techMiles | but I also don't want any repercussions to fall to anyone else. | 00:00 |
---|---|---|
cyberanger | yeah, I do understand, it's the thing about dual use, everything has it's place | 00:00 |
cyberanger | http://www.damnvulnerablelinux.org/ a few copies of different versions of windows, a networking switch, and backtrack linus ought to help | 00:01 |
cyberanger | hack thyself | 00:01 |
cyberanger | I'm not one to cross a line myself | 00:02 |
cyberanger | so I get that, nice thing too is intentions are clear, what's the other side of cracking/black hat hacking, white hat hacking/hacking/computer security (that last one is the term that'll work the most) | 00:05 |
cyberanger | understand tos | 00:05 |
cyberanger | and you should be in the clear with any isp | 00:06 |
cyberanger | techMiles: no solder walks into battle with just a shield, he usually has a sword too, so ISP's understand learning (it's doing that is more complex) | 00:12 |
techMiles | Yeah. | 00:12 |
techMiles | and I wasn't planning on anything like that | 00:12 |
techMiles | if anything, if I had a VPS, working on that. | 00:12 |
techMiles | not DDos, as that'd affect the entire host | 00:13 |
techMiles | but, you get the idea. | 00:13 |
techMiles | hmm I have access to Win7 and WinXP. | 00:13 |
techMiles | and a switch. :d enterprise switchhh | 00:13 |
techMiles | have attempted some mac address flooding to sniff the packets on the switch, but idk good tools | 00:14 |
techMiles | and am also paranoid about most of them, as idk what ELSE they do, if they have embedded malware, etc | 00:14 |
techMiles | as most of the free ones people create, aren't created with the best of intentions | 00:14 |
techMiles | have thought about taking a CEH course | 00:15 |
cyberanger | well, you have heard of open soure right? free and you can inspect the code ;-) | 00:16 |
techMiles | heh. sadly I dont' know enough about the code to really know what to check for. | 00:17 |
cyberanger | then something vetted by somebody else is good I take it | 00:18 |
techMiles | yeah. I like asking for recommendations. :P | 00:19 |
techMiles | what abt the hackthissite IRC? | 00:20 |
techMiles | any good? or a bunch of scriptkiddies? | 00:20 |
cyberanger | http://www.backtrack-linux.org/backtrack/backtrack-used-by-the-nsa/ | 00:21 |
techMiles | I'd lvoe to get into that stuff. | 00:22 |
cyberanger | I think that and a few lifehacker an Maximum PC posts shows the efforts of backtrack linux well | 00:22 |
techMiles | yeah. have seen the LH ones. love that site | 00:22 |
techMiles | and I have a MaxPC subscrip. :D | 00:22 |
techMiles | thanks to my gf. | 00:23 |
techMiles | <3 | 00:23 |
cyberanger | hackthissite I have mixed feelings about, but it earns a metion | 00:23 |
cyberanger | and if your on the security end, you'll see scripted attacks too | 00:23 |
cyberanger | and if it didn't work, they wouldn't do it | 00:24 |
techMiles | yeah | 00:25 |
techMiles | I know about |----| this much linux | 00:25 |
techMiles | and about |-| this much security. | 00:25 |
techMiles | I know to encrypt any sensitive data/data transfers with as high as I can get. :D | 00:26 |
cyberanger | the problem with measuring infinately evolving systems and knowledge, is measuring it accurately is infinately complex | 00:28 |
techMiles | yeah. | 00:29 |
techMiles | though, in general. lol. I know very little. | 00:29 |
techMiles | at least to me. | 00:29 |
cyberanger | do I know this much security |-| or this much |----------------------------------------| | 00:29 |
cyberanger | and what does it represent | 00:29 |
cyberanger | same for linux ;-) | 00:29 |
techMiles | I know enough to know where to start with linux, and to generally manage my way around it, so far as server and desktop of ubuntu/debian. | 00:30 |
techMiles | security, idk where to start. | 00:30 |
techMiles | a lot of it is coding, which idk | 00:30 |
techMiles | there aren't any good college courses for it here. lol | 00:30 |
techMiles | as much as I'd love that | 00:30 |
techMiles | I want linux classes | 00:30 |
techMiles | even if I'd be bored, I'd learn moer and could help | 00:30 |
cyberanger | it's something that one will never quit learning | 00:30 |
techMiles | and that'd be a foot in the door to moer. | 00:30 |
cyberanger | CompTIA Linux+ and Security+ | 00:31 |
techMiles | I knowww | 00:31 |
techMiles | I want Security+ | 00:31 |
