Avicennasis - Apply directly to the forehead!

We ran into a friend a while back who was logging into her employer's Virtual Private Network on the weekend. She caught our attention by whipping out her keys and typing in some information from a key-fob. It turns out that her work uses an additional layer of protection for logging into the network. They have implemented a username, pin number, as well as a hardware token system called SecurID.

The hardware consists of a key-fob with an LCD screen on it.  A code is displayed on the screen and changes frequently, usually every 60 seconds. The device is generating keys based on a 128-bit encryption seed. When this number is fed to a server that has a copy of that seed, it is used as an additional verification to the other login data.

This seems like a tech trickle-down of the code generating device from GoldenEye. It does get us thinking: with the problems free email services have been having with account theft, why aren't they offering a fee-based service that includes a security fob? With the right pricing structure this could be a nice stream of income for the provider. We're also wondering if this can be implemented with a microcontroller and used in our home network. As always, leave comments below and let us know if you've already built your own system using these principles.

Update: Thanks to Andre for his comment that tells us this type of security is available for Apache servers. The distribution includes a server side authentication system and a Java based token generator that can run on any handheld that supports Java.

[Cory Doctorow] has published a novel about the near future and a couple of hackers who can make anything from the stuff lying around. We like a good sci-fi novel, and have no shortage of recommendations (go read Snow Crash) for those who need them. We're adding 'Makers' to our must read list.

Not only is this book about you, but its release most likely agrees with your life philosophy. You can download this book, right now, for free, legally. This is because it has been release under the creative commons license. Best of all, if you like the book and want to make a donation, you are directed to purchase a book on behalf of a school or other program that has requested a copy but doesn't have the funds to acquire it themselves.

So, buy the book if you want a physical copy, download it if you prefer that method, but either way we think this is better than stealing the printed word.

Hackaday alum [Ian Lesnet] tipped us off about some reverse engineering of the HVR-1600, an analog and digital television encoder/tuner. The project was spawned when [Devin] noticed his Hauppauge HVR-1600 didn't tune channels in Linux quite as well as it did in Windows. He had a hunch this was due to improper initialization settings for either the tuner chip or the demodulator.

To fix this he used two test points on the board to tap into the I2C bus. Using a logic analyzer he captured the command traffic from the bus while running Linux, then while running Windows. By filtering the results with a bit of Perl, and comparing them by using diff, he tracks down and finds the variation in the commands being sent by the two drivers. After a bit of poking around in the Linux source and making the necessary changes, he improved the tuning ability of the Linux package.

[Devin's] work looks simple enough, and it is. The difficult part of this process is being smart enough to know what you're looking for, and what you've got once you've found it.

'There's a sucker born every minute" -P.T. Barnum

This morning we've been having a heated discussion at the Hack a Day offices (read: legion of doom) over Dyson's new offering, a "bladeless fan". At first this seemed extremely exciting, but how is the air being moved? We were hoping for a device operating via ionic wind but that's simply not the case. Some of us think the bladeless claim is an outright lie, others understand it from a marketing stance, but we all agree: a fan with blades is still moving the air.

Dyson's own information page states that "an energy efficient brushless motor" draws the air in with similar technology used in "superchargers and jet engines", both of which use blades! The fan blades are in the base of this unit, they take in air and blow it out the ring. Just because you can't see a fan, can we call our computers bladeless, or an air conditioner bladeless?

Enter the P.T. Barnum reference. Known as a man who could sell anything, his legacy lives on in the Dyson corporation. At 200 british pounds (~$320) for a ten inch desk fan, what are you getting that's better than a traditional fan?  The design supposedly amplifies the air movement fifteen times, but we're skeptical about that figure as there's no energy-saving claim to go along with such an incredible power boost. One thing is certain, you will NOT get a fan without blades for your sterling… just one with hidden blades plus a huge marketing campaign.

[Thanks Gareth]