1
00:00:00,000 --> 00:00:02,750
[Powered by Google Translate] [Wiki 10]

2
00:00:02,750 --> 00:00:04,750
[David J. Malan] [Chuo Kikuu cha Harvard]

3
00:00:04,750 --> 00:00:07,000
[Hii ni CS50.] [CS50.TV]

4
00:00:08,520 --> 00:00:13,240
>> Yote ya haki! Hii ni CS50 lakini si kwa muda mrefu.

5
00:00:13,240 --> 00:00:14,740
Huu ni mwanzo wa wiki 10.

6
00:00:14,740 --> 00:00:18,780
Jumatano tuna Quiz wetu, na kisha Jumatatu ijayo tuna baadhi ya keki celebratory

7
00:00:18,780 --> 00:00:22,030
kama sisi kuja kamili mduara njia yote nyuma kutoka sifuri wiki.

8
00:00:22,030 --> 00:00:25,200
Leo hii, tunazungumzia kuhusu moja ya mada favorite, ukweli kuwa habari -

9
00:00:25,200 --> 00:00:29,000
ile ya usalama na faragha na matokeo ya aina ya vifaa na programu

10
00:00:29,000 --> 00:00:31,000
kwamba sisi wote kutumia siku hizi.

11
00:00:31,000 --> 00:00:33,300
Kwa kuwa waaminifu, kuna mengi ya vitisho huko nje

12
00:00:33,300 --> 00:00:35,430
kwamba kama wewe si kweli paused kufikiri juu yao,

13
00:00:35,430 --> 00:00:36,920
wao uko kweli pretty ngumu.

14
00:00:36,920 --> 00:00:40,070
Uchunguzi katika kumweka - kama yoyote ya umewahi kupakuliwa kipande cha programu

15
00:00:40,070 --> 00:00:42,660
mbali ya mtandao na imewekwa kwenye kompyuta yako,

16
00:00:42,660 --> 00:00:45,220
ve kushiriki katika shahada kubwa ya uaminifu, haki?

17
00:00:45,220 --> 00:00:50,220
Hakuna kitu baada ya kuzuiwa Skype, au Chrome, au kipande cha programu

18
00:00:50,220 --> 00:00:54,770
ve imewekwa kwenye kompyuta yako, kutoka tu kufuta yote ya files kwenye gari yako ngumu;

19
00:00:54,770 --> 00:00:58,260
kupakia wote wa files kwenye gari yako ngumu kwa server baadhi guy mbaya ya;

20
00:00:58,260 --> 00:01:01,650
kutokana na kusoma yote ya barua pepe yako; kutoka intercepting yote ya ujumbe wako papo.

21
00:01:01,650 --> 00:01:05,040
Kwa sababu ukweli ni leo na mifumo ya kisasa zaidi ya uendeshaji

22
00:01:05,040 --> 00:01:10,040
hapo kweli ni si mengi ya ukuta kati ya mipango ya programu ambayo sisi kufunga,

23
00:01:10,040 --> 00:01:14,220
na wewe na mimi ni pretty much tu aina ya kuvuka vidole yetu na kuchukua imani

24
00:01:14,220 --> 00:01:17,750
kwamba programu sisi kupakuliwa kwa bure, au kwamba jambo hilo ni 99 senti,

25
00:01:17,750 --> 00:01:20,140
ni kweli kabisa benign.

26
00:01:20,140 --> 00:01:23,090
Lakini kama tumeona kupitia C, na sasa PHP na JavaScript,

27
00:01:23,090 --> 00:01:25,420
na uwezo huu kueleza wenyewe programatically,

28
00:01:25,420 --> 00:01:30,300
unaweza kufanya zaidi kitu chochote unataka na mpango kwamba mtumiaji mwenyewe au mwenyewe na la kufanya.

29
00:01:30,300 --> 00:01:32,390
>> Hivyo, leo sisi kuzingatia mada kwamba -

30
00:01:32,390 --> 00:01:35,360
si tu baadhi ya vitisho lakini pia ulinzi.

31
00:01:35,360 --> 00:01:37,540
Hakika, katika dunia ya usalama kwa ujumla,

32
00:01:37,540 --> 00:01:39,040
kuna aina ya mchezo huu cat-na-panya,

33
00:01:39,040 --> 00:01:41,990
na mimi daresay wabaya karibu daima kuwa na mguu juu.

34
00:01:41,990 --> 00:01:45,880
Linapokuja kuchukua faida ya vifaa na programu ya kompyuta wetu binafsi,

35
00:01:45,880 --> 00:01:51,250
tuna kutambua kwamba kijana mbaya tu mahitaji ya kupata moja rahisi kukosea -

36
00:01:51,250 --> 00:01:56,150
moja kunyonya, moja mdudu - katika kipande cha programu tumekuwa iliyoandikwa au ni mbio

37
00:01:56,150 --> 00:01:58,280
ili kwa ajili yake au kwake kuchukua mfumo wetu mzima.

38
00:01:58,280 --> 00:02:02,870
Kwa kulinganisha, sisi - wazuri - haja ya kiraka na kurekebisha yote ya mende wale

39
00:02:02,870 --> 00:02:04,900
na kuepuka wa udhaifu wote wale.

40
00:02:04,900 --> 00:02:07,870
Na hivyo, mimi daresay juu ya wote, wabaya na faida.

41
00:02:07,870 --> 00:02:10,840
Nini madarasa kama hii na madarasa ya baadae ni kweli kuhusu

42
00:02:10,840 --> 00:02:14,830
si kuhusu kufundisha jinsi ya kupigana vita kwamba hawa watu wabaya kufanya,

43
00:02:14,830 --> 00:02:18,220
lakini ni kuhusu jinsi ya kujikinga au angalau jinsi ya kufanya uamuzi mahesabu

44
00:02:18,220 --> 00:02:22,970
kuwa ndiyo, najua hii kipande cha programu inaweza kweli kusoma kila moja ya barua pepe yangu,

45
00:02:22,970 --> 00:02:27,040
lakini nina sawa na kwamba kwa sababu ya thamani yake huleta mimi kwa upande mwingine.

46
00:02:27,040 --> 00:02:31,060
>> Mimi nina radhi sana kwa kuwa alijiunga na 2 ya watu smartest Mimi najua -

47
00:02:31,060 --> 00:02:33,060
Rob Bowden na Nate Hardison.

48
00:02:33,060 --> 00:02:36,850
Rob ni kuhusu kuchukua nasi kwa njia ya ziara katika ngazi ya chini tags usalama -

49
00:02:36,850 --> 00:02:42,470
kwamba ya compiler ambayo, hadi sasa, tumekuwa wote kuja upendo na uaminifu. Rob Bowden.

50
00:02:42,470 --> 00:02:47,790
[Applause]

51
00:02:47,790 --> 00:02:50,280
>> [Rob] wote wa kulia. Daudi pretty much kuchukuliwa sapa wangu wote

52
00:02:50,280 --> 00:02:52,320
kwamba alikuwa anaenda kuanzisha na, lakini -

53
00:02:52,320 --> 00:02:58,070
Wiki kadhaa zilizopita, ninyi kuona mfano wa shambulio buffer-kufurika

54
00:02:58,070 --> 00:03:01,900
ambayo ni mfano wa Hacking hacker katika baadhi kipande cha programu

55
00:03:01,900 --> 00:03:06,060
kwamba wao ni si walidhani kuwa Hacking ndani.

56
00:03:06,060 --> 00:03:09,690
upande mwingine wa hii

57
00:03:09,690 --> 00:03:14,470
ni wakati mwingine una programu ambayo ni malicious katika yenyewe.

58
00:03:14,470 --> 00:03:17,070
Haina hata haja ya kuwa hacked.

59
00:03:17,070 --> 00:03:20,670
mtu ambaye aliandika programu anataka hack wewe.

60
00:03:20,670 --> 00:03:22,190
>> Hebu tu tuzame kwenye kanuni,

61
00:03:22,190 --> 00:03:28,560
kuchukua kuangalia "login.c".

62
00:03:28,560 --> 00:03:33,390
Hapa, mpango silly kwamba linatambulisha username na password mchanganyiko.

63
00:03:33,390 --> 00:03:39,420
Hapa lazima dhahiri kuwa kupata starehe na C tena kwa chemsha bongo.

64
00:03:39,420 --> 00:03:43,470
Kwanza, sisi ni kutumia kupata masharti kuelezea jina la mtumiaji,

65
00:03:43,470 --> 00:03:46,280
basi sisi ni kutumia kamba kupata kunyakua password,

66
00:03:46,280 --> 00:03:50,680
na kisha tuna hundi trivial baadhi ya haki, ni jina la mtumiaji "rob"?

67
00:03:50,680 --> 00:03:52,710
Na ni password "thisiscs50"?

68
00:03:52,710 --> 00:03:56,900
Au, ni jina la mtumiaji "Tommy" na password "i <3javascript"?

69
00:03:56,900 --> 00:03:58,980
Kama aidha ya wale ni kesi,

70
00:03:58,980 --> 00:04:01,980
 basi sisi ni kwenda tu magazeti "Mafanikio", na kisha sisi kupata.

71
00:04:01,980 --> 00:04:07,690
Vinginevyo, sisi ni kwenda magazeti "batili login" na kisha, bila shaka,

72
00:04:07,690 --> 00:04:11,120
 tangu kumbukumbu mchoro masharti malloc, sisi bure username na password.

73
00:04:11,120 --> 00:04:15,560
Hii ni trivial login mpango,

74
00:04:15,560 --> 00:04:18,110
na kama wewe kufikiri kuhusu wakati wewe kuingia katika appliance,

75
00:04:18,110 --> 00:04:22,350
ni pretty sawa - au hata kuingia katika kompyuta yako -

76
00:04:22,350 --> 00:04:24,930
kuna baadhi tu ya mpango login ambayo ni kutoa huduma.

77
00:04:24,930 --> 00:04:31,840
Hapa, sisi kutokea kwa kuwa vigumu-coded 'rob', 'thisiscs50', 'Tommy', 'i <3javascript',

78
00:04:31,840 --> 00:04:34,950
lakini pengine kuna baadhi faili mahali fulani kwenye mfumo wa uendeshaji wako

79
00:04:34,950 --> 00:04:38,690
ambayo ina orodha ya majina ya watumiaji ambao unaweza kuingia kwa mfumo

80
00:04:38,690 --> 00:04:41,740
na orodha ya nywila kuhusishwa na majina ya watumiaji hao.

81
00:04:41,740 --> 00:04:46,090
Kawaida nywila si tu kuhifadhiwa katika maandishi wazi kama hii.

82
00:04:46,090 --> 00:04:50,360
Kuna aina fulani ya kuficha, lakini hii kufanya kwa mfano wetu.

83
00:04:50,360 --> 00:04:57,000
>> Kuja juu kwa compiler yetu -

84
00:04:57,020 --> 00:05:00,780
itakavyo kuwa rahisi sana.

85
00:05:00,780 --> 00:05:04,800
Tunahitaji taja angalau baadhi faili kwamba tunataka kukusanya,

86
00:05:04,800 --> 00:05:10,200
na kisha hapa - mistari haya

87
00:05:10,200 --> 00:05:12,520
ni kusoma tu faili.

88
00:05:12,520 --> 00:05:16,080
Ni anayesoma faili nzima katika buffer moja kubwa,

89
00:05:16,080 --> 00:05:19,000
na kisha sisi null-kusitisha buffer yetu kama siku zote,

90
00:05:19,000 --> 00:05:21,000
na hatimaye sisi tu kukusanya faili.

91
00:05:21,000 --> 00:05:24,090
Sisi siyo kwenda kuangalia jinsi kukusanya ni kweli kutekelezwa,

92
00:05:24,090 --> 00:05:26,820
lakini kama ladha, ni tu wito Clang.

93
00:05:26,820 --> 00:05:32,370
Sisi ni kwenda kutumia programu hii ya kukusanya vitu badala ya Clang.

94
00:05:32,370 --> 00:05:39,260
Tatizo moja ni sisi kuanza na sisi tunataka kuona kukusanya compiler yetu,

95
00:05:39,260 --> 00:05:43,620
lakini kama sisi siyo kwenda kutumia Clang, sijui nini nitakacho kukusanya pamoja.

96
00:05:43,620 --> 00:05:46,700
Hili ni suala ujumla inayojulikana kama uchangishaji.

97
00:05:46,700 --> 00:05:53,080
Hivyo, kama hii mara moja, mimi naenda kutumia Clang kukusanya compiler yetu.

98
00:05:53,080 --> 00:05:58,800
>> Kama unafikiri ya GCC na Clang -

99
00:05:58,800 --> 00:06:03,200
programu hizo, compilers wale ni daima kuwa updated,

100
00:06:03,200 --> 00:06:10,010
na compilers wale ni compiled kutumia GCC na Clang.

101
00:06:10,010 --> 00:06:14,890
Clang ni moja tu kubwa C au C + + mpango,

102
00:06:14,890 --> 00:06:19,510
hivyo compiler wao kutumia kukusanya kwamba ni Clang.

