[olug] Security
David Walker
linux_user at grax.com
Fri Jan 4 22:17:27 UTC 2002
My plan was to have entries in defense and offensive categories.
The defenders config their servers to fulfill certain functions such as web
server or mail server and to contain a secret piece of data that the
attackers would need to retrieve to win (or perhaps just change the home page
or something)
The defenders servers could be real machines or virtual machines (like vmware)
I might even be able to set up a machine to host multiple virtual machines
I have to defend production servers and I would never put them in such a
contest no matter how brilliant a security expert I consider myself. (our
client ocassionally pays professional security testers though)
On Friday 04 January 2002 03:29 pm, you wrote:
> i would as long as it is not on a production sever....must be a machine
> that is isolated and is only for this purpose.
>
> thanks,
> Nate Rotschafer
>
>
> From: David Walker <linux_user at grax.com>
>
> >Reply-To: olug at bstc.net
> >To: olug at bstc.net
> >Subject: Re: [olug] Security
> >Date: Fri, 4 Jan 2002 15:09:40 -0600
> >
> >I've been considering hosting a hacking contest later this year.
> >(attacking
> >and defending). How many people would be interested in something like
> >this?
> >
> >On Friday 04 January 2002 02:52 pm, you wrote:
> > > We ran a little hacking session in the Scott dorms to poke holes in our
> >
> >two
> >
> > > machine's security to see what could be done and realzed the exploits
> >
> >that
> >
> > > could have been used which backed-up the fact of how important security
> >
> >is
> >
> > > because without it our internal networks would have been compromised.
> > > luckily it was a friendly attack from friends on my side and on the
> >
> >other
> >
> > > end....otherwise i don't know what may have happened.
> > >
> > > thanks,
> > > nate Rotschafer
> > >
> > > _________________________________________________________________
> > > Get your FREE download of MSN Explorer at
> >
> >http://explorer.msn.com/intl.asp.
> >
> > > -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
> > >
> > > For help contact olug-help at bstc.net - run by ezmlm
> > > to unsubscribe, send mail to olug-unsubscribe at bstc.net
> > > or `mail olug-unsubscribe at bstc.net < /dev/null`
> > > (c)2001 OLUG http://www.olug.org
> > >
> > > -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
> >
> >-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
> >
> >For help contact olug-help at bstc.net - run by ezmlm
> >to unsubscribe, send mail to olug-unsubscribe at bstc.net
> >or `mail olug-unsubscribe at bstc.net < /dev/null`
> >(c)2001 OLUG http://www.olug.org
> >
> >-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
>
> _________________________________________________________________
> Chat with friends online, try MSN Messenger: http://messenger.msn.com
>
>
> -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
>
> For help contact olug-help at bstc.net - run by ezmlm
> to unsubscribe, send mail to olug-unsubscribe at bstc.net
> or `mail olug-unsubscribe at bstc.net < /dev/null`
> (c)2001 OLUG http://www.olug.org
>
> -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
For help contact olug-help at bstc.net - run by ezmlm
to unsubscribe, send mail to olug-unsubscribe at bstc.net
or `mail olug-unsubscribe at bstc.net < /dev/null`
(c)2001 OLUG http://www.olug.org
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
More information about the OLUG
mailing list