Re: Anyone from this list at BlackHat or DefCon? And a query...
On Thu, June 26, 2008 12:07 am, Amarendra Godbole wrote: Hi, It would be a pleasure meeting folks on this mailing list, including OBSD developers' at BH or DefCon. Thanks. It is generally said that the BH or DefCon wireless network is hostile, and sane individuals must not use their laptop for the risk of being compromised. My question is: if I use OpenBSD -current, with not much additional configuration (apart from the Intel wifi firmware), will the connection be reasonable secure? (Not sure if this hostility is a publicity stunt). Thanks again. Get a laptop with an Alpha chip and run OpenVMS :-) Also, don't worry about BH. That is the one for types who need to burn company or federal money set aside for training. Mostly just a bunch of clueless douchebags with goatees and vendor schwag. Randy
Re: Anyone from this list at BlackHat or DefCon? And a query...
On Thu, Jun 26, 2008 at 12:07 AM, Amarendra Godbole [EMAIL PROTECTED] wrote: It is generally said that the BH or DefCon wireless network is hostile, and sane individuals must not use their laptop for the risk of being compromised. My question is: if I use OpenBSD -current, with not much additional configuration (apart from the Intel wifi firmware), will the connection be reasonable secure? (Not sure if this hostility is a publicity stunt). Thanks again. I'd also recommend that you take a laptop that contains nothing you care about. Since if you do get hacked you won't lose anything of value. I believe even Defcon's website recommends you bring a freshly installed computer to save you from the hassle of losing things. Certainly make backup's before you go. :) -- # Curt Micol
Re: Anyone from this list at BlackHat or DefCon? And a query...
On 07:34, Thu 26 Jun 08, Curt Micol wrote: On Thu, Jun 26, 2008 at 12:07 AM, Amarendra Godbole [EMAIL PROTECTED] wrote: It is generally said that the BH or DefCon wireless network is hostile, and sane individuals must not use their laptop for the risk of being compromised. My question is: if I use OpenBSD -current, with not much additional configuration (apart from the Intel wifi firmware), will the connection be reasonable secure? (Not sure if this hostility is a publicity stunt). Thanks again. I'd also recommend that you take a laptop that contains nothing you care about. Since if you do get hacked you won't lose anything of value. I believe even Defcon's website recommends you bring a freshly installed computer to save you from the hassle of losing things. Certainly make backup's before you go. :) And make sure you have the fingerprint etc of every host you want to connect to already on the laptop. That way you will be warned in case of MITM attacks. And I would generate ssh keypairs specially for the event and remove them once you get home or leave there. -- Michiel van Baak [EMAIL PROTECTED] http://michiel.vanbaak.eu GnuPG key: http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0x71C946BD Why is it drug addicts and computer aficionados are both called users?
Re: Anyone from this list at BlackHat or DefCon? And a query...
On Thu, Jun 26, 2008 at 09:37:28AM +0530, Amarendra Godbole wrote: It would be a pleasure meeting folks on this mailing list, including OBSD developers' at BH or DefCon. Thanks. The great majority of OpenBSD developers are from outside the United States, and I would guess that most of us prefer not to visit the US now thanks to the murderous foreign policy, authoritarian domestic surveillance, and invasive border control. You'll find few of us there. Personally I've been refusing invitations to go to, or even transit through the United States for about 6 years. It is generally said that the BH or DefCon wireless network is hostile, and sane individuals must not use their laptop for the risk of being compromised. My question is: if I use OpenBSD -current, with not much additional configuration (apart from the Intel wifi firmware), will the connection be reasonable secure? (Not sure if this hostility is a publicity stunt). Thanks again. While in general the Internet is a pretty hostile place, you probably need to worry about local network attacks (sniffing, man-in-the-middle) more than usual. Don't trust DNS, and tunnel tunnel your outgoing connections out through ssh or ipsec (look at the -D flag to ssh, and make sure that your browser uses the socks proxy for DNS lookups as well) This advice applies equally to any time you're on an untrusted network (Internet cafe, Open wirless access point, etc)
Re: Anyone from this list at BlackHat or DefCon? And a query...
On Thu, Jun 26, 2008 at 12:07 PM, Amarendra Godbole [EMAIL PROTECTED] wrote: Hi, It would be a pleasure meeting folks on this mailing list, including OBSD developers' at BH or DefCon. Thanks. [snip] I look at Intel firmware, and i go oh. BLOB. ;) -jf -- In the meantime, here is your PSA: It's so hard to write a graphics driver that open-sourcing it would not help. -- Andrew Fear, Software Product Manager, NVIDIA Corporation http://kerneltrap.org/node/7228
Anyone from this list at BlackHat or DefCon? And a query...
Hi, It would be a pleasure meeting folks on this mailing list, including OBSD developers' at BH or DefCon. Thanks. It is generally said that the BH or DefCon wireless network is hostile, and sane individuals must not use their laptop for the risk of being compromised. My question is: if I use OpenBSD -current, with not much additional configuration (apart from the Intel wifi firmware), will the connection be reasonable secure? (Not sure if this hostility is a publicity stunt). Thanks again. -Amarendra
Re: Anyone from this list at BlackHat or DefCon? And a query...
Just try ;-) Better will be use -stable with block in all in pf. Everything is about your settings and wants. OBSD has good chance,that attacker will better leave. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Amarendra Godbole Sent: Thursday, June 26, 2008 6:07 AM To: OpenBSD general usage list Subject: Anyone from this list at BlackHat or DefCon? And a query... Hi, It would be a pleasure meeting folks on this mailing list, including OBSD developers' at BH or DefCon. Thanks. It is generally said that the BH or DefCon wireless network is hostile, and sane individuals must not use their laptop for the risk of being compromised. My question is: if I use OpenBSD -current, with not much additional configuration (apart from the Intel wifi firmware), will the connection be reasonable secure? (Not sure if this hostility is a publicity stunt). Thanks again. -Amarendra