103
00:06:19,510 --> 00:06:26,820
Hapa, sasa, sisi ni kwenda tu kutumia compiler yetu kukusanya compiler yetu,

104
00:06:26,820 --> 00:06:33,830
na tunaweza hata kusema - '/ compiler.', 'compiler.c', 'compile.c', 'o-compiler'.

105
00:06:33,830 --> 00:06:37,250
Taarifa hii ni amri halisi mimi mbio kabla ya -

106
00:06:37,250 --> 00:06:41,330
tu nafasi Clang na '. / compiler'.

107
00:06:41,330 --> 00:06:44,990
Na sasa tuna mwingine compiler, lakini ni sawa.

108
00:06:44,990 --> 00:06:47,510
Ni tu wito Clang.

109
00:06:47,510 --> 00:06:55,050
>> Sisi ni kwenda kutumia compiler yetu kukusanya login mpango wetu.

110
00:06:55,050 --> 00:07:03,030
Sawa - ". / Compiler login.c-o login".

111
00:07:03,030 --> 00:07:06,160
Hivyo, undefined akimaanisha "GetString".

112
00:07:06,160 --> 00:07:11,250
Got "-lcs50". Sawa.

113
00:07:11,250 --> 00:07:13,790
Hivyo sasa nina login mpango wetu.

114
00:07:13,790 --> 00:07:16,790
Mbio ni - kupokea "Tafadhali ingiza jina lako."

115
00:07:16,790 --> 00:07:22,140
Mfano mmoja alikuwa kuwaibia. Tafadhali ingiza nywila yako - thisiscs50.

116
00:07:22,140 --> 00:07:24,930
Na mafanikio! Mimi kupata.

117
00:07:24,930 --> 00:07:28,350
Mbio tena na kuingia baadhi password batili -

118
00:07:28,350 --> 00:07:30,350
au batili username na password -

119
00:07:30,350 --> 00:07:32,860
batili login.

120
00:07:32,860 --> 00:07:37,740
Sawa. Hakuna kitu ya kuvutia kuhusu hili hadi sasa.

121
00:07:37,740 --> 00:07:43,100
Lakini, hebu tuangalie login tena -

122
00:07:43,100 --> 00:07:47,850
na hii ni ya kwenda kuwa mfano fulani yasiyo na maana,

123
00:07:47,850 --> 00:07:59,330
lakini hebu kuongeza mwingine katika hapa na kusema, mwingine kama ((strcmp (jina la mtumiaji, "hacker") == 0 &&

124
00:07:59,330 --> 00:08:14,510
strcmp (password, "LOLihackyou") == 0))

125
00:08:14,510 --> 00:08:26,280
hivyo sasa, printf ("Hacked Wewe sasa wanapata n \!."); sawa.

126
00:08:26,280 --> 00:08:36,240
Kuandaa hii - compiler login.c-o-login lcs50 -

127
00:08:36,240 --> 00:08:40,190
sasa mbio login - na kama mimi kutumia jina la mtumiaji yangu hacker

128
00:08:40,190 --> 00:08:44,740
na password LOLihackedyou -

129
00:08:44,740 --> 00:08:47,780
Je ninapoandika ni makosa katika huko mbele?

130
00:08:47,780 --> 00:08:52,990
Katika login.c-ihack - I'll kufanya hacked sababu nadhani mimi kufanya hivyo baadaye.

131
00:08:52,990 --> 00:08:56,270
Sawa. Recompiling.

132
00:08:56,270 --> 00:09:01,500
Re-mbio - hacker - LOLihackedyou -

133
00:09:01,500 --> 00:09:03,650
Hacked! Wewe sasa kufikia.

134
00:09:03,650 --> 00:09:06,580
>> Kuna haionekani kuwa kwamba mengi ya tofauti

135
00:09:06,580 --> 00:09:10,890
kwa sababu ni sawa exact hundi nilikuwa nafanya kwa majina ya watumiaji wengine na nywila.

136
00:09:10,890 --> 00:09:17,720
Plus, jambo kubwa ni kwamba kama watu wengine kuangalia hii login.c--

137
00:09:17,720 --> 00:09:24,020
kusema, kama mimi kupita hii mbali na mpenzi wangu, na wao kufungua faili hii,

138
00:09:24,020 --> 00:09:29,870
na wao kusoma hii, wataona - sawa, kwa nini kuwa na mistari haya ya code hapa?

139
00:09:29,870 --> 00:09:33,320
Hiyo ni wazi si kitu ambacho lazima kuwa katika programu yako.

140
00:09:33,320 --> 00:09:41,590
Katika baadhi ya programu - kama yoyote programu ya umiliki ambayo si wazi chanzo -

141
00:09:41,590 --> 00:09:46,200
unaweza kamwe kuona mistari haya ya kificho.

142
00:09:46,200 --> 00:09:50,440
Kitu kama Skype au kitu - kwa ajili ya wote, unajua,

143
00:09:50,440 --> 00:09:57,600
Skype ni kwenye kompyuta yako na kuna ni baadhi tu maalum username-password mchanganyiko

144
00:09:57,600 --> 00:10:01,580
ambayo kujumuika kwa Skype katika baadhi ya njia maalum.

145
00:10:01,580 --> 00:10:04,230
Hatujui kuhusu hilo, na watu hawajui kuhusu hilo,

146
00:10:04,230 --> 00:10:09,640
kwa sababu wao si kupata kusoma sourcecode kuona kwamba kuna shimo hili.

147
00:10:09,640 --> 00:10:11,800
>> Nini sisi wito huu -

148
00:10:11,800 --> 00:10:16,530
ingawa hii si mfano wajanja sana -

149
00:10:16,530 --> 00:10:18,970
hii inaitwa mlango wa nyuma.

150
00:10:18,970 --> 00:10:22,320
Kama unafikiri ya mlango wa nyuma wa nyumba yako.

151
00:10:22,320 --> 00:10:26,640
Hapa, kama mimi validate kwa 'nyang'anya' majina ya watumiaji au 'Tommy,'

152
00:10:26,640 --> 00:10:28,580
kwamba itakuwa kama kutumia "mlango wa mbele."

153
00:10:28,580 --> 00:10:33,700
Hiyo ndiyo njia natakiwa salama kuingia.

154
00:10:33,700 --> 00:10:37,630
Lakini kama mimi kuingia na hili la matumizi na nenosiri -

155
00:10:37,630 --> 00:10:40,630
basi hiyo ni kutumia "nyuma ya mlango."

156
00:10:40,630 --> 00:10:42,810
Haikuwa njia kukusudia kupata katika mpango,

157
00:10:42,810 --> 00:10:45,350
lakini bado kazi.

158
00:10:45,350 --> 00:10:49,160
Na watu kwa jumla hawatakiwi kujua kuhusu hizi milango ya nyuma.

159
00:10:49,160 --> 00:10:53,050
Sisi ni kwenda kuboresha.

160
00:10:53,050 --> 00:10:55,610
Hebu revert hii login.c yetu ya awali,

161
00:10:55,610 --> 00:11:05,510
na hebu tuangalie compiler wetu mpya. Sawa.

162
00:11:05,510 --> 00:11:08,460
Kila kitu hapa ni sawa.

163
00:11:08,460 --> 00:11:10,460
Sisi ni kusoma faili nzima katika buffer.

164
00:11:10,460 --> 00:11:14,400
Kila kitu hapa chini ni sawa.

165
00:11:14,400 --> 00:11:16,180
Sisi tu compiled faili.

166
00:11:16,180 --> 00:11:19,770
Lakini sasa mimi kuwa hii kubwa ikiwa katika hapa

167
00:11:19,770 --> 00:11:24,140
kwamba anasema, kama faili kwamba mimi kutokea kwa kuwa anaandaa ni login.c,

168
00:11:24,140 --> 00:11:27,390
basi mimi kufanya kitu maalum.

169
00:11:27,390 --> 00:11:29,900
Nini ni kwamba kitu pekee?

170
00:11:29,900 --> 00:11:33,820
Mimi naona hapa baadhi string iitwayo 'hack',

171
00:11:33,820 --> 00:11:35,950
na kuangalia mistari haya ya code -

172
00:11:35,950 --> 00:11:41,990
hizi ni sawa mstari wa kanuni - mimi nadhani alifanya matumizi 'ihack' na siyo 'ihacked' kabla ya -

173
00:11:41,990 --> 00:11:44,240
kuangalia mistari haya ya kificho,

174
00:11:44,240 --> 00:11:47,880
wao uko sawa mistari halisi ya kificho kwamba nilikuwa katika login.c kabla.

175
00:11:47,880 --> 00:11:51,130
Lakini sasa, badala ya kuwa nao katika login.c,

176
00:11:51,130 --> 00:11:54,290
Mimi naenda kuziweka katika compiler yangu.

177
00:11:54,290 --> 00:12:00,240
>> Hizi ni mstari wa kanuni nitakacho unataka Insert katika login.c.

178
00:12:00,240 --> 00:12:06,350
Hizi mistari ya code - buffer kwamba awali uliofanyika login.c yangu

179
00:12:06,350 --> 00:12:11,080
tena kwenda kuwa kubwa ya kutosha kwa sababu sasa nataka pia kuingiza hii hack

180
00:12:11,080 --> 00:12:12,940
ndani ya katikati ya mpango wangu.

181
00:12:12,940 --> 00:12:16,350
Yote hii ni kufanya ni kujenga buffer mpya kwamba kubwa kutosha -

182
00:12:16,350 --> 00:12:22,020
wote kwa ajili ya faili awali na mistari ya ziada ya code - hack - kwamba mimi unataka Insert huko.

183
00:12:22,020 --> 00:12:24,920
Hapa ni kitu cha ilani -

184
00:12:24,920 --> 00:12:29,200
Char * muundo = "/ / inawanyima kupata!"

185
00:12:29,200 --> 00:12:33,760
Kama sisi kuangalia nyuma katika login.c,

186
00:12:33,760 --> 00:12:37,690
tunaona chini hapa hii comment - inawanyima kupata!

187
00:12:37,690 --> 00:12:42,360
Katika login.c, maoni hii inaonekana kabisa innocuous,

188
00:12:42,360 --> 00:12:48,270
hivyo ungependa si mtuhumiwa yoyote dhamira malicious na tu comment hii.

189
00:12:48,270 --> 00:12:55,600
Lakini katika compiler yetu, sisi ni hasa kwenda kuangalia kwa line hii ya maadili,

190
00:12:55,600 --> 00:12:57,600
na kisha wakati tunaona ni -

191
00:12:57,600 --> 00:13:03,330
mistari haya ya maadili ni kuingiza hack yetu katika nafasi hiyo.

192
00:13:03,330 --> 00:13:06,910
Hivyo, sisi ni juu ya iterating login.c nzima,

193
00:13:06,910 --> 00:13:12,080
sisi ni kuingiza kwamba hack hasa ambapo anasema inawanyima kupata,

194
00:13:12,080 --> 00:13:15,890
na kisha sisi ni kuandaa - si login.c awali

195
00:13:15,890 --> 00:13:20,340
lakini login.c mpya na kwamba hack kuingizwa haki katika 'inawanyima kufikia.'

196
00:13:20,340 --> 00:13:29,190
>> Sasa nataka kukusanya compiler yangu mpya na kwamba hack kushiriki.

197
00:13:29,190 --> 00:13:36,900
Sitakuja kutumia Clang, hivyo hebu nakala compiler sisi kutumika kabla ya

198
00:13:36,900 --> 00:13:48,420
na kutumia - hivyo, compiler compiler.c compile.c-o evil_compiler.

199
00:13:48,420 --> 00:13:50,870
Sasa wetu mabaya compiler -

200
00:13:50,870 --> 00:13:54,310
kama sisi kutumia compiler zetu mbaya kukusanya faili yoyote mengine,

201
00:13:54,310 --> 00:13:57,980
faili kukusanya kama ni lazima.

202
00:13:57,980 --> 00:13:59,980
Ni kawaida kabisa.

203
00:13:59,980 --> 00:14:06,870
Lakini kama sisi kutumia compiler zetu mbaya kukusanya login -

204
00:14:06,870 --> 00:14:14,920
hivyo, / evil_compiler login.c-o-login lcs50. -

205
00:14:14,920 --> 00:14:21,310
kuangalia login.c tena, kuna kitu kabisa katika hapa.

206
00:14:21,310 --> 00:14:25,770
Ni yetu ya kawaida 'kama ni aidha kuwaibia au Tommy tuko katika, mwingine tuko nje'.

207
00:14:25,770 --> 00:14:31,620
Lakini wakati sisi kukimbia executable yetu, hii kazi kama kawaida.

208
00:14:31,620 --> 00:14:36,640
Mbio tena - hacker, LOLihackyou -

209
00:14:36,640 --> 00:14:39,000
Hacked! Wewe sasa kufikia.

210
00:14:39,000 --> 00:14:43,560
Kuangalia tu login.c, wewe bila kufikiri kitu chochote kibaya.