cyberanger | that's it | 00:31 |
techMiles | the CompTIA Security+ pack is on my christmas list from amazon. :$ | 00:31 |
cyberanger | as for linux, read up on iptables and ip6tables, for a firewall, dmcrypt for full disc encryption | 00:32 |
techMiles | will try and remember that | 00:32 |
techMiles | i do need to learn more on IPv6 | 00:32 |
techMiles | I'd love books | 00:32 |
techMiles | but by the time I finish reading them, they'er outdated | 00:32 |
techMiles | if they aren't outdated by the time they're written, published, and distributed. | 00:33 |
techMiles | they need an eBook that can be updated, and pushes out those updates and flags the chapters with new stuff ni them. | 00:33 |
cyberanger | oh, the thing about outdated is that there isn't such things | 00:34 |
techMiles | another thing I wanna learn a LOT more about atm is IRC security | 00:35 |
techMiles | and backend stuff | 00:35 |
techMiles | like gecos....... no clue on what that is | 00:35 |
techMiles | besides an amphibious animal. :) | 00:35 |
cyberanger | the so called Exploit Wednesday proves that "outdated" info can actually help an attacker | 00:36 |
techMiles | see I don't even know what you mean by Exploit Wed. | 00:37 |
techMiles | I feel so behind. lol | 00:37 |
cyberanger | the day after Patch Tuesday | 00:37 |
techMiles | Ahhhh | 00:37 |
techMiles | makes sense | 00:37 |
techMiles | cyber monday | 00:37 |
techMiles | patch tuesday | 00:37 |
techMiles | exploit wednesday | 00:38 |
cyberanger | the day when patches are out, and eveyone ignores them, or enough for Exploit Wednesday to work | 00:38 |
cyberanger | Patch Tuesday is the second Tuesday of each month, on which Microsoft releases security patches | 00:38 |
techMiles | I knew about patch teusday | 00:39 |
techMiles | and I realize cyber mon has nothing to do with patch teus or exploit wed | 00:39 |
cyberanger | the reason exploit wedensday works is an attacker can study the patch, and use that knowledge to attack an unpatched system easily | 00:40 |
techMiles | yeap. | 00:40 |
techMiles | reverse-engineering? | 00:40 |
cyberanger | yep | 00:41 |
techMiles | that's why I runs the updates. :) | 00:41 |
cyberanger | and white papers they write, explaining the patches | 00:41 |
techMiles | i know enough to have a decent firewall, keep my network firewalled, and to run a good antivirus which live-scans incoming data. | 00:41 |
cyberanger | well, patches can have side effects, and enough patches at once can eat bandwidth like crazy | 00:42 |
techMiles | yeah. | 00:42 |
cyberanger | one reason I like cacheing proxies myself | 00:42 |
techMiles | that's why Enterprises can use a striping of all even-machines, then all odd-machines, etc. and can download them to a local server | 00:43 |
techMiles | that distributes them to the rest of the network | 00:43 |
cyberanger | 200 computers needing updates become 5, but still gotta test them if you expect a bad patch, better not need to unpatch 200 machines | 00:43 |
techMiles | yeah. | 00:44 |
cyberanger | I like the idea of squid handling updates for windows, but I'd prefer for those numbers, that they run debian or ubuntu, and have a rsync mirror | 00:45 |
techMiles | squid? | 00:45 |
cyberanger | after all, the best thing is run your own updates | 00:45 |
cyberanger | https://help.ubuntu.com/community/Squid | 00:46 |
cyberanger | a cacheing proxy server | 00:46 |
techMiles | what're the advantages of that? | 00:47 |
techMiles | like a DNS server? similar? but caches more of the data of a webpage? | 00:47 |
techMiles | ahhh nvm | 00:48 |
techMiles | I see it | 00:48 |
techMiles | that's cool. | 00:48 |
techMiles | gotta run. do you blog at all? :P sounds like I'd be able to read some pretty good info out of that | 00:49 |
cyberanger | depends on it's config, but the basic idea is holding a copy of some files (my example above was windows updates) | 00:49 |
techMiles | yeah | 00:49 |
cyberanger | same update wouldn't be re-fetched from MS servers | 00:50 |
cyberanger | no, I haven't (and in hindsight I realize the flaw) | 00:50 |
cyberanger | but that should be something I intend to fix | 00:50 |
techMiles | yes. :) | 00:51 |
techMiles | feel free to write up more info/references/tips like this for me... am loving it. :D | 00:51 |
cyberanger | my issue with blogging is so much seems wrong, compared to IRC, more off the uff | 00:52 |
