[Noisebridge-discuss] Security group update

aestetix aestetix aestetix at gmail.com
Fri Nov 6 22:06:37 UTC 2009 

On Fri, Nov 6, 2009 at 1:58 PM, Josh Myer <josh at joshisanerd.com> wrote:

> Clearly, this needs an HDTV donated: http://xkcd.com/350/
>
> No comment. :)


> One quick question, which will put a lot of our minds at ease: how are we
> keeping this system from affecting/infecting the rest of the local network
> and the internet at large?
>

This is more of an ops question, but I have briefly discussed it with Andy.
First, the insecure systems are in a VM that's only accessible from within
the network, unless you want to set up port forwarding. All the VMs are
either off or suspended unless someone is actively using them. Also, if we
start working on anything that's potentially malicious (like polymorphic
malware), it would be on a system that isn't hooked up to the rest of the
network. I'm actually holding off on a malware machine until we get the
hazardous network set up.

The machine I referenced that has the Joomla install is fully patched on
every other count.


>
> On Fri, Nov 6, 2009 at 1:45 PM, aestetix aestetix <aestetix at gmail.com>wrote:
>
>> Hey,
>>
>> The security group hasn't generated much discuss-list activity, but we've
>> been working on a few things. Had a couple of lectures (I spoke on classical
>> cryptography and cross site scripting, micah has given a few chats on
>> networking security and xampp), and some other things.
>>
>> We now have a computer set up at 172.30.1.173 that is hosting a bunch of
>> virtual machines. Some of them are CTF images, and a few others are very
>> crappy insecure images (Like early versions of Windows XP), and last night I
>> built an image that I installed apache, mysql, and a few other things on.
>> The idea is that we can go through milw0rm and other sites, find exploit
>> code, and test it out on a local system. Some people are interested in
>> security but have never actually practiced it, and this is a great way to
>> break the ice.
>>
>> The system currently has Joomla with a plugin or two that is known to be
>> insecure. I'll be finding applicable exploit code and putting it on the
>> system so people can see how it works. Ideally, we'll have a few dozen of
>> these, so anyone who wants can log in, try their hand, and then look at the
>> code to see how it works. It has a lot of the elements of HackThisSite, but
>> with software that is actually running on a lot of servers.
>>
>> If anyone is interested in contributing to this, join the security list!
>>
>> aestetix
>>
>> _______________________________________________
>> Noisebridge-discuss mailing list
>> Noisebridge-discuss at lists.noisebridge.net
>> https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss
>>
>>
>
>
> --
> Josh Myer 650.248.3796
> josh at joshisanerd.com
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.noisebridge.net/pipermail/noisebridge-discuss/attachments/20091106/baf8d0a4/attachment-0003.html>

More information about the Noisebridge-discuss mailing list