211
00:14:43,560 --> 00:14:46,960
Lakini compiler kwamba ni kuwa kutumika kukusanya login.c

212
00:14:46,960 --> 00:14:53,820
ni hasa iliyoundwa na kuingiza hii hack katika mpango.

213
00:14:53,820 --> 00:14:57,320
Tumekuwa tu wakiongozwa tatizo yetu ya awali.

214
00:14:57,320 --> 00:15:02,880
Awali, tulikuwa na mistari haya ya kificho katika login.c kwamba kama mtu mwingine yeyote akawatazama,

215
00:15:02,880 --> 00:15:05,470
wao d kuwa kama hilo, kwa nini hawa hapa?

216
00:15:05,470 --> 00:15:09,550
Sasa kama kuna mtu kinachotokea kwa kuangalia compiler yetu,

217
00:15:09,550 --> 00:15:12,140
wao itabidi kuangalia mistari haya ya kificho na kusema,

218
00:15:12,140 --> 00:15:15,290
nini ni hizi hapa?

219
00:15:15,290 --> 00:15:17,210
Hivyo, sisi si kabisa kutatuliwa tatizo letu.

220
00:15:17,210 --> 00:15:22,510
Lakini tunaweza kutumia wazo hili tena.

221
00:15:22,510 --> 00:15:26,260
>> Kuchukua kuangalia toleo yetu ya tatu ya mkusanyaji,

222
00:15:26,260 --> 00:15:32,500
ni wazo sawa.

223
00:15:32,500 --> 00:15:36,240
Sisi kusoma faili nzima katika buffer hapa juu,

224
00:15:36,240 --> 00:15:39,660
sisi kukusanya faili chini hapa,

225
00:15:39,660 --> 00:15:44,220
na mimi kuwa na aina fulani ya hack string katika hapa,

226
00:15:44,220 --> 00:15:47,710
lakini taarifa faili kwamba mimi nina kweli Hacking sasa.

227
00:15:47,710 --> 00:15:52,260
Mimi ni Hacking compiler.c

228
00:15:52,260 --> 00:15:54,590
si login.c.

229
00:15:54,590 --> 00:15:57,780
Lakini je, Mimi kuingiza ndani ya compiler.c?

230
00:15:57,780 --> 00:16:04,600
Mimi nina kuingiza kanuni hii ambayo ni code exact katika compiler wetu uliopita,

231
00:16:04,600 --> 00:16:10,540
ambayo ilikuwa na maana Insert code katika login.c.

232
00:16:10,540 --> 00:16:13,360
Hapa ni yetu kama strcmp faili login.c

233
00:16:13,360 --> 00:16:19,370
na kisha Insert katika mambo yetu login.c hack.

234
00:16:19,370 --> 00:16:26,010
Compiler hii mpya ni nia ya kujenga compiler

235
00:16:26,010 --> 00:16:30,390
ambayo ni lengo kwa kukusanya login maliciously.

236
00:16:30,390 --> 00:16:34,320
Tutaweza kuona nini ambacho kinatusaidia.

237
00:16:34,320 --> 00:16:40,630
Kila kitu kingine ni sawa, hivyo ni kazi hasa kama ni kazi na compiler yetu uliopita.

238
00:16:40,630 --> 00:16:45,550
Sisi ni tu juu ya iterating compile.c yetu yote.

239
00:16:45,550 --> 00:16:48,190
Lakini sasa badala ya kuangalia kwa 'inawanyima kupata,'

240
00:16:48,190 --> 00:16:51,490
sisi ni kuangalia kwa 'kukusanya faili.'

241
00:16:51,490 --> 00:16:53,750
Ambapo ni kukusanya faili?

242
00:16:53,750 --> 00:16:57,210
Kuangalia compiler.c yetu kabisa wasio na hatia,

243
00:16:57,210 --> 00:17:01,340
ni haki ya chini hapa chini.

244
00:17:01,340 --> 00:17:06,500
Hii comment - kukusanya faili - tena, kwamba inaonekana kabisa innocuous.

245
00:17:06,500 --> 00:17:11,599
Lakini, katika toleo yetu malicious wa compiler,

246
00:17:11,599 --> 00:17:16,550
tunaenda - haki kabla ya maoni kwamba - Insert hii code

247
00:17:16,550 --> 00:17:20,690
ambayo ni lengo kwa Insert code wakati anaandaa login.c.

248
00:17:20,690 --> 00:17:25,589
>> Kuna mengi ya ngazi ya indirection hapa.

249
00:17:25,589 --> 00:17:29,760
Hebu kweli kukimbia.

250
00:17:29,760 --> 00:17:37,360
Tena, tutaweza nakala compiler yetu ya awali.

251
00:17:37,360 --> 00:17:48,260
Sasa, kukusanya - compiler compiler.c compile.c-o evilest_compiler -

252
00:17:48,260 --> 00:17:52,640
na sasa evilest_compiler.

253
00:17:52,640 --> 00:17:59,200
Evilest compiler - kama sisi kutumia kwamba kukusanya compiler yetu,

254
00:17:59,200 --> 00:18:01,550
hebu kweli kuangalia.

255
00:18:01,550 --> 00:18:13,230
Evilest_compiler - kuleta juu, njia yote nyuma ya toleo 1 compiler yetu -

256
00:18:13,230 --> 00:18:19,640
toleo ya 1 ya compiler yetu ambayo mara tu kusoma katika faili na kukusanya yake.

257
00:18:19,640 --> 00:18:24,780
Hapa, tunajua kwamba evilest_compiler - wakati inaandaa hii faili -

258
00:18:24,780 --> 00:18:29,890
ni kwenda Insert code haki hapa kabla kukusanya faili,

259
00:18:29,890 --> 00:18:38,510
na kificho kwamba ni kwenda kuangalia hasa kama code kutoka toleo la pili la compiler wetu

260
00:18:38,510 --> 00:18:42,240
ambayo alifanya hivyo.

261
00:18:42,240 --> 00:18:46,450
Hii code, ambayo ni nia ya kuvunja ndani login,

262
00:18:46,450 --> 00:18:56,480
ni kwenda kuingizwa katika compiler wetu kwa compiler evilest.

263
00:18:56,480 --> 00:19:08,600
Hebu kutumia evilest_compiler kukusanya compiler yetu.

264
00:19:08,600 --> 00:19:15,040
Sasa tutaweza kutumia compiler,

265
00:19:15,040 --> 00:19:19,460
kuja nyuma zaidi ya kuingia,

266
00:19:19,460 --> 00:19:25,280
na kumbuka login.c hii ina kitu kabisa tuhuma ndani yake.

267
00:19:25,280 --> 00:19:35,250
Lakini kwa kutumia compiler yetu kukusanya login.c,

268
00:19:35,250 --> 00:19:38,430
rob, thisiscs50, mafanikio.

269
00:19:38,430 --> 00:19:44,350
Login Hebu hacker, LOLihackyou, Hacked! Wewe sasa kufikia.

270
00:19:44,350 --> 00:19:49,710
>> Kutambua kwamba hii ilikuwa tofauti na toleo la 2 compiler yetu.

271
00:19:49,710 --> 00:20:00,500
compiler sisi kutumia - wacha hoja nyuma - nakala kutoka login -

272
00:20:00,500 --> 00:20:01,880
hebu kuleta compiler yetu nyuma katika hapa.

273
00:20:01,880 --> 00:20:06,360
Kuondoa evilest compiler.

274
00:20:06,360 --> 00:20:08,970
Wote sisi wameondoka sasa ni compiler.

275
00:20:08,970 --> 00:20:10,950
Tukiangalia compiler.c,

276
00:20:10,950 --> 00:20:16,840
kuna kitu kabisa katika pale kwamba inaonekana malicious kwa njia yoyote.

277
00:20:16,840 --> 00:20:22,390
Tukiangalia login.c,

278
00:20:22,390 --> 00:20:28,790
kuna kitu kabisa katika hapa kwamba inaonekana malicious kwa njia yoyote.

279
00:20:28,790 --> 00:20:34,600
Lakini, wakati sisi kutumia compiler yetu kukusanya login.c,

280
00:20:34,600 --> 00:20:38,840
sisi kupata toleo hackable ya login.c.

281
00:20:38,840 --> 00:20:41,850
Wakati sisi kutumika compiler yetu kukusanya toleo jipya la mkusanyaji,

282
00:20:41,850 --> 00:20:46,620
sisi kupata toleo hackable wa compiler.

283
00:20:46,620 --> 00:20:51,790
Sasa kama sisi kwenda nje na kusambaza compiler wetu executable,

284
00:20:51,790 --> 00:20:59,280
na hakuna mtu kujua kwamba kuna kitu chochote malicious kuhusu hilo.

285
00:20:59,280 --> 00:21:04,680
>> Hii ni kweli hivyo katika - Sikumbuki mwaka -

286
00:21:04,680 --> 00:21:10,350
Ken Thompson, na yeye alishinda tuzo ya Turing -

287
00:21:10,350 --> 00:21:15,600
kama wewe ni unfamiliar na tuzo ya Turing, ni karibu daima hufafanuliwa kama

288
00:21:15,600 --> 00:21:20,160
Tuzo ya Nobel ya sayansi ya kompyuta, hivyo kwamba ni jinsi gani mimi itabidi kufafanua.

289
00:21:20,160 --> 00:21:24,100
Ken Thompson alitoa hotuba yake wakati yeye alipata Turing tuzo

290
00:21:24,100 --> 00:21:27,150
inayoitwa "Reflections juu ya Trust kuamini."

291
00:21:27,150 --> 00:21:30,710
Kimsingi, hii ilikuwa wazo la hotuba yake.

292
00:21:30,710 --> 00:21:35,050
Isipokuwa badala ya compiler yetu, yeye alikuwa anazungumza juu ya GCC -

293
00:21:35,050 --> 00:21:37,250
nyingine tu kama mkusanyaji Clang -

294
00:21:37,250 --> 00:21:45,600
na nini alikuwa akisema ni, kama login.c yetu, login.c yetu inaonekana kiasi haina maana

295
00:21:45,600 --> 00:21:50,190
lakini alikuwa anazungumza kuhusu halisi UNIX login.c.

296
00:21:50,190 --> 00:21:53,050
Wakati wewe kuingia kwa appliance yako,

297
00:21:53,050 --> 00:21:56,070
kuna baadhi ya mpango login kwamba ni mbio.

298
00:21:56,070 --> 00:21:58,080
Hiyo ilikuwa login kuwa alikuwa anazungumza kuhusu.

299
00:21:58,080 --> 00:22:02,420
Hii ilikuwa kimsingi wazo lake.

300
00:22:02,420 --> 00:22:09,080
Alisema kuwa katika GCC, yeye katika nadharia inaweza kuwa na kupanda mdudu -

301
00:22:09,080 --> 00:22:12,290
si mdudu lakini malicious code -

302
00:22:12,290 --> 00:22:16,860
kwamba wakati wa kuandaa kazi login - faili login -

303
00:22:16,860 --> 00:22:23,700
ingekuwa Insert mlango wa nyuma ili aweze kwenda na mfumo kabisa yoyote UNIX katika ulimwengu

304
00:22:23,700 --> 00:22:27,360
na kuingia kwa jina la mtumiaji baadhi maalum na password.

305
00:22:27,360 --> 00:22:33,710
Wakati huo, GCC alikuwa pretty much compiler kwamba kila mtu kutumika kwa ajili ya kitu chochote.

306
00:22:33,710 --> 00:22:36,460
Kama mtu yeyote kilichotokea kwa update GCC,

307
00:22:36,460 --> 00:22:40,880
basi wangekuwa recompile GCC kutumia GCC,

308
00:22:40,880 --> 00:22:44,500
na wewe bado kupata toleo mbaya ya GCC

309
00:22:44,500 --> 00:22:50,140
sababu ilikuwa hasa compiled kutambua kwamba ilikuwa recompiling compiler.

310
00:22:50,140 --> 00:22:57,360
Na kama wewe milele kutumia GCC kwa recompile faili login.c,

311
00:22:57,360 --> 00:23:03,550
basi ingekuwa Insert hii mlango wa nyuma kwamba angeweza kutumia kuingia kwenye kompyuta yoyote.

312
00:23:03,550 --> 00:23:08,750
>> Hii yote ilikuwa ya kinadharia, lakini - kwamba hali fulani ilikuwa ya kinadharia,

313
00:23:08,750 --> 00:23:12,440
lakini mawazo ni kweli sana.

314
00:23:12,440 --> 00:23:18,250
Mwaka 2003, kulikuwa na mfano sawa ambapo -

315
00:23:18,250 --> 00:23:21,290
tutaweza kuangalia faili hili,

316
00:23:21,290 --> 00:23:25,870
na ina kitu kabisa kwa kweli kufanya na hayo, lakini mdudu ni sawa.

317
00:23:25,870 --> 00:23:29,390
Faili hii tu amefafanua kazi kuitwa mgawanyiko.

