the password "CorrectHorseBatteryStaple"... 141.101.89.210 06:51, 11 April 2014 (UTC)

Until I read this wiki, I did not get that. 108.162.216.50 10:09, 11 April 2014 (UTC)BK201
There are also references to (if I recall correctly): Missed Connections, "snakes but not too long" from Umwelt, there's boats (of which many comics exist), "bees in car why" may be slightly related to Parody Week: TFD and Natalie Dee... that's all I see. Also the ip (375.381.283.17) doesn't seem to represent anything, but you never know. greptalk11:04, 11 April 2014 (UTC)
The IP most certainly does not represent anything because it is invalid. Three of the octets are >255. Dan 21:19, 14 April 2014 (UTC)
It does not refer to anything as an IP address. It can still represent something that is not a real IP address - fake IP addresses with four random non-octet numbers are far from unheard of in Hollywood products (e.g, Iron Man 3: 936.345.643.21) Amadan (talk) 03:45, 15 April 2014 (UTC)

While the bug is explained very good, there is one point missing: The word "user" seems to imply that Meg is known to server. But the bug doesn't require that - ANYONE can ask the server. -- Hkmaly (talk) 11:03, 11 April 2014 (UTC)

Nope, the word "user" does not indicate a logged in user. It's just a reference to anybody who happens to "use" (actually: connect to) the server at the moment. In fact, it is a particular network connection (TCP or else), on which other end there is a "user" Meg. -- 108.162.210.111 12:07, 11 April 2014 (UTC)

The transcript should include all the text in the servers memory, not just the highlighted text. Kynde (talk) 15:04, 11 April 2014 (UTC)

Nope, it can only do 64k per request. 108.162.216.91 16:04, 11 April 2014 (UTC)
I meant that the transcript here above the talk page should include all text. When I wrote my comment, only the highlighted text in the computers thoghts where transcripted. Now that I visit the page again, it seems to be complete. The text in the servers last speech is only half the 500 charachters long (251) but that is explained by OnePointEight in the comment below. Kynde (talk) 21:20, 11 April 2014 (UTC)
The speech bubble is formatted as truncated, but if it were complete it would be 500 characters which is what was requested by Megan and within the 64k max.OnePointEight (talk) 19:39, 11 April 2014 (UTC)

Heartbleed Explanation Explanation. Lovely. Also, I see that Eve is an administrator. Eavesdropper? 108.162.237.218 15:24, 11 April 2014 (UTC)

Also the attacker is Meg, which can be thought of as an alternate to Mallory/Trudy 108.162.221.65 16:45, 11 April 2014 (UTC)
This is absurd. Meg is a common nickname for Margaret. 173.245.50.84 20:38, 11 April 2014 (UTC)
As my main language is not English I'm not familiar with nicknames, but if Meg is a common nickname for Margaret then that is important and should be included in the explanation of the title text. I did not understand why Margaret suddenly turned up... Kynde (talk) 21:28, 11 April 2014 (UTC)
The explanation of the title text has presumably been expanded since you visited it. It's a reference to a book. --V2Blast (talk) 03:34, 12 April 2014 (UTC)

"Snakes but not too long"... great! --108.162.210.241 15:49, 11 April 2014 (UTC)

It looks like the "server key" is a phone number: 1-483-503-8534 199.27.130.228 (talk) (please sign your comments with ~~~~)

I was thinking the same thing. 483 is not a valid area code however. 173.245.48.60 (talk) (please sign your comments with ~~~~)

The User Ada is a reference to Ingress, in which Ada is the head of the blue team. Ingress, being an ARG, would be an IRL game. 108.162.219.10 (talk) (please sign your comments with ~~~~)

Why has everyone here missed the reference to Portal 2? It almost seems so obvious :). YetAnotherGeek (talk) 09:23, 12 April 2014 (UTC)

"Are you still there?" could also be a reference to the turrets in Portal / Portal 2 173.245.62.126 09:42, 30 June 2015 (UTC)

Are we sure that the hacker in the comic is Megan? She has long, curly hair as opposed to short straight hair. Considering she has long hair and has malicious intent, she might be Danish. 108.162.216.71 (talk) (please sign your comments with ~~~~)

The server refers to her as "Meg", and if she were spoofing the source address, the packets wouldn't go back to her. That would be an amplification DoS attack. --108.162.246.4 22:42, 13 April 2014 (UTC)
What's to say that Danish's real name isn't Margaret? Last I checked, Margaret and Megan are not the same name. That and I'm pretty sure Megan doesn't have curly hair. --XndrK (talk) 19:56, 28 December 2014 (UTC)

Has anybody figured out what the selfie.jpg contents reaaly are? It isn't a valid JPG because the magic numbers don't match, and it isn't ASCII text because multiple bytes have the most significant bit set. 108.162.215.45 07:52, 13 April 2014 (UTC)

I put 834ba962e2ceb9ff89bd3bff8c into a file and sent it to VirusTotal. The magic literal seems to match "DBase 3 data file with memo(s)", so I'd say that it's just random data. --108.162.246.4 22:51, 13 April 2014 (UTC)

Has anyone figured out if the words "potato", "bird", and "hat" are supposed to mean something in particular? --Dfeuer (talk) 07:43, 14 April 2014 (UTC)

I don't know about "potato" and "bird", but "hat" could possibly be a reference to Black Hat Guy, who often creates havoc to prove a point. Also, completely separately from Black Hat Guy, in security discussions, attackers are broken up between black hat ("bad") and white hat ("good") hackers. So "hat" could be a sort of generic reference for a hacker. 199.27.128.116 (talk) (please sign your comments with ~~~~)

Black Hat Guy is not completely separate. He wears a black hat because he is a black hat hacker. 173.245.55.65 23:48, 17 April 2014 (UTC) TooMuchBlue

I think that "potato" and "bird" are a reference to portal 2, (possibly) how the computer cores constantly malfunction. mailmindlin


To understand better how far this goes, A taxonomy of Heartbleed attacks contains a very interesting list of attack cases. --MGitsfullofsheep (talk) 12:53, 9 September 2014 (UTC)