[00:00] <techMiles> but I also don't want any repercussions to fall to anyone else.
[00:00] <cyberanger> yeah, I do understand, it's the thing about dual use, everything has it's place
[00:01] <cyberanger> http://www.damnvulnerablelinux.org/ a few copies of different versions of windows, a networking switch, and backtrack linus ought to help
[00:01] <cyberanger> hack thyself
[00:02] <cyberanger> I'm not one to cross a line myself
[00:05] <cyberanger> so I get that, nice thing too is intentions are clear, what's the other side of cracking/black hat hacking, white hat hacking/hacking/computer security (that last one is the term that'll work the most)
[00:05] <cyberanger> understand tos
[00:06] <cyberanger> and you should be in the clear with any isp
[00:12] <cyberanger> techMiles: no solder walks into battle with just a shield, he usually has a sword too, so ISP's understand learning (it's doing that is more complex)
[00:12] <techMiles> Yeah.
[00:12] <techMiles> and I wasn't planning on anything like that
[00:12] <techMiles> if anything, if I had a VPS, working on that.
[00:13] <techMiles> not DDos, as that'd affect the entire host
[00:13] <techMiles> but, you get the idea.
[00:13] <techMiles> hmm I have access to Win7 and WinXP.
[00:13] <techMiles> and a switch. :d enterprise switchhh
[00:14] <techMiles> have attempted some mac address flooding to sniff the packets on the switch, but idk good tools
[00:14] <techMiles> and am also paranoid about most of them, as idk what ELSE they do, if they have embedded malware, etc
[00:14] <techMiles> as most of the free ones people create, aren't created with the best of intentions
[00:15] <techMiles> have thought about taking a CEH course
[00:16] <cyberanger> well, you have heard of open soure right? free and you can inspect the code ;-)
[00:17] <techMiles> heh. sadly I dont' know enough about the code to really know what to check for.
[00:18] <cyberanger> then something vetted by somebody else is good I take it
[00:19] <techMiles> yeah. I like asking for recommendations. :P
[00:20] <techMiles> what abt the hackthissite IRC?
[00:20] <techMiles> any good? or a bunch of scriptkiddies?
[00:21] <cyberanger> http://www.backtrack-linux.org/backtrack/backtrack-used-by-the-nsa/
[00:22] <techMiles> I'd lvoe to get into that stuff.
[00:22] <cyberanger> I think that and a few lifehacker an Maximum PC posts shows the efforts of backtrack linux well
[00:22] <techMiles> yeah. have seen the LH ones. love that site
[00:22] <techMiles> and I have a MaxPC subscrip. :D
[00:23] <techMiles> thanks to my gf.
[00:23] <techMiles> <3
[00:23] <cyberanger> hackthissite I have mixed feelings about, but it earns a metion
[00:23] <cyberanger> and if your on the security end, you'll see scripted attacks too
[00:24] <cyberanger> and if it didn't work, they wouldn't do it
[00:25] <techMiles> yeah
[00:25] <techMiles> I know about |----| this much linux
[00:25] <techMiles> and about |-| this much security.
[00:26] <techMiles> I know to encrypt any sensitive data/data transfers with as high as I can get. :D
[00:28] <cyberanger> the problem with measuring infinately evolving systems and knowledge, is measuring it accurately is  infinately complex
[00:29] <techMiles> yeah.
[00:29] <techMiles> though, in general. lol. I know very little.
[00:29] <techMiles> at least to me.
[00:29] <cyberanger> do I know this much security |-| or this much |----------------------------------------|
[00:29] <cyberanger> and what does it represent
[00:29] <cyberanger> same for linux ;-)
[00:30] <techMiles> I know enough to know where to start with linux, and to generally manage my way around it, so far as server and desktop of ubuntu/debian.
[00:30] <techMiles> security, idk where to start.
[00:30] <techMiles> a lot of it is coding, which idk
[00:30] <techMiles> there aren't any good college courses for it here. lol
[00:30] <techMiles> as much as I'd love that
[00:30] <techMiles> I want linux classes
[00:30] <techMiles> even if I'd be bored, I'd learn moer and could help
[00:30] <cyberanger> it's something that one will never quit learning
[00:30] <techMiles> and that'd be a foot in the door to moer.
[00:31] <cyberanger> CompTIA Linux+ and Security+
[00:31] <techMiles> I knowww
[00:31] <techMiles> I want Security+
[00:31] <cyberanger> that's it
[00:31] <techMiles> the CompTIA Security+ pack is on my christmas list from amazon. :$
[00:32] <cyberanger> as for linux, read up on iptables and ip6tables, for a firewall, dmcrypt for full disc encryption
[00:32] <techMiles> will try and remember that
[00:32] <techMiles> i do need to learn more on IPv6
[00:32] <techMiles> I'd love books
[00:32] <techMiles> but by the time I finish reading them, they'er outdated
[00:33] <techMiles> if they aren't outdated by the time they're written, published, and distributed.
[00:33] <techMiles> they need an eBook that can be updated, and pushes out those updates and flags the chapters with new stuff ni them.