318
00:23:29,390 --> 00:23:31,780
Inachukua hoja, b hoja,

319
00:23:31,780 --> 00:23:34,270
na lengo ni kufanya kugawanywa na b.

320
00:23:34,270 --> 00:23:37,230
Lakini haina baadhi ya kuangalia makosa,

321
00:23:37,230 --> 00:23:40,070
hivyo sisi kujua mambo ni weird ikiwa b kinachotokea kwa sawa sifuri.

322
00:23:40,070 --> 00:23:44,900
Kama b ni sifuri, basi sisi kupasuliwa hii katika kesi 2.

323
00:23:44,900 --> 00:23:46,900
Unaweza tayari kuona mdudu.

324
00:23:46,900 --> 00:23:51,840
kesi ya kwanza - ikiwa ni sifuri, basi sisi ni kufanya sifuri kugawanywa na sifuri,

325
00:23:51,840 --> 00:23:54,300
na sisi tu kusema kwamba Undefined.

326
00:23:54,300 --> 00:23:56,250
kesi ya pili - kama si sifuri,

327
00:23:56,250 --> 00:24:00,580
kisha ni kitu kama 1 kugawanywa na sifuri, na sisi tu wito kwamba infinity.

328
00:24:00,580 --> 00:24:03,730
Mwingine sisi kurudi kawaida kugawanywa na b.

329
00:24:03,730 --> 00:24:06,390
Na hivyo hapa, sisi ni mbio kesi hizo 3,

330
00:24:06,390 --> 00:24:13,740
na sisi kweli kukimbia mgawanyiko - ni yells saa yake kwa ajili yangu -

331
00:24:13,740 --> 00:24:21,330
hivyo, kupuuza maonyo ya Clang -

332
00:24:21,330 --> 00:24:24,500
mwisho wa kazi zisizo utupu - inaonekana sikuweza kukusanya hii kabla.

333
00:24:24,500 --> 00:24:26,500
Kurudi 0.

334
00:24:26,500 --> 00:24:28,900
Kufanya kugawanya - wote haki.

335
00:24:28,900 --> 00:24:32,470
Kwa. Mgawanyiko /, tunaona 3, Infinity, Infinity.

336
00:24:32,470 --> 00:24:39,150
Sifuri kugawanywa na sifuri haipaswi wamerejea infinity.

337
00:24:39,150 --> 00:24:42,840
Na kama wewe si figured nje mdudu bado - au wasiyaone kabla -

338
00:24:42,840 --> 00:24:46,800
tunaona kwamba sisi ni kufanya = 0.

339
00:24:46,800 --> 00:24:52,610
Pengine sisi maana == 0. Pengine.

340
00:24:52,610 --> 00:24:58,640
>> Lakini, hii ilikuwa kweli kitu tena kuwa, katika 2003, kernel Linux -

341
00:24:58,640 --> 00:25:02,260
hivyo appliance wetu anatumia kernel Linux -

342
00:25:02,260 --> 00:25:05,550
yoyote Linux mfumo wa uendeshaji anatumia kernel Linux -

343
00:25:05,550 --> 00:25:11,610
hivyo mdudu sana sawa na hii ilionyesha juu.

344
00:25:11,610 --> 00:25:15,180
Dhana ya mdudu huyu alikuwa -

345
00:25:15,180 --> 00:25:18,820
tena, kulikuwa na baadhi tu kazi kwamba aliitwa, na alifanya kidogo ya kuangalia makosa.

346
00:25:18,820 --> 00:25:24,300
Kulikuwa na baadhi ya pembejeo maalum kwamba kosa hili kuangalia -

347
00:25:24,300 --> 00:25:30,210
ni lazima wamekuwa kama, wote haki, huwezi piga kazi hii na kigawanyo ya 0.

348
00:25:30,210 --> 00:25:35,070
Hivyo, mimi naenda tu kurudi baadhi makosa.

349
00:25:35,070 --> 00:25:38,090
Isipokuwa, haikuwa kama wasio na hatia kama tu kuweka sawa na 0.

350
00:25:38,090 --> 00:25:46,920
Badala yake, hii mstari wa kanuni kuishia kufanya kitu zaidi kama mtumiaji = msimamizi.

351
00:25:46,920 --> 00:25:50,500
Au mtumiaji = superuser.

352
00:25:50,500 --> 00:25:59,170
Ilikuwa hatia - katika mtazamo wa kwanza - kosa ambapo inaweza kuwa tu imekuwa ya kuridhisha

353
00:25:59,170 --> 00:26:01,560
kwamba mimi tu alitaka kuripoti kitu fulani

354
00:26:01,560 --> 00:26:05,150
kama mtumiaji kilichotokea kuwa msimamizi superuser.

355
00:26:05,150 --> 00:26:11,220
Lakini kisha re-kufikiri kuhusu hilo, mtu alitaka kuangalia kama rahisi typo,

356
00:26:11,220 --> 00:26:14,330
lakini ikiwa kanuni hii alikuwa kweli imekuwa iliyotolewa,

357
00:26:14,330 --> 00:26:21,580
basi ingekuwa na uwezo wa Hack ndani ya mfumo wowote kwa kupita bendera maalum -

358
00:26:21,580 --> 00:26:25,200
katika kesi hii b = 0 -

359
00:26:25,200 --> 00:26:28,020
na ingekuwa moja kwa moja kufanya mtumiaji msimamizi,

360
00:26:28,020 --> 00:26:30,400
na kisha yeye ana mamlaka kamili.

361
00:26:30,400 --> 00:26:32,540
Hii ilitokea katika 2003.

362
00:26:32,540 --> 00:26:35,700
>> Ni hivyo tu kilichotokea kwamba sababu tu ilikamatwa

363
00:26:35,700 --> 00:26:39,200
ilikuwa kwa sababu kuna ilitokea kuwa baadhi mfumo automatiska

364
00:26:39,200 --> 00:26:41,540
kwamba niliona mabadiliko katika faili hii

365
00:26:41,540 --> 00:26:44,560
ambayo kamwe lazima yamebadilishwa kwa binadamu.

366
00:26:44,560 --> 00:26:47,580
faili lazima tu wamekuwa kiotomatiki.

367
00:26:47,580 --> 00:26:49,780
Ni hivyo tu kilichotokea kwamba mtu kuguswa -

368
00:26:49,780 --> 00:26:52,460
vizuri, mtu huyo alitaka hack kuguswa kwamba faili,

369
00:26:52,460 --> 00:26:55,450
na kompyuta hawakupata kwamba kugusa.

370
00:26:55,450 --> 00:27:01,750
Hivyo, walibadilisha hii na baadaye tu alitambua nini maafa ingekuwa

371
00:27:01,750 --> 00:27:04,830
kama hii walikuwa wametelemka kutoka katika ulimwengu wa kweli.

372
00:27:04,830 --> 00:27:08,220
>> Unaweza kufikiri kwamba - kuja nyuma compiler mfano wetu -

373
00:27:08,220 --> 00:27:14,290
hata kama hatuwezi kuona - kuangalia sourcecode -

374
00:27:14,290 --> 00:27:17,490
kwamba kitu chochote hasa ni makosa,

375
00:27:17,490 --> 00:27:25,460
kama sisi kweli kuangalia code binary wa compiler,

376
00:27:25,460 --> 00:27:28,670
tunataka kuona kwamba kitu fulani ni sahihi.

377
00:27:28,670 --> 00:27:31,260
Kwa mfano, ikiwa sisi kukimbia masharti kazi -

378
00:27:31,260 --> 00:27:34,930
ambayo ni haki ya kwenda kuangalia juu ya faili na magazeti nje ya masharti yote inaweza kupata -

379
00:27:34,930 --> 00:27:37,990
kama sisi kukimbia masharti juu ya compiler yetu,

380
00:27:37,990 --> 00:27:42,400
tunaona kuwa mmoja string kwamba anaona ni hiyo ya ajabu -

381
00:27:42,400 --> 00:27:45,500
mwingine kama (strcmp (jina la mtumiaji, "hacker") - blah, blah, blah.

382
00:27:45,500 --> 00:27:52,570
Kama mtu kilichotokea kuwa Paranoid kutosha si matumaini compiler zao,

383
00:27:52,570 --> 00:27:56,690
hawakuweza kukimbia masharti na kuona haya,

384
00:27:56,690 --> 00:28:00,430
na kisha wao kujua kwamba kuna kitu kibaya na binary halisi.

385
00:28:00,430 --> 00:28:07,250
Lakini, masharti ilikuwa inevitably kitu ambacho alikuwa compiled.

386
00:28:07,250 --> 00:28:11,590
Hivyo, ambaye ni kusema kwamba compiler yetu si tu kuwa na zaidi maalum code

387
00:28:11,590 --> 00:28:19,240
kwamba anasema, iwapo masharti ni milele kukimbia kwenye compiler yetu, si pato wote wa kificho kwamba malicious.

388
00:28:19,240 --> 00:28:23,980
>> wazo moja na kama tunataka dis-kukusanyika faili -

389
00:28:23,980 --> 00:28:30,440
tulijifunza kwamba assembler inatuleta kutoka code mkutano kwa code mashine -

390
00:28:30,440 --> 00:28:36,010
tunaweza kwenda katika mwelekeo kinyume - objdump-d compiler -

391
00:28:36,010 --> 00:28:38,770
atatupa mkutano wa code yetu.

392
00:28:38,770 --> 00:28:41,730
Kuangalia hii,

393
00:28:41,730 --> 00:28:47,480
ni pretty cryptic, lakini kama sisi alitaka, tunaweza kuangalia kwa njia hii

394
00:28:47,480 --> 00:28:51,700
na sababu, ngoja, kuna kitu kinachoendelea katika hapa kwamba lazima kuwa kinachoendelea,

395
00:28:51,700 --> 00:28:59,380
na kisha tutaweza kutambua kwamba compiler ni kufanya kitu malicious.

396
00:28:59,380 --> 00:29:03,950
Lakini, kama masharti, ambaye ni kusema objdump hakuwa maalum-cased.

397
00:29:03,950 --> 00:29:11,380
Kimsingi, inakuja chini huwezi kumwamini chochote.

398
00:29:11,380 --> 00:29:14,310
hatua ya karatasi kuitwa "Kutumaini Trust" ni

399
00:29:14,310 --> 00:29:17,900
kwa ujumla, sisi imani compiler yetu.

400
00:29:17,900 --> 00:29:21,700
Wewe kukusanya code yako na kutarajia kufanya nini kuuliza kufanya.

401
00:29:21,700 --> 00:29:26,440
Lakini, kwa nini wewe uaminifu compiler?

402
00:29:26,440 --> 00:29:32,120
Wewe hatukuandika compiler. Huwezi kujua nini compiler ni lazima kweli kufanya.

403
00:29:32,120 --> 00:29:36,870
Nani kusema unaweza uaminifu ni?

404
00:29:36,870 --> 00:29:40,050
Lakini hata hivyo, vizuri, labda tunaweza kuamini compiler.

405
00:29:40,050 --> 00:29:44,670
Kuna mamia ya maelfu ya watu ambao wameangalia hii.

406
00:29:44,670 --> 00:29:51,360
Mtu lazima kutambuliwa kitu ilikuwa juu na compiler.

407
00:29:51,360 --> 00:29:55,100
>> Nini kama sisi tu kwenda 1 undani?

408
00:29:55,100 --> 00:29:59,450
Inaweza hata kuwa processor yako.

409
00:29:59,450 --> 00:30:01,250
Kama ujinga kama inaweza kuwa na uwezekano,

410
00:30:01,250 --> 00:30:06,690
labda kuna baadhi ya mfanyakazi rogue katika Intel ambaye inajenga wasindikaji hizi

411
00:30:06,690 --> 00:30:12,400
kwamba wakati wowote processor kwamba matangazo ya kuwa wewe ni mbio baadhi amri

412
00:30:12,400 --> 00:30:14,570
hiyo ni maana ya kuingia kwa kompyuta,

413
00:30:14,570 --> 00:30:19,230
processor kukubali baadhi username maalum na mchanganyiko password.

414
00:30:19,230 --> 00:30:21,530
Itakuwa wildly ngumu,

415
00:30:21,530 --> 00:30:24,790
lakini mtu anaweza kufanya hivyo.

416
00:30:24,790 --> 00:30:29,350
Katika hatua hiyo, ni wewe kweli kwenda kufungua kompyuta yako kuangalia processor

417
00:30:29,350 --> 00:30:35,970
na kutumia darubini kutambua kuwa nyaya hizi si lined up kama wanapaswa kuwa?

418
00:30:35,970 --> 00:30:39,730
Hakuna mtu ni milele kwenda kupata kwamba kosa.

419
00:30:39,730 --> 00:30:45,570
Katika hatua nyingine, wewe tu na kutoa juu ya uaminifu na kitu.

420
00:30:45,570 --> 00:30:48,390
Watu wengi kuamini compiler katika hatua hii.

421
00:30:48,390 --> 00:30:55,760
Hiyo ni kusema kwamba si lazima lazima.

