Comments on: PTR Security Advisory: Cereus Poker Network uses weak encryption http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/ Online Poker News Thu, 09 Feb 2012 12:55:21 -0800 http://wordpress.org/?v=2.8.4 hourly 1 By: ceegee http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-164018 ceegee Tue, 11 May 2010 01:25:49 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-164018 Cereus is such a joke Cereus is such a joke

]]> By: aenetomic http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-161394 aenetomic Sat, 08 May 2010 09:18:14 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-161394 PTR, i am truly impressed. Between the amazing cooperation you guys showed in helping uncover the stockstrader collusion/cheating and now this... Great work. PTR, i am truly impressed. Between the amazing cooperation you guys showed in helping uncover the stockstrader collusion/cheating and now this… Great work.

]]> By: hounddog http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-161029 hounddog Fri, 07 May 2010 22:58:29 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-161029 Good work PTR.I dont play on this network cos i've not had any electric shock therapy, I mean who would ? Good work PTR.I dont play on this network cos i’ve not had any electric shock therapy, I mean who would ?

]]> By: Kobor http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-160878 Kobor Fri, 07 May 2010 20:33:49 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-160878 Nope, they didn't did the right thing. Industry standard to alert first the developers/owner/whatever and agree with them on a release date . Of course if they don't respond then you publish. while is not the actual exploit but enough data was released imho so 2-3 good programers("hackers") can make their own version (of hack) before Cereus can upgrade their servers, release a new program etc. Nope, they didn’t did the right thing.
Industry standard to alert first the developers/owner/whatever and agree with them on a release date . Of course if they don’t respond then you publish.

while is not the actual exploit but enough data was released imho so 2-3 good programers(”hackers”) can make their own version (of hack) before Cereus can upgrade their servers, release a new program etc.

]]> By: donkedout757 http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-160607 donkedout757 Fri, 07 May 2010 15:18:01 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-160607 sick thx for the heads up PTR!! This is a pretty serious issue. sick thx for the heads up PTR!! This is a pretty serious issue.

]]> By: Smoovious http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-160304 Smoovious Fri, 07 May 2010 08:02:19 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-160304 they make it public because if they don't, then the whole disgusting practice of "security through obscurity" will continue. (Microsoft perfect example) They did the right thing making public notification. Now, if they posted the actual exploit itself, that may be questionable. -- Smoovious they make it public because if they don’t, then the whole disgusting practice of “security through obscurity” will continue. (Microsoft perfect example)

They did the right thing making public notification.

Now, if they posted the actual exploit itself, that may be questionable.

– Smoovious

]]> By: swifty http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-160123 swifty Fri, 07 May 2010 03:26:03 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-160123 h4xorz h4xorz

]]> By: RedBloch http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-160117 RedBloch Fri, 07 May 2010 03:16:12 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-160117 wouldnt it be smarter to notify AP privately and only bring this to the public if AP ignores it? wouldnt it be smarter to notify AP privately and only bring this to the public if AP ignores it?

]]> By: RedBloch http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-160111 RedBloch Fri, 07 May 2010 03:02:21 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-160111 mother*****s mother*****s

]]> By: jalexand42 http://www.pokertableratings.com/blog/2010/05/ptr-security-advisory-cereus-poker-network-uses-weak-encryption/comment-page-1/#comment-160052 jalexand42 Fri, 07 May 2010 01:30:08 +0000 http://www.pokertableratings.com/blog/?p=4567022#comment-160052 NOONE should play on Cereus at this point, anyone working for an ISP could intercept this data now that you've made the technical mechanism public. You are still very vulnerable regardless of being plugged in hard wired. Great find. NOONE should play on Cereus at this point, anyone working for an ISP could intercept this data now that you’ve made the technical mechanism public. You are still very vulnerable regardless of being plugged in hard wired.

Great find.

]]>