Apple’s RAOP is Cracked

Apr11

For a long time now, apps can stream high-quality audio to an Airport Express or an Apple TV using the RAOP protocol. However, the reverse cannot be done due to the fact that the protocol uses asymmetric encryption, which means the private key is baked into the firmware of the Apple (or Apple-licensed) device.

Finally, someone has done something about it. James Laird dumped the ROM of his Airport Express and extracted the private key. He posted the private key to the vlc-devel mailing list.

And now, the site on which he hosts his implementation called shairport is returning HTTP 500.

Update 13-Apr-2011: The link to shairport and his site is back up.

How Electret Microphones Work

Apr7

There’s a really nice article on Open Music Labs that describe the inner workings of the ubiquitous electret microphone.

Fraudulent SSL Certs & Revocation

Mar24

I just read news that fake SSL certificates were issued by Comodo CA, but more interestingly, browser updates were issued to blacklist the certificates. Why this was necessary since we already have a protocol for doing just that?

I found out from this post on the torproject blog that talks about how OCSP is not properly implemented in browsers:

The browsers treat revocation errors as soft errors and a MITM is deadly for revocation. The browsers believe they have to treat them as soft errors because the CAs are failing to do their job properly and are almost entirely unaccountable.

Here’s how some other browsers fare when OCSP fails.

Filter Design in Thirty Seconds

Feb14

If you want a working filter design fast, Texas Instruments has the document for you.

http://focus.ti.com/lit/an/sloa093/sloa093.pdf

High pass, low pass, band pass, band reject. Circuits for dual and single supply designs too.

Oscilloscope CRT disassembly and explanation

Feb6

Here’s a nice video about how an oscilloscope (or generally a regular) cathode ray tube works.

irq5.io

adventures of an electronics & software guy

Tag Archives: link