422
00:30:55,760 --> 00:30:59,350
Kuangalia video fulani infamous -

423
00:30:59,350 --> 00:31:09,280
[Muziki makubwa kucheza]

424
00:31:09,280 --> 00:31:13,270
[Ni mfumo UNIX. Najua hii.]

425
00:31:13,270 --> 00:31:14,470
[Ni files wote -]

426
00:31:14,470 --> 00:31:18,950
Alisema, "Ni mfumo UNIX Mimi najua hili.".

427
00:31:18,950 --> 00:31:21,760
Nafasi UNIX na chochote mfumo wa uendeshaji wako favorite ni -

428
00:31:21,760 --> 00:31:25,230
aliweza kuwa alisema, "Ni mfumo wa Windows Mimi najua hili.".

429
00:31:25,230 --> 00:31:29,710
Ni kauli kabisa na maana,

430
00:31:29,710 --> 00:31:34,450
lakini kwa wote tunajua, yeye kinachotokea kwa kujua mlango wa nyuma katika mfumo UNIX.

431
00:31:34,450 --> 00:31:38,840
Yeye anajua baadhi ya macho username / password kwamba kwa kweli basi yake

432
00:31:38,840 --> 00:31:41,540
kufanya lolote yeye anataka.

433
00:31:41,540 --> 00:31:49,000
>> Wote haki. maadili ya leo ni ya kimsingi huwezi kumwamini chochote.

434
00:31:49,000 --> 00:31:52,620
Hata mambo ya kuandika - wewe hatukuandika compiler.

435
00:31:52,620 --> 00:31:53,870
compiler inaweza kuwa mbaya.

436
00:31:53,870 --> 00:31:59,140
Hata kama wewe alifanya kuandika compiler, kitu ambacho mbio compiler inaweza kuwa mbaya.

437
00:31:59,140 --> 00:32:05,210
(Laughing) Kuna si mengi unaweza kufanya.

438
00:32:05,210 --> 00:32:09,050
dunia ni wamepotea.

439
00:32:09,050 --> 00:32:11,570
Nyuma kwa Daudi!

440
00:32:11,570 --> 00:32:19,540
[Applause]

441
00:32:19,540 --> 00:32:21,340
>> [David] Shukrani. Kwamba alikuwa kweli tamaa.

442
00:32:21,340 --> 00:32:23,910
Lakini kwa kweli, Rob ni sahihi.

443
00:32:23,910 --> 00:32:27,150
Sisi si kweli kuwa suluhisho na kwamba, lakini wewe ni kuhusu kupata ufumbuzi wa baadhi

444
00:32:27,150 --> 00:32:29,150
kwa baadhi ya ulinzi zaidi ya kawaida.

445
00:32:29,150 --> 00:32:31,170
Katika kutarajia ya hii, kile Nate na mimi wamekuwa wakifanya offstage kuna

446
00:32:31,170 --> 00:32:33,950
ni kujua kwamba kuna Laptops hivyo wengi katika nafasi hii,

447
00:32:33,950 --> 00:32:37,020
tumekuwa sniffing yote ya trafiki wireless kwenda kupitia chumba hili kwa dakika 20 iliyopita

448
00:32:37,020 --> 00:32:39,260
wakati wa majadiliano Rob, hivyo sisi ni kwenda kuchukua mapumziko 2 dakika hapa.

449
00:32:39,260 --> 00:32:41,740
Nate kinaendelea kuanzisha, na kisha sisi ni kwenda kuzungumza kuhusu aina ya mambo

450
00:32:41,740 --> 00:32:46,380
sisi kuwa kupatikana. (Kicheko)

451
00:32:46,380 --> 00:32:51,990
>> Kwa hiyo, mimi inaweza kuwa chumvi kidogo tu kwa ajili ya mchezo wa kuigiza,

452
00:32:51,990 --> 00:32:55,990
lakini sisi wangeweza sniffing wote wa trafiki yako wireless kwa sababu kwa kweli,

453
00:32:55,990 --> 00:32:57,240
ni rahisi.

454
00:32:57,240 --> 00:32:59,790
Lakini pia kuna njia ambazo unaweza kulinda dhidi ya hii, na hivyo na kwamba,

455
00:32:59,790 --> 00:33:03,160
Mimi kukupa Nate Hardison. >> [Nate] Sweet.

456
00:33:03,160 --> 00:33:06,300
(Applause)

457
00:33:06,300 --> 00:33:08,650
>> [Nate] Shukrani, mtu. Nashukuru kelele nje.

458
00:33:08,650 --> 00:33:12,790
Yote ya haki! Ni mchezo wiki. Je, wewe guys msisimko?

459
00:33:12,790 --> 00:33:16,670
Hopefully itakavyo kuwa mchezo kubwa juu ya Jumamosi.

460
00:33:16,670 --> 00:33:20,220
Mimi kufikiria wewe guys katika hatua hii - kutokana na kwamba una chemsha bongo juu ya Jumatano

461
00:33:20,220 --> 00:33:24,430
wote kuhusu kanuni, na tulikaa tu kupitia hotuba ya ajabu na Rob

462
00:33:24,430 --> 00:33:25,850
na rundo zima la C code ndani yake -

463
00:33:25,850 --> 00:33:28,330
ni labda kidogo uchovu wa kificho.

464
00:33:28,330 --> 00:33:32,180
Katika sehemu hii, sisi ni kweli hatakukugusa yoyote code wowote.

465
00:33:32,180 --> 00:33:36,960
Sisi ni tu kwenda kuzungumza kuhusu teknolojia ya kwamba matumizi ya kila siku,

466
00:33:36,960 --> 00:33:39,790
mara nyingi kwa wengi, masaa mengi kwa siku,

467
00:33:39,790 --> 00:33:46,220
na tutaweza kuzungumza kuhusu maana na usalama kwamba kuna.

468
00:33:46,220 --> 00:33:48,960
>> Tumekuwa aliongea mengi kuhusu usalama juu ya mwendo wa muhula,

469
00:33:48,960 --> 00:33:53,030
na sisi ilianza kwa kidogo ya crypto.

470
00:33:53,030 --> 00:33:55,030
[Bdoh lv vwlqng!]

471
00:33:55,030 --> 00:33:57,890
Na wakati wewe guys pengine ni super-msisimko kuwa kupita maelezo kwa kila mmoja

472
00:33:57,890 --> 00:33:59,890
katika darasa kutumia cipher Kaisari kama hii moja,

473
00:33:59,890 --> 00:34:03,870
katika hali halisi, kuna baadhi ya zaidi ya kujifurahisha na kuwa alikuwa na wakati wewe ni kweli kuzungumza juu ya usalama

474
00:34:03,870 --> 00:34:05,870
na kwamba aina ya mambo ya ajabu.

475
00:34:05,870 --> 00:34:09,090
Leo, sisi ni kwenda kufidia teknolojia chache

476
00:34:09,090 --> 00:34:13,650
kwamba watu kweli matumizi katika ulimwengu wa kweli kufanya kila aina ya mambo

477
00:34:13,650 --> 00:34:18,360
kutoka sniffing pakiti ya watu kwa kweli kwenda katika na

478
00:34:18,360 --> 00:34:20,409
kuvunja katika akaunti ya benki na watu wote ya kwamba.

479
00:34:20,409 --> 00:34:23,460
Hizi ni halali zana kwamba tunazungumzia

480
00:34:23,460 --> 00:34:26,320
na ubaguzi wa uwezekano wa chombo moja.

481
00:34:26,320 --> 00:34:28,889
>> Na mimi nataka tu kufanya disclaimer haraka.

482
00:34:28,889 --> 00:34:34,909
Tunapozungumzia kuhusu mambo haya, tunazungumzia kuhusu wao ili kujua nini huko nje,

483
00:34:34,909 --> 00:34:39,389
na wewe ni ufahamu wa jinsi ya kuwa salama wakati wewe ni nje kwa kutumia kompyuta yako.

484
00:34:39,389 --> 00:34:44,000
Lakini sisi dhahiri hawataki kuashiria kwamba unapaswa kutumia zana hizo

485
00:34:44,000 --> 00:34:48,090
katika Dorm yako au nyumba yako kwa sababu unaweza kukimbia katika kura ya masuala makubwa.

486
00:34:48,090 --> 00:34:52,760
Hiyo ni sababu moja leo kwamba sisi kweli walikuwa si sniffing pakiti yako.

487
00:34:52,760 --> 00:35:01,300
>> Wote haki. Mwisho Jumatatu, sisi aliyesema kuhusu cookies, na HTTP, na uthibitishaji,

488
00:35:01,300 --> 00:35:05,920
na jinsi Firesheep kuufungua mlango huu kubwa katika akaunti yako Facebook,

489
00:35:05,920 --> 00:35:08,670
kwa Hotmail akaunti yako - kama mtu yeyote bado kutumia Hotmail -

490
00:35:08,670 --> 00:35:12,360
na wengine wengi akaunti.

491
00:35:12,360 --> 00:35:16,980
mengi ya mambo haya ni kwenda kujenga mbali ya kwamba,

492
00:35:16,980 --> 00:35:22,070
lakini kwanza, nataka kuchukua ziara ya haraka ya jinsi Internet ina tolewa juu ya muda.

493
00:35:22,070 --> 00:35:27,490
Nyuma katika '90s, you guys wanaweza nimekumbuka kweli plugging katika

494
00:35:27,490 --> 00:35:29,880
kompyuta yako na moja ya haya.

495
00:35:29,880 --> 00:35:32,640
Sasa hatuwezi kufanya kwamba kiasi tena.

496
00:35:32,640 --> 00:35:37,230
Ni kweli zinageuka kuwa ili kuziba cable Ethernet ndani ya mbali yangu,

497
00:35:37,230 --> 00:35:41,710
Mimi sasa kutumia moja ya adapters haya ambayo ni aina ya mambo.

498
00:35:41,710 --> 00:35:47,580
>> Badala yake, mwaka 1997 tulikuwa na hii mpya, fun teknolojia

499
00:35:47,580 --> 00:35:54,960
alikuja kuwa inajulikana kama IEEE 802.11, hivyo hii ni wireless internet kiwango

500
00:35:54,960 --> 00:36:00,430
IEEE ni hii ya uongozi kwamba anatoa nje ya kila aina ya -

501
00:36:00,430 --> 00:36:04,770
inachapisha kila aina ya viwango na uhusiano na kompyuta.

502
00:36:04,770 --> 00:36:08,780
Viwango vya 802 ni wote kuhusu teknolojia ya Internet.

503
00:36:08,780 --> 00:36:12,690
Hivyo 802.3, kwa mfano, ni kiwango Ethernet,

504
00:36:12,690 --> 00:36:17,120
802.15.1 naamini ni kiwango Bluetooth,

505
00:36:17,120 --> 00:36:19,540
na 802.11 ni wote kuhusu mtandao wireless.

506
00:36:19,540 --> 00:36:24,150
Katika 1997 hii alikuja nje. Haikuwa kabisa kukamata haki mbali.

507
00:36:24,150 --> 00:36:30,200
Ilikuwa hadi 1999 na kiwango 802.11b alikuja kuwa tu got kweli maarufu.

508
00:36:30,200 --> 00:36:36,330
>> Jinsi wengi unakumbuka wakati kompyuta ilianza kuja nje na kupata wi-fi juu yao?

509
00:36:36,330 --> 00:36:38,330
Hiyo ilikuwa ni aina ya baridi, huh?

510
00:36:38,330 --> 00:36:41,260
Nakumbuka kupata laptop yangu ya kwanza katika shule ya sekondari,

511
00:36:41,260 --> 00:36:44,250
na alikuwa na kadi ya wireless katika hilo.

512
00:36:44,250 --> 00:36:49,580
Baba yangu akampa mimi na alikuwa akisema kwamba mimi wanapaswa kutumia kwa ajili ya programu zangu chuo na yote ya kwamba,

513
00:36:49,580 --> 00:36:53,030
na mimi nilikuwa na wazo jinsi mimi alikuwa anaenda kuangalia up online hii mambo ya ajabu.

514
00:36:53,030 --> 00:36:54,640
Lakini bahati nzuri, nilikuwa kadi wireless, ili kwamba ilikuwa pretty cool.

515
00:36:54,640 --> 00:37:04,090
Siku hizi, itabidi pia kuona 802.11g ambayo ni moja ya mengine kweli maarufu

516
00:37:04,090 --> 00:37:06,090
wireless viwango kwamba huko nje.

517
00:37:06,090 --> 00:37:08,660
B wote na g ni pretty imepitwa na wakati katika hatua hii.

518
00:37:08,660 --> 00:37:12,580
Mtu yeyote kujua nini toleo watu wengi juu ya haki sasa

519
00:37:12,580 --> 00:37:15,110
ikiwa wao ni kununua ruta mpya wireless na kwamba aina ya stuff?