techMiles | or email or whatever if you don't put it up somewhere. | 00:52 |
cyberanger | my issue with blogging is so much seems wrong, compared to IRC, more off the cuff | 00:52 |
techMiles | explain? | 00:52 |
cyberanger | that's not to say I don't have a blog, I just let them die (unintended, but it happenes) | 00:53 |
techMiles | I'd ask more but I have to go down to my grandmother's, do her grocery shopping, help my girlfriend feed her horse, and possibly go down to a comicbook store tonight as well. | 00:53 |
techMiles | yeah. I let mine die, too. don't feel I have enough useful information to write about, really | 00:53 |
techMiles | unlike all these squid and unix tips from yourself. | 00:53 |
cyberanger | ok, well, in short it's a simple as this is a chat, questions and answers | 00:53 |
cyberanger | vs things to say, edit, never look right | 00:54 |
techMiles | ahhh. | 00:54 |
techMiles | hmm. | 00:54 |
cyberanger | critic myself to death | 00:54 |
techMiles | take my questions, and just write 'em up in an email as a Q&A? | 00:54 |
cyberanger | (I've got ideas around that, but you see the issue I' | 00:54 |
techMiles | no editing, it's like an offline multiplayer ntoepad. lol idk | 00:54 |
cyberanger | ve had) | 00:54 |
techMiles | eyah | 00:54 |
techMiles | I can understand that. I am never satiesfied with my writing. | 00:54 |
techMiles | seems terrible wen I read others, etc | 00:54 |
cyberanger | oh, others doesn't bug me (without a reason) | 00:55 |
techMiles | no I mean my writing seems terrible in comparison to others' | 00:55 |
cyberanger | mine isn't a comparison even, just getting the point across, blog is one shot | 00:56 |
techMiles | yeah | 00:56 |
cyberanger | I can explain here if you don't get it | 00:56 |
techMiles | here, I can ask immediate questions for clarification. | 00:56 |
cyberanger | a blog I look at comments and what? | 00:56 |
techMiles | alright. well time to run! will hopefully ttyl, or another day. | 00:56 |
techMiles | maybe I can make a meetup sometime soon. | 00:56 |
cyberanger | I'm usually around | 00:56 |
cyberanger | well, I've gotta too, and idk where in the state you are | 00:57 |
cyberanger | later, whoops ;-) | 00:57 |
* cyberanger starts to choke on all the quiet | 03:20 | |
wrst | cyberanger: its friday night :) | 04:44 |
* cyberanger says too late, strangled by the quiet, don't believe the sucide note | 04:45 | |
wrst | ha ha | 04:45 |
cyberanger | cyberangewas.strangled.net will stay up as a tribute to poor cyberanger | 04:46 |
wrst | :) | 04:47 |
* cyberanger thinks he'll be hanging onto that domain as long as he can, seems to play into a fair bit of jokes lately | 04:47 | |
cyberanger | wrst: how was dinner? | 04:52 |
wrst | it was good | 04:53 |
wrst | all went well | 04:53 |
wrst | made record time back from nashville | 04:53 |
* cyberanger mutters something about a lead foot | 04:54 | |
wrst | my wife did the same thing | 04:59 |
wrst | only slightly above the speed limit | 05:02 |
cyberanger | slightly, huh | 05:02 |
wrst | real really just five over | 05:12 |
cyberanger | 5 over the limit or everyone else (I love this state for that) | 05:14 |
wrst | the limit cyberanger I am using swype some I think I could get used to this | 05:18 |
wrst | cyberanger good night just realized how late it is | 05:20 |
electricus | ya.. getting pretty late | 05:22 |
wrst | wow electricus you will turn into a pumpkin too good night | 05:23 |
cyberanger | hehe, night wrst | 05:23 |
cyberanger | friday night, quoting someone ;-_ | 05:24 |
cyberanger | D'Oh, oh well, I was overusing those anyway | 05:24 |
wrst | natty works again! | 14:47 |
cyberanger | with all the quiet in here, I wonder, did I miss something? ;-) | 23:42 |
=== mhall119_ is now known as mhall119 | ||
wrst | hey cyberanger | 23:48 |
cyberanger | hey wrst | 23:51 |
wrst | cyberanger: its saturday guess that's why all the quiet? | 23:51 |
* cyberanger starts to choke on all the quiet | 23:51 | |
cyberanger | citing last nights statement | 23:52 |
cyberanger | I think this channels trying to kill me ;-) | 23:52 |
wrst | :P | 23:55 |
wrst | cyberanger: i read somewhere that the dock thing in 11.04 is not boing to be moveable... that's kinda crap | 23:55 |
cyberanger | lousy | 23:58 |
cyberanger | +1 for openbox and tin2 then | 23:58 |
wrst | yeah that doesn't make me overly happy | 23:59 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!