March 13th, 2006, 04:01 PM
Skype - exposed
Hey guys as the popularity of this messenger-voip communication software, grows I was thinking to investigate the security side of this software:
-overall security issues
Please post any information u came across (security related) in regarding to this software!
March 13th, 2006, 04:18 PM
CISSP, CISM, CISA, SSCP
*Thank you GOD*
Greater the Difficulty, SWEETER the Victory.
Believe in yourself.
March 13th, 2006, 04:27 PM
Skype's own Security Bulletins might be handy too. Don't forget to check out SecurityFocus either.
March 13th, 2006, 04:44 PM
March 13th, 2006, 04:47 PM
Experience is something you don't get until just after you need it.
March 13th, 2006, 05:11 PM
Skype claims to have a 128bits encryption, but there's p.o.c. that existing programs (like Cain&Abel - www.oxid.it ) can tap and intercept VoIP conversations.
This is an automated process done by the program, the user has to have no ability at all, no knowledge in spoofing and alikes to hijack and record the conversation...you can see how this could compromise a company on many aspects.
I would use it in day to day calls (their charge rates are really worth it), but never on a corporate enviroment.
March 13th, 2006, 05:33 PM
it uses RC5 to chiper its text chat communication but the key can be recoverd from outgoing UDP datagam... whats the point !! script kiddie protection
March 13th, 2006, 06:20 PM
how about local security where does it store passwords / conversation history / crypted or not?
March 14th, 2006, 10:09 AM