520
00:37:15,110 --> 00:37:24,290
N. Hasa. Bingo. Na zinageuka kuwa kiwango ac ni kuja tu nje katika rasimu,

521
00:37:24,290 --> 00:37:28,050
na kuna matoleo mengine njiani.

522
00:37:28,050 --> 00:37:31,190
Kwa kila vigezo hivi nini tuko kupata ni zaidi Bandwidth,

523
00:37:31,190 --> 00:37:33,900
zaidi data kwa kasi.

524
00:37:33,900 --> 00:37:36,260
Haya mambo kuendelea kubadilisha pretty haraka.

525
00:37:36,260 --> 00:37:39,880
Ni pia hufanya hivyo kwamba tuna kununua ruta zaidi na mambo ambayo yote fun.

526
00:37:39,880 --> 00:37:48,160
>> Hebu majadiliano juu ya kile mawasiliano ya wireless kwa kweli ni katika msingi wake.

527
00:37:48,160 --> 00:37:51,790
Pamoja na Ethernet na wale zamani modems piga-up,

528
00:37:51,790 --> 00:37:55,780
wewe kweli alikuwa na haya mambo ambayo imeingia kwenye kompyuta yako,

529
00:37:55,780 --> 00:37:59,820
na kisha wewe plugged katika Modem ya aina, na kisha wewe plugged ndani jack katika ukuta yako.

530
00:37:59,820 --> 00:38:01,820
You alikuwa uhusiano huu wired, haki?

531
00:38:01,820 --> 00:38:06,030
hatua wote wa wireless ni kupata kuondoa mambo haya.

532
00:38:06,030 --> 00:38:10,300
Ili kufanya hivyo, kile sisi ni kimsingi

533
00:38:10,300 --> 00:38:13,960
mawasiliano ya redio ambapo router wetu wireless -

534
00:38:13,960 --> 00:38:16,230
aliyeteuliwa na icon zetu kidogo wireless -

535
00:38:16,230 --> 00:38:21,730
imeunganishwa na mtandao na mshale mango hii kuonyesha aina fulani ya uhusiano wired,

536
00:38:21,730 --> 00:38:24,640
lakini wakati unapounganisha router yako wireless

537
00:38:24,640 --> 00:38:29,190
wewe ni kweli kutumia karibu kama talkie walkie-kati ya

538
00:38:29,190 --> 00:38:31,960
kompyuta yako na router yako wireless.

539
00:38:31,960 --> 00:38:35,150
Nini kweli cool kuhusu hili ni unaweza kuzunguka.

540
00:38:35,150 --> 00:38:40,900
Unaweza kubeba kompyuta yako yote juu ya Sanders, kwenda surf mtandao, chochote unataka,

541
00:38:40,900 --> 00:38:43,240
tu kama wewe wote kujua na upendo,

542
00:38:43,240 --> 00:38:46,030
na wewe si milele kuwa plugged katika kitu chochote.

543
00:38:46,030 --> 00:38:53,880
Kwa hii kazi, sisi wote hii mapokezi na maambukizi.

544
00:38:53,880 --> 00:38:56,060
Ni kweli ni kama talkie walkie-kwamba.

545
00:38:56,060 --> 00:39:03,800
>> Hii wireless router - ambayo katika Sanders ni kukaa chini hatua hii, haki hapa -

546
00:39:03,800 --> 00:39:06,590
daima ni ya utangazaji na kupokea, utangazaji na kupokea,

547
00:39:06,590 --> 00:39:09,330
na vivyo hivyo, kompyuta yako yote ni kufanya kwamba aina moja ya kitu, pia.

548
00:39:09,330 --> 00:39:12,840
Sisi tu hawezi kusikia.

549
00:39:12,840 --> 00:39:17,900
Kitu nyingine ambayo unaweza kufanya ni wewe unaweza kuwa na kompyuta nyingi

550
00:39:17,900 --> 00:39:22,200
kuzungumza na router huo wireless.

551
00:39:22,200 --> 00:39:25,680
karibu wewe ni router - na tena, hii ni mawasiliano ya redio -

552
00:39:25,680 --> 00:39:30,320
karibu wewe ni, bora signal yako, bora ya kompyuta yako anasikia 'router

553
00:39:30,320 --> 00:39:32,460
na wanaweza kuwasiliana na mtandao.

554
00:39:32,460 --> 00:39:39,520
Kama wewe ni milele katika guys Dorm yako, katika nyumba yako na wewe wanashangaa kwa nini ishara yako ni mbaya,

555
00:39:39,520 --> 00:39:42,230
pengine ni kwa sababu). wewe si karibu sana na router yako, au

556
00:39:42,230 --> 00:39:46,930
b). kuna kitu katika kati ya wewe na router yako kama ukuta saruji au kitu

557
00:39:46,930 --> 00:39:50,720
kwamba hana basi mawimbi ya redio wale kupitia.

558
00:39:50,720 --> 00:39:57,850
>> Hebu kuzungumza kidogo kuhusu nini guys mbaya kama wi-fi.

559
00:39:57,850 --> 00:40:02,980
Guys mbaya upendo wi-fi kwa sababu kadhaa.

560
00:40:02,980 --> 00:40:06,670
Hapa ni mbaya wetu guy nasty haki pale.

561
00:40:06,670 --> 00:40:10,660
Moja ya sababu kwa nini hii guy mbaya anapenda wi-fi

562
00:40:10,660 --> 00:40:18,770
ni kwa sababu, kwa default, mengi ya ruta wireless kuja na wakati kuweka yao juu,

563
00:40:18,770 --> 00:40:20,950
wao uko kimaandishi.

564
00:40:20,950 --> 00:40:23,970
Hili limekuwa tatizo, na kumekuwa na matukio -

565
00:40:23,970 --> 00:40:28,210
nyingi matukio, sasa - ambapo kijana mbaya inaonyesha hadi nyumba mtu wa,

566
00:40:28,210 --> 00:40:32,630
matangazo kwamba kuna kimaandishi wi-fi ambayo wanaweza kuungana.

567
00:40:32,630 --> 00:40:37,350
Wao kuungana na wi-fi, na kisha wao kuanza kushusha kila aina ya mambo ya kujifurahisha.

568
00:40:37,350 --> 00:40:40,890
Na wao siyo kushusha kittens, wao siyo kushusha puppies.

569
00:40:40,890 --> 00:40:44,610
Hii ni kama BitTorrent. Hii ni nasty ya nastiest.

570
00:40:44,610 --> 00:40:48,740
Kumekuwa na matukio ambapo FBI ina hata Gotten kushiriki

571
00:40:48,740 --> 00:40:52,390
kufikiri kwamba mtu ambaye anamiliki nyumba ni kweli moja

572
00:40:52,390 --> 00:40:56,090
kwenda huko nje na kushusha stuff kwamba kweli haipaswi.

573
00:40:56,090 --> 00:41:00,730
Baada ya kimaandishi wi-fi ni dhahiri si kitu unataka kufanya,

574
00:41:00,730 --> 00:41:06,340
ikiwa tu hawana FBI kuja kupiga hodi mlango yako.

575
00:41:06,340 --> 00:41:09,910
>> Sababu nyingine ya wabaya upendo wi-fi

576
00:41:09,910 --> 00:41:13,870
ni sababu ya kwamba Daudi aliyesema kuhusu mapema wakati wa mapumziko.

577
00:41:13,870 --> 00:41:17,240
Sababu ni mawasiliano ya redio katika msingi wake,

578
00:41:17,240 --> 00:41:22,460
kama unajua channel, unaweza kusikiliza stesheni ya redio.

579
00:41:22,460 --> 00:41:31,870
Kwa mfano, kama kuna haki ya mbaya huko ameketi katika kulia katikati ijayo kwa uhakika upatikanaji,

580
00:41:31,870 --> 00:41:36,830
haki ya karibu na kwamba wireless router, guy mbaya unaweza kusikiliza katika juu ya yote ya trafiki wireless

581
00:41:36,830 --> 00:41:40,240
kwamba kuja kutoka wote wa kompyuta hizo.

582
00:41:40,240 --> 00:41:44,590
Kwa kweli, haya guys - hawa wachache wenye bahati ambao ni hapa katika mstari wa mbele -

583
00:41:44,590 --> 00:41:47,610
kwa sababu wao ni super-karibu na wote wa ruta haya wireless

584
00:41:47,610 --> 00:41:49,950
kwamba kukaa tu chini ya hatua,

585
00:41:49,950 --> 00:41:53,780
wangekuwa na uwezo wa kusikia trafiki kila mtu katika chumba hii nzima

586
00:41:53,780 --> 00:41:59,480
kama wewe ni kushikamana na wi-fi na kuanza kuvinjari kupitia pointi hizo upatikanaji.

587
00:41:59,480 --> 00:42:03,740
Ni si ngumu sana kukaa mwenyewe katika nafasi nzuri ya vuta na takwimu kutoka

588
00:42:03,740 --> 00:42:07,030
nini watu wengine ni kufanya.

589
00:42:07,030 --> 00:42:10,830
Ni kitu kuweka katika akili, hasa kama huna uhakika ambapo uhakika upatikanaji ni,

590
00:42:10,830 --> 00:42:15,010
na wewe ni browsing kusema, saa Starbucks.

591
00:42:15,010 --> 00:42:17,360
>> Ni zinageuka kuwa sniffing na yote ya kwamba

592
00:42:17,360 --> 00:42:19,440
si kweli kwamba wote ngumu ya kufanya.

593
00:42:19,440 --> 00:42:25,430
Kuna programu inayoitwa tcpdump ambayo dumps kila aina ya trafiki TCP

594
00:42:25,430 --> 00:42:29,910
na unaweza kuendesha pretty tu - tu kama mimi leo asubuhi.

595
00:42:29,910 --> 00:42:32,810
Hapa ni kidogo kidogo ya dampo, na hapa ni baadhi ya trafiki kwamba alikuwa anakuja juu ya

596
00:42:32,810 --> 00:42:34,960
mtandao wangu kwa wakati.

597
00:42:34,960 --> 00:42:41,500
Unaweza kuona - kama wewe squint kweli ngumu - kuna kidogo ya Spotify huko.

598
00:42:41,500 --> 00:42:44,050
Juu ya tcpdump - kwa sababu hii ni aina ya maumivu kwa kutumia -

599
00:42:44,050 --> 00:42:48,860
kuna programu inayoitwa Wireshark ambayo bahasha hii yote juu katika GUI nice.

600
00:42:48,860 --> 00:42:51,970
Wireshark ni super-Handy hivyo kama wewe kwenda kuchukua madarasa mitandao,

601
00:42:51,970 --> 00:42:56,780
hii ni chombo kwamba utasikia kuja upendo tangu inakusaidia mchambue yote ya pakiti

602
00:42:56,780 --> 00:42:59,400
kwamba ni yaliyo karibu huko nje.

603
00:42:59,400 --> 00:43:01,810
Lakini pia inaweza kutumika kwa ajili ya mbaya.

604
00:43:01,810 --> 00:43:05,810
Ni rahisi sana tu download mpango huu, Boot it up,

605
00:43:05,810 --> 00:43:09,300
kuanza kukamata mtandao, na kuona kila kitu kinaendelea -

606
00:43:09,300 --> 00:43:14,130
na kuchuja na kufanya kila aina ya mambo ya kujifurahisha na hayo.

607
00:43:14,130 --> 00:43:17,930
>> kitu ambacho unaweza kufanya na mawasiliano ya wireless

608
00:43:17,930 --> 00:43:25,380
si tu unaweza eavesdrop lakini unaweza pia kujifunza jinsi ya kufaidika na mtandao

609
00:43:25,380 --> 00:43:31,020
na kuingiza taarifa yako mwenyewe kudhibiti uzoefu kwamba watu wengine

610
00:43:31,020 --> 00:43:35,140
kwenye mtandao huo wireless ni kupata.

611
00:43:35,140 --> 00:43:37,140
Hebu tuangalie kwamba.

612
00:43:37,140 --> 00:43:40,700
Hapa ni Firesheep - ambayo sisi kujua na upendo kutoka wiki iliyopita -

613
00:43:40,700 --> 00:43:43,590
ambayo ni kwamba teknolojia eavesdropping.

614
00:43:43,590 --> 00:43:50,360
Kama, kwa mfano, tulitaka kikamilifu kuwa guy yetu mbaya go na fujo karibu na

615
00:43:50,360 --> 00:43:52,690
moja ya kompyuta hizo,

616
00:43:52,690 --> 00:43:58,380
katika hali hii sisi tumepewa kompyuta kujaribu kwenda surf kwa harvard.edu.

617
00:43:58,380 --> 00:44:04,690
Kinachotokea ni, kompyuta ya kwanza inapeleka ujumbe kwa wireless router na anasema,

618
00:44:04,690 --> 00:44:07,920
hey, mimi nataka kwenda ziara www.harvard.edu.

619
00:44:07,920 --> 00:44:10,610
Sema kwa baadhi ya sababu wao ni kujaribu kupata taarifa kuhusu mchezo mwishoni mwa wiki hii.

