I'm Attending Defcon this August, advice?
Lisa Kachold
lisakachold at obnosis.com
Sat Apr 20 01:32:17 MST 2013
Your key is as sècure as the version of SSL/SSH. Îf you lèave password SSH
login via. Pam.d ènabled, you will be targeted by more than DefCon's
hackers! The mere fact that you have SSH turned ôn indicàtes you do not
understand the risks. Your passwords most probably fail to be adequately
complex? What's your router IP; we will make you a flag at the next
hackfest?
On Apr 19, 2013 11:52 PM, "Phil Waclawski" <phil.waclawski at mesacc.edu>
wrote:
> Well, I'm attending it in the hopes of learning about how some of these
> attacks work, and how to defend against them. Helps me teach my students
> better practices (and myself as well).
>
> To be honest, I had planned on having an old laptop with a brand new
> kubuntu install on it (no data I care about) and just doing some blender
> work and note taking offline, and never connecting it to a network while at
> the convention.
>
> However, I'm curious, if I set up an ssh tunnel to a server I've already
> established a Key system with, wouldn't ssh throw up a huge warning from a
> man in the middle attack not having the right "handshake"? At that point
> I'd only be hosed if I was dumb enough to say "connect anyway"?.
>
> Phil W.
>
>
> On Fri, Apr 19, 2013 at 10:30 PM, der.hans <PLUGd at lufthans.com> wrote:
>
>> Am 19. Apr, 2013 schwätzte Alan Dayley so:
>>
>> moin moin Alan,
>>
>>
>> Why in the world would anyone actually attend a conference where you KNOW
>>> people are going to attack your electronics and data? Erasing everyone's
>>>
>>
>> It's in the city where people pay to let someone steal from them, so it
>> fits the theme.
>>
>> http://www.newyorker.com/**online/blogs/culture/2013/01/**
>> video-the-art-of-**pickpocketing.html<http://www.newyorker.com/online/blogs/culture/2013/01/video-the-art-of-pickpocketing.html>
>>
>>
>> credit cards? For the lulz, I guess. It sounds like a bunch of very smart
>>> trolls getting together to see who can out-troll who. I would just
>>> be collateral damage in such a group. I guess it's an effective way to
>>> keep
>>> the non-trolls and newbies out of the "defcon club." Or maybe it is a
>>> from
>>> of hazing.
>>>
>>> And, if I HAD to go, cash, pen and paper is all I would bring.
>>>
>>
>> Make sure to keep them somewhere safe ;-).
>>
>> ciao,
>>
>> der.hans
>> --
>> # http://www.LuftHans.com/ http://www.LuftHans.com/**Classes/<http://www.LuftHans.com/Classes/>
>> # Like the maid, I don't do (M$)Windows. - der.hans
>> ---------------------------------------------------
>> PLUG-discuss mailing list - PLUG-discuss at lists.phxlinux.org
>> To subscribe, unsubscribe, or to change your mail settings:
>> http://lists.phxlinux.org/mailman/listinfo/plug-discuss
>>
>
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.phxlinux.org
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.phxlinux.org/mailman/listinfo/plug-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.phxlinux.org/pipermail/plug-discuss/attachments/20130420/ad82ff77/attachment.html>
More information about the PLUG-discuss
mailing list