Quote:
Fousekis, you make good points and it shows you have IT experience. I don't have a lot of security background, but I don't think you necessarily have to be near the router to do man-in-the middle attacks on the clients. You can hack the central server or the router remotely.
You are talking about two different things here, "man-in-the-middle" and "router take over" attacks.
Man-in-the-middle attack
A man in the middle attack requires you to be in the middle of a communication. It requires you to have physical access to the data that flows between the sender and the recepient. Such an attack (in the context of the current scenario) would require you to have physical access to one of these three places
The sender's network (this would be Absolute Poker's local network)
The recipient's network (this would be the other player's local network)
A central point somewhere in between the communication (e.g. the other player's ISP local network)
You cannot perform this type of attack remotely.
What Wikipedia has to say about man-in-the-middle attacks
Router take over
This type of attack allows you to exploit a vulnerability in the router's software (typically a buffer over/under run) to take the router over. Yes, this type of attack is possible to occur remotely, but the "remotely" part has to be put in context. You do not have to be physically plugged into the router, but you need a way of sending the attack to the router. In the context of the current scenario we are exploring, this would require physical access to Absolute Poker's local network.
Also keep in mind that these type of vulnerabilities are extremely rare and complicated. Most of the times all the attack can achieve is bring the router down rather than gain access to all of the information that flows through it.
Quote:
Also, just because you say having a superuser account or sending others' cards to the client would be totally stupid does not preclude Absolute from doing that.
Look at how they've handled this from a PR perspective and ask yourself why would they have the IT part in order?
The assumption being made here is that Absolute Poker are being regulated and audited by someone that knows how to regulate and audit. This is the kind of thing that is obvious to anyone that has a look at the system's architecture.
Quote:
If this is 100% true, this has MASSIVE implications because it HAS to be an inside job.
The point of my post was to demonstrate that speculating how the cheating was facilitated is only hurting this story. Although its nice to speculate and come up with theories, in the log run this could end up being the reason the story gets discredited. We do not have the necessary information to determine how the cheating was done, so let's focus on the things that add value to the story which is coming up with facts and evidence.
P.S. I guess I should have mentioned this earlier ... I play at AP