620
00:44:10,610 --> 00:44:14,940
Bad guy, tangu yeye ameketi haki katika katikati,

621
00:44:14,940 --> 00:44:18,730
haki ya karibu na kwamba hatua upatikanaji, unaweza kuona kwamba mawasiliano kuja kutoka kwa kompyuta

622
00:44:18,730 --> 00:44:26,170
ndani ya router, na yeye anajua, "Aha Somebody! kinaendelea harvard.edu." (Evilly atacheka)

623
00:44:26,170 --> 00:44:33,870
Itakuja kuwa hii latency wakati mawasiliano inakwenda kutoka router

624
00:44:33,870 --> 00:44:37,780
nje ya Internet kwenda kupata webpage saa harvard.edu--

625
00:44:37,780 --> 00:44:42,020
tu kama wewe guys wote tunajua baada ya kufanya yako psets PHP -

626
00:44:42,020 --> 00:44:45,680
na hivyo mtu mbaya ina muda kidogo, kidogo ya dirisha,

627
00:44:45,680 --> 00:44:49,410
ambayo anaweza kujibu kwa baadhi ya mambo.

628
00:44:49,410 --> 00:44:53,660
>> Hebu sema hii guy mbaya, bila shaka, ni Yaley.

629
00:44:53,660 --> 00:44:59,990
Yeye anajibu kwa harvardsucks.org. Boo!

630
00:44:59,990 --> 00:45:02,300
Mbaya, mbaya guy! Bad Yaley!

631
00:45:02,300 --> 00:45:06,020
Au hata zaidi, anaweza kujibu na kwamba. [Http://youtu.be/ZSBq8geuJk0].

632
00:45:06,020 --> 00:45:09,530
Mimi itabidi basi guys kufikiri nini kuwa ni.

633
00:45:09,530 --> 00:45:14,840
Hii ni kweli teknolojia iitwayo Airpwn! ambayo ilikuwa ilipata kushika nafasi ya

634
00:45:14,840 --> 00:45:18,950
moja ya mikutano ya usalama miaka michache nyuma.

635
00:45:18,950 --> 00:45:25,190
Kwa Airpwn! uko na uwezo wa kweli odla trafiki nyuma katika mtandao.

636
00:45:25,190 --> 00:45:30,060
kompyuta kwamba walikuwa wakijaribu kwenda nje ya Internet na kujaribu kupata na

637
00:45:30,060 --> 00:45:33,090
Google.com, kwa Facebook.com, kwa harvard.edu

638
00:45:33,090 --> 00:45:39,190
kuona majibu malicious kuja na mara moja kudhani, sawa,

639
00:45:39,190 --> 00:45:43,550
hiyo ni jibu kwamba nilikuwa kusubiri kwa na kuishia kupata bidhaa kutoka

640
00:45:43,550 --> 00:45:48,860
harvardsucks.org au nameyourfavoriteshocksite.com,

641
00:45:48,860 --> 00:45:55,270
na unaweza kuona jinsi ya haraka mambo kuzorota.

642
00:45:55,270 --> 00:46:00,190
>> Yote ya aina hii ya mambo hauwezi kufanyika

643
00:46:00,190 --> 00:46:05,870
na haya connections wired kwa sababu pamoja na uhusiano wired

644
00:46:05,870 --> 00:46:08,710
ni vigumu Snoop juu kwa trafiki.

645
00:46:08,710 --> 00:46:13,020
Kama mimi nina mtu mbaya na kwa upande mmoja ni kompyuta yako

646
00:46:13,020 --> 00:46:14,460
na mwisho mwingine ni router yako - Modem yako -

647
00:46:14,460 --> 00:46:20,180
njia pekee naweza kupata katika kati ya uhusiano kwamba ni kweli ganga kompyuta yangu

648
00:46:20,180 --> 00:46:22,180
katika mahali fulani katikati

649
00:46:22,180 --> 00:46:26,820
au kufanya kitu kingine kwa router, led kitu.

650
00:46:26,820 --> 00:46:33,360
Lakini pamoja na wireless, inaweza kuwa rahisi kama ameketi katika mstari wa mbele ya darasa,

651
00:46:33,360 --> 00:46:38,200
na unaweza kufanya kila aina ya mambo ya nasty watu katika nyuma.

652
00:46:38,200 --> 00:46:41,570
>> Hebu majadiliano kuhusu jinsi unavyoweza kutetea dhidi ya baadhi ya mambo haya.

653
00:46:41,570 --> 00:46:46,860
watu ambao maendeleo viwango wireless - 802.11 -

654
00:46:46,860 --> 00:46:50,820
wao si watu bubu kwa yeyote kunyoosha wa mawazo.

655
00:46:50,820 --> 00:46:56,110
Hii ni ya baridi na teknolojia wakati ilipata kushika nafasi katika 1999,

656
00:46:56,110 --> 00:47:00,780
wakatoka kiwango hiki kuitwa WEP.

657
00:47:00,780 --> 00:47:03,360
Unaweza kuona hapa wakati wewe kujaribu na kujiunga na mtandao wa wireless,

658
00:47:03,360 --> 00:47:07,450
una kila aina ya chaguzi mbalimbali usalama.

659
00:47:07,450 --> 00:47:11,800
Hiyo ni aina ya maumivu kwa sababu kuna 6 wote pamoja

660
00:47:11,800 --> 00:47:14,790
na kamwe kweli hufanya akili ambayo 1 kujiunga.

661
00:47:14,790 --> 00:47:19,190
Hii 1 saa ya juu ni moja ya kwanza kwamba wao kuja na kuitwa WEP.

662
00:47:19,190 --> 00:47:27,960
WEP anasimama kwa faragha Wired sawa, naamini,

663
00:47:27,960 --> 00:47:31,730
si Wireless encryption Itifaki ambayo ni misnomer kawaida.

664
00:47:31,730 --> 00:47:36,170
Kwa sababu anajaribu kuwapa faragha sawa na ulinzi wa usalama

665
00:47:36,170 --> 00:47:40,590
sawa na ile ya mtandao wired

666
00:47:40,590 --> 00:47:46,710
Na WEP nini mwisho juu kinachotokea ni,

667
00:47:46,710 --> 00:47:52,300
una rahisi, kidogo nenosiri aina katika na kuwa mtumishi encrypt

668
00:47:52,300 --> 00:47:56,210
yote ya mawasiliano yako kati ya kompyuta yako na router yako.

669
00:47:56,210 --> 00:47:58,210
>> Nini tatizo na WEP ingawa?

670
00:47:58,210 --> 00:48:01,470
password na WEP ni kweli mfupi,

671
00:48:01,470 --> 00:48:04,900
na pia kila mtu anatumia huo exact password,

672
00:48:04,900 --> 00:48:07,610
 na hivyo ni kweli rahisi decrypt.

673
00:48:07,610 --> 00:48:10,580
Hivyo haraka sana watu figured kwamba WEP ilikuwa ni tatizo,

674
00:48:10,580 --> 00:48:16,100
na sababu tu unaweza kuona ni show up bado juu ya guy hii kidogo ni -

675
00:48:16,100 --> 00:48:18,890
kuna baadhi ya mifumo ya wazee kwamba kufanya matumizi WEP -

676
00:48:18,890 --> 00:48:25,710
nini unapaswa badala kuwa na kuangalia kwa ni WPA na viwango hata WPA2

677
00:48:25,710 --> 00:48:29,130
kwamba walikuwa iliyotolewa baadaye.

678
00:48:29,130 --> 00:48:35,040
Mifumo hii ni ya kwenda vizuri zaidi katika ulinzi juu ya wireless Internet.

679
00:48:35,040 --> 00:48:41,090
Alisema, wao bado kufanya kuwa na baadhi hackability.

680
00:48:41,090 --> 00:48:44,010
Kuna zana huko nje kwamba unaweza kwenda kufanya hili.

681
00:48:44,010 --> 00:48:47,490
Jambo moja hasa kuwa unaweza kuwa nasty ni kwamba

682
00:48:47,490 --> 00:48:55,370
kama wewe kuungana na kuthibitishwa kwa wireless router na ni kwa kutumia aina fulani ya

683
00:48:55,370 --> 00:49:00,940
mawasiliano encrypted, zinageuka kuwa hacker urahisi kutuma pakiti moja

684
00:49:00,940 --> 00:49:03,990
kwa itakuondoa kwenye router,

685
00:49:03,990 --> 00:49:07,220
na mara moja wameweza disconnected wewe wanaweza kisha kusikiliza katika -

686
00:49:07,220 --> 00:49:11,800
wanaweza vuta pakiti wale kama wewe kujaribu kuanzisha upya uhusiano na router yako.

687
00:49:11,800 --> 00:49:16,800
Na kwa taarifa kwamba wanaweza kisha kwenda katika na decrypt mapumziko ya mawasiliano yako.

688
00:49:16,800 --> 00:49:24,580
Hii si kwa njia yoyote ya aina yoyote ya salama zaidi ya mawazo yote.

689
00:49:24,580 --> 00:49:30,060
>> Kitu nyingine unaweza kufanya wakati wewe ni kuanzisha mitandao ya wireless

690
00:49:30,060 --> 00:49:35,460
au wewe ni kujiunga nao ni - utaona kwamba hapa wakati mimi nina kujiunga na mtandao,

691
00:49:35,460 --> 00:49:37,640
anauliza kwa jina la mtandao wangu.

692
00:49:37,640 --> 00:49:41,060
Hii pia inajulikana kama SSID.

693
00:49:41,060 --> 00:49:48,610
Na unaweza kuona hapa kwamba juu ya haki nina sanduku kwamba inaonyesha mimi SSIDs inapatikana.

694
00:49:48,610 --> 00:49:52,690
Kuna Chuo Kikuu cha Harvard, CS50, na CS50 mtandao Wafanyakazi.

695
00:49:52,690 --> 00:49:59,180
Sasa, jinsi wengi wenu alijua kulikuwa CS50 Watumishi mtandao duniani?

696
00:49:59,180 --> 00:50:01,910
Baadhi yenu. Si nyote.

697
00:50:01,910 --> 00:50:08,800
tatizo na hii, bila shaka, ni kwamba alikuwa sisi si kuweka hii up kwenye orodha yetu ya SSIDs,

698
00:50:08,800 --> 00:50:10,930
hakuna angejua kuhusu hilo uwezekano mkubwa.

699
00:50:10,930 --> 00:50:16,090
Natumaini. Isipokuwa wewe guys wanajaribu wote ufa ndani ya wireless yetu.

700
00:50:16,090 --> 00:50:18,700
Lakini hili ni jambo unaweza kufanya hivyo kweli ni muhimu wakati wewe ni kuanzisha

701
00:50:18,700 --> 00:50:20,280
router nyumbani.

702
00:50:20,280 --> 00:50:22,820
Hii pengine si kutokea kwa miaka michache kwa ajili ya kura ya wewe,

703
00:50:22,820 --> 00:50:29,010
lakini kumbuka kwamba kuweka kwamba SSID nje ya hapo na si pia kutaja ni

704
00:50:29,010 --> 00:50:34,630
kitu super-kawaida itasaidia kuwalinda salama zaidi katika muda mrefu.

705
00:50:34,630 --> 00:50:38,070
>> wanandoa wa mwisho wa mambo unaweza kufanya. Moja ni HTTPS.

706
00:50:38,070 --> 00:50:44,760
Kama wewe ni katika Starbucks, kama wewe ni katika eneo umma wi-fi

707
00:50:44,760 --> 00:50:52,620
na huna kuamua kupata benki akaunti yako, kupata Gmail yako, Facebook yako,

708
00:50:52,620 --> 00:50:56,140
kuhakikisha kwamba wale connections ni kwenda juu ya HTTPS.

709
00:50:56,140 --> 00:50:59,800
Ni safu aliongeza ya usalama, safu aliongeza ya encryption.

710
00:50:59,800 --> 00:51:01,520
Jambo moja kukumbuka hapa ni,

711
00:51:01,520 --> 00:51:04,740
jinsi wengi wa umewahi clicked kupitia screen kwamba kubwa, nyekundu kuwa anasema,

712
00:51:04,740 --> 00:51:07,480
"Tovuti hii inaweza kuwa mbaya."

713
00:51:07,480 --> 00:51:09,710
Mimi najua kuwa.

714
00:51:09,710 --> 00:51:13,090
Ni pengine wakati wewe ni yote ya kuvinjari kwenda kuona Homeland au kitu kama hicho, sawa?

715
00:51:13,090 --> 00:51:19,900
Yeah. (Watazamaji kicheko) Yeah. Kuna kwenda. Tunajua mtu anayetazama Nchi.

716
00:51:19,900 --> 00:51:24,540
Hiyo kubwa, nyekundu screen haki pale

717
00:51:24,540 --> 00:51:28,600
mara nyingi inaonyesha kwamba kitu funky kinachoendelea.

718
00:51:28,600 --> 00:51:32,530
Wakati mwingine ni tu tovuti yenyewe ni uhaba,

719
00:51:32,530 --> 00:51:35,520
lakini hiyo kubwa, screen nyekundu inakuja juu wakati watu ni kujaribu

720
00:51:35,520 --> 00:51:37,520
mlima mtandao mashambulizi juu yenu.

721
00:51:37,520 --> 00:51:40,220
Hivyo kama unaweza kuona kwamba kubwa, screen nyekundu kuja katika Starbucks,

722
00:51:40,220 --> 00:51:42,440
usibonyeze kwa njia hiyo.

723
00:51:42,440 --> 00:51:45,350
Habari mbaya. Habari mbaya huzaa.

724
00:51:45,350 --> 00:51:51,490
>> Jambo la mwisho kwamba unaweza kuangalia

725
00:51:51,490 --> 00:51:54,120
ni aina fulani ya VPN.

726
00:51:54,120 --> 00:52:00,280
VPN hii inapatikana kupitia Harvard - vpn.fas.harvard.edu--

727
00:52:00,280 --> 00:52:03,260
na nini hii haina ni kweli itaanzisha uhusiano salama

728
00:52:03,260 --> 00:52:06,460
kati ya wewe na Harvard, funnels trafiki yako kwa njia hiyo,

729
00:52:06,460 --> 00:52:12,160
na kwamba njia kama wewe ni ameketi katika mahali kama Starbucks

730
00:52:12,160 --> 00:52:19,030
unaweza kuunganishwa na Harvard, kupata kwamba trafiki salama, na kisha kuvinjari kutoka Harvard.

731
00:52:19,030 --> 00:52:21,950
Tena, si foolproof. Watu wanaweza kupata katikati.

732
00:52:21,950 --> 00:52:25,850
Wanaweza kuanza kuvunja, lakini hii ni mbali salama zaidi kuliko kutegemea usalama

733
00:52:25,850 --> 00:52:28,620
wa peke wi-fi.

734
00:52:28,620 --> 00:52:32,570
>> Wote haki. Kwa jumla,

735
00:52:32,570 --> 00:52:34,580
wakati wewe ni kuanzisha mitandao ya wireless,

736
00:52:34,580 --> 00:52:37,250
wakati wewe ni kwenda nje kwa kutumia wireless katika umma -

737
00:52:37,250 --> 00:52:43,430
kama ni Starbucks, kama ni Tano Guys, kama ni B.Good,

738
00:52:43,430 --> 00:52:46,440
kitu kama hicho - popote wana wi-fi -

739
00:52:46,440 --> 00:52:48,440
kuwa na ufahamu wa eneo lako.

740
00:52:48,440 --> 00:52:50,440
Kuwa na ufahamu wa nini watu wanaweza kufanya.

741
00:52:50,440 --> 00:52:53,890
Na kuwa salama. Je, si kupata benki akaunti yako.

742
00:52:53,890 --> 00:52:58,740
Ni inaweza kuwa rude kuamka kama mtu inaonyesha juu na nywila yako ya baadaye.

743
00:52:58,740 --> 00:53:05,480
Pamoja na kwamba, kwenda nyekundu! Na mimi naenda kugeuza mambo nyuma juu ya Daudi kwa neno la mwisho.

744
00:53:05,480 --> 00:53:11,270
(Applause)

745
00:53:11,270 --> 00:53:14,360
>> [David] Nilidhani ningependa kushiriki jambo moja kutokana na uzoefu binafsi.

746
00:53:14,360 --> 00:53:19,940
chombo unaweza kama kwa kucheza na - ingawa Apple ina kiasi kikubwa kutokomezwa suala hili

747
00:53:19,940 --> 00:53:22,710
kama wameweza updated programu yako tangu -

748
00:53:22,710 --> 00:53:26,670
lakini upande wa mwisho wa hii si kweli kuwa na uwezo wa kuamini programu kwamba sisi kutumia,

749
00:53:26,670 --> 00:53:33,270
na kwa pointi Nate wa, kuwa na uwezo wa vuta kidogo kabisa ya nini watu wengine ni kufanya

750
00:53:33,270 --> 00:53:37,010
huko nje - hii ilikuwa kipande cha programu kwamba alikuja nje kuhusu iliyopita mwaka-na-nusu sasa.

751
00:53:37,010 --> 00:53:39,010
[IPhoneTracker] [http://petewarden.github.com/iPhoneTracker/]

752
00:53:39,010 --> 00:53:41,010
Kwa baadhi ya wakati, iTunes - kabla iCloud, wakati walikuwa syncing iPods yako au iphone yako au

753
00:53:41,010 --> 00:53:45,570
au iPads yako na iTunes - kwa maslahi ya chelezo,

754
00:53:45,570 --> 00:53:48,340
nini iPhone yako na vifaa hivi nyingine wamekuwa wakifanya kwa muda ni

755
00:53:48,340 --> 00:53:50,340
kufanya matumizi ya data ya GPS.

756
00:53:50,340 --> 00:53:52,710
>> Wewe wote tunajua kwamba labda iphone yako na Androids na Windows Simu za Mkono

757
00:53:52,710 --> 00:53:55,410
na kama siku hizi unaweza kufuatilia ambapo wewe ni katika maslahi ya kuonyesha ramani

758
00:53:55,410 --> 00:53:59,440
na sawa - vizuri kile Apple na makampuni haya mengine ya kufanya ni

759
00:53:59,440 --> 00:54:02,650
wao kawaida kufuatilia karibu kila mahali ve kweli imekuwa kwa maslahi ya

760
00:54:02,650 --> 00:54:05,380
kuboresha ubora wa huduma.

761
00:54:05,380 --> 00:54:07,170
Moja, unaweza kupata zaidi ya walengwa na matangazo kama,

762
00:54:07,170 --> 00:54:10,740
lakini mbili, wanaweza pia takwimu nje ambapo kuna maeneo yenye wireless katika ulimwengu,

763
00:54:10,740 --> 00:54:14,780
na hii inaweza kusaidia kwa geo-mahali - aina ya triangulation ya nafasi ya watu.

764
00:54:14,780 --> 00:54:18,520
>> Long hadithi fupi, sisi wote alikuwa akitembea antena kwa ajili ya baadhi ya kiasi cha muda.

765
00:54:18,520 --> 00:54:22,180
Kwa bahati mbaya, Apple alikuwa amefanya uamuzi wa kubuni - au kukosekana kwa -

766
00:54:22,180 --> 00:54:26,590
na si kuficha habari hii wakati ilikuwa kuwa backed-up na iTunes.

767
00:54:26,590 --> 00:54:30,330
Na kile mtafiti usalama kupatikana mara kwamba hii ilikuwa tu kubwa XML file -

768
00:54:30,330 --> 00:54:33,810
kubwa Nakala faili - ameketi katika programu ya watu iTunes,

769
00:54:33,810 --> 00:54:35,400
na kama ungekuwa tu kidogo curious,

770
00:54:35,400 --> 00:54:38,990
unaweza kwenda poking kuzunguka historia mke wako, historia roommate yako,

771
00:54:38,990 --> 00:54:41,050
historia sibling yako na kama,

772
00:54:41,050 --> 00:54:44,590
na shukrani kwa programu baadhi ya bure, unaweza njama yote haya kuratibu GPS -

773
00:54:44,590 --> 00:54:46,590
latitude na longitude.

774
00:54:46,590 --> 00:54:48,590
>> Hivyo, mimi kwa kweli alifanya hivyo na simu yangu mwenyewe.

775
00:54:48,590 --> 00:54:51,210
Mimi plugged katika simu yangu, na uhakika wa kutosha, toleo yangu ya iTunes hakuwa uliosimbwa kwa wakati,

776
00:54:51,210 --> 00:54:53,900
na kile alikuwa na uwezo wa kuona walikuwa mwelekeo wangu mwenyewe.

777
00:54:53,900 --> 00:54:56,970
Hapa ni Marekani na kila moja ya duru hizi za bluu inawakilisha

778
00:54:56,970 --> 00:55:01,670
ambapo mimi kilichotokea kwa kuwa zaidi ya miezi wale uliopita ya kumiliki simu hii ya fulani.

779
00:55:01,670 --> 00:55:04,940
 Mimi kutumia muda mwingi, bila shaka, hadi katika Kaskazini, wakati kidogo katika California,

780
00:55:04,940 --> 00:55:08,690
safari kortlivade na Texas, na kama wewe kisha kuvuta hii -

781
00:55:08,690 --> 00:55:11,120
hii yote ni aina ya faini na ya kuvutia, lakini nilijua hii.

782
00:55:11,120 --> 00:55:13,890
Wengi wa marafiki zangu alijua hii, lakini kama wewe kupiga mbizi katika kina kirefu,

783
00:55:13,890 --> 00:55:17,090
unaweza kuona ambapo mimi kutumia zaidi ya muda wangu katika Kaskazini.

784
00:55:17,090 --> 00:55:20,330
Kama wewe latch kwenye baadhi ya miji ya familiar-kuangalia -

785
00:55:20,330 --> 00:55:24,670
hii kubwa, bluu splotch wino kimsingi ni unaozingatia zaidi ya Boston,

786
00:55:24,670 --> 00:55:29,510
na kisha mimi kutumia muda kidogo nje katika viunga meremeta nje kutoka Boston.

787
00:55:29,510 --> 00:55:32,780
Lakini mimi pia kufanya kidogo kabisa ya kushauriana kwamba mwaka.

788
00:55:32,780 --> 00:55:36,090
Na mwaka huu ni seaboard mashariki, na unaweza kuona mimi

789
00:55:36,090 --> 00:55:41,920
na iPhone yangu katika mfuko wangu kusafiri na kurudi kati ya Boston na New York

790
00:55:41,920 --> 00:55:47,510
na Philadelphia zaidi chini, kama vile matumizi ya muda kidogo likizo

791
00:55:47,510 --> 00:55:50,340
juu ya Cape, ambayo ni mkono kidogo kutoka huko.

792
00:55:50,340 --> 00:55:53,030
Hivyo, kila moja ya haya dots inawakilisha baadhi mahali ningeli,

793
00:55:53,030 --> 00:55:56,970
na kabisa unbeknownst kwangu, historia hii nzima wamekaa tu pale

794
00:55:56,970 --> 00:55:58,410
kwenye desktop kompyuta yangu.

795
00:55:58,410 --> 00:56:00,470
Kama wewe zoom nje - hii kwa kweli ilikuwa ni kidogo kumsumbua.

796
00:56:00,470 --> 00:56:04,190
Sikuwa recollection ya milele kuwa katika Pennsylvania fulani mwaka.

797
00:56:04,190 --> 00:56:07,840
Lakini mimi ingawa ngumu kidogo kuhusu hilo na I figured nje, oh, ilikuwa katika ukweli kwamba safari

798
00:56:07,840 --> 00:56:11,160
na uhakika wa kutosha, simu yangu alikuwa hawakupata yangu.

799
00:56:11,160 --> 00:56:14,180
>> Apple tangu encrypted habari hii,

800
00:56:14,180 --> 00:56:17,380
lakini hii pia ni tu agano kwa kiasi gani taarifa ni kuwa zilizokusanywa kuhusu sisi,

801
00:56:17,380 --> 00:56:20,850
na jinsi urahisi - kwa bora au mbaya - ni kukubalika.

802
00:56:20,850 --> 00:56:23,340
Moja ya aways kuchukua-hopefully kutoka majadiliano Rob, kutoka katika majadiliano ya Nate

803
00:56:23,340 --> 00:56:27,370
na kidogo kuonekana kama leo hii ni kuwa Mjuzi wote zaidi ya hii

804
00:56:27,370 --> 00:56:31,160
hivyo kwamba hata kama - kama kwa uhakika wa Rob - we're aina ya Star, haki?

805
00:56:31,160 --> 00:56:33,920
Kuna si mengi tunaweza kufanya linapokuja baadhi ya vitisho hivi,

806
00:56:33,920 --> 00:56:37,130
lakini mwisho wa siku sisi inabidi uniamini kitu au mtu

807
00:56:37,130 --> 00:56:38,510
kama tunataka kweli matumizi ya teknolojia hizi.

808
00:56:38,510 --> 00:56:43,150
Angalau tunaweza kufanya maamuzi sahihi na maamuzi mahesabu kama au

809
00:56:43,150 --> 00:56:46,390
sisi lazima kweli kuwa kuangalia akaunti hii nyeti hasa

810
00:56:46,390 --> 00:56:49,330
au sisi lazima kweli kuwa na kutuma kwamba kidogo mtuhumiwa ujumbe wa papo hapo

811
00:56:49,330 --> 00:56:52,180
 katika mazingira wi-fi kama hii.

812
00:56:52,180 --> 00:56:54,990
>> Hivyo, kwa kuwa alisema, moja tu jaribio inabakia, moja hotuba bado.

813
00:56:54,990 --> 00:56:57,740
Tutaweza kuona juu ya Jumatano kisha Jumatatu.

814
00:56:57,740 --> 00:57:02,100
(Applause na cheers)

815
00:57:02,100 --> 00:57:06,100
[CS50TV]