[00:34] <cyberanger> oh, the thing about outdated is that there isn't such things
[00:35] <techMiles> another thing I wanna learn a LOT more about atm is IRC security
[00:35] <techMiles> and backend stuff
[00:35] <techMiles> like gecos....... no clue on what that is
[00:35] <techMiles> besides an amphibious animal. :)
[00:36] <cyberanger> the so called Exploit Wednesday proves that "outdated" info can actually help an attacker
[00:37] <techMiles> see I don't even know what you mean by Exploit Wed.
[00:37] <techMiles> I feel so behind. lol
[00:37] <cyberanger> the day after Patch Tuesday
[00:37] <techMiles> Ahhhh
[00:37] <techMiles> makes sense
[00:37] <techMiles> cyber monday
[00:37] <techMiles> patch tuesday
[00:38] <techMiles> exploit wednesday
[00:38] <cyberanger> the day when patches are out, and eveyone ignores them, or enough for Exploit Wednesday to work
[00:38] <cyberanger> Patch Tuesday is the second Tuesday of each month, on which Microsoft releases security patches
[00:39] <techMiles> I knew about patch teusday
[00:39] <techMiles> and I realize cyber mon has nothing to do with patch teus or exploit wed
[00:40] <cyberanger> the reason exploit wedensday works is an attacker can study the patch, and use that knowledge to attack an unpatched system easily
[00:40] <techMiles> yeap.
[00:40] <techMiles> reverse-engineering?
[00:41] <cyberanger> yep
[00:41] <techMiles> that's why I runs the updates. :)
[00:41] <cyberanger> and white papers they write, explaining the patches
[00:41] <techMiles> i know enough to have a decent firewall, keep my network firewalled, and to run a good antivirus which live-scans incoming data.
[00:42] <cyberanger> well, patches can have side effects, and enough patches at once can eat bandwidth like crazy
[00:42] <techMiles> yeah.
[00:42] <cyberanger> one reason I like cacheing proxies myself
[00:43] <techMiles> that's why Enterprises can use a striping of all even-machines, then all odd-machines, etc. and can download them to a local server
[00:43] <techMiles> that distributes them to the rest of the network
[00:43] <cyberanger> 200 computers needing updates become 5, but still gotta test them if you expect a bad patch,  better not need to unpatch 200 machines
[00:44] <techMiles> yeah.
[00:45] <cyberanger> I like the idea of squid handling updates for windows, but I'd prefer for those numbers, that they run debian or ubuntu, and have a rsync mirror
[00:45] <techMiles> squid?
[00:45] <cyberanger> after all, the best thing is run your own updates
[00:46] <cyberanger> https://help.ubuntu.com/community/Squid
[00:46] <cyberanger> a cacheing proxy server
[00:47] <techMiles> what're the advantages of that?
[00:47] <techMiles> like a DNS server? similar? but caches more of the data of a webpage?
[00:48] <techMiles> ahhh nvm
[00:48] <techMiles> I see it
[00:48] <techMiles> that's cool.
[00:49] <techMiles> gotta run. do you blog at all? :P sounds like I'd be able to read some pretty good info out of that
[00:49] <cyberanger> depends on it's config, but the basic idea is holding a copy of some files (my example above was windows updates)
[00:49] <techMiles> yeah
[00:50] <cyberanger> same update wouldn't be re-fetched from MS servers
[00:50] <cyberanger> no, I haven't (and in hindsight I realize the flaw)
[00:50] <cyberanger> but that should be something I intend to fix
[00:51] <techMiles> yes. :)
[00:51] <techMiles> feel free to write up more info/references/tips like this for me... am loving it. :D
[00:52] <cyberanger> my issue with blogging is so much seems wrong, compared to IRC, more off the uff
[00:52] <techMiles> or email or whatever if you don't put it up somewhere.
[00:52] <cyberanger> my issue with blogging is so much seems wrong, compared to IRC, more off the cuff
[00:52] <techMiles> explain?
[00:53] <cyberanger> that's not to say I don't have a blog, I just let them die (unintended, but it happenes)
[00:53] <techMiles> I'd ask more but I have to go down to my grandmother's, do her grocery shopping, help my girlfriend feed her horse, and possibly go down to a comicbook store tonight as well.
[00:53] <techMiles> yeah. I let mine die, too. don't feel I have enough useful information to write about, really
[00:53] <techMiles> unlike all these squid and unix tips from yourself.
[00:53] <cyberanger> ok, well, in short it's a simple as this is a chat, questions and answers
[00:54] <cyberanger> vs things to say, edit, never look right
[00:54] <techMiles> ahhh.
[00:54] <techMiles> hmm.
[00:54] <cyberanger> critic myself to death
[00:54] <techMiles> take my questions, and just write 'em up in an email as a Q&A?
[00:54] <cyberanger> (I've got ideas around that, but you see the issue I'
[00:54] <techMiles> no editing, it's like an offline multiplayer ntoepad. lol idk
[00:54] <cyberanger> ve had)
[00:54] <techMiles> eyah
[00:54] <techMiles> I can understand that. I am never satiesfied with my writing.
[00:54] <techMiles> seems terrible wen I read others, etc
[00:55] <cyberanger> oh, others doesn't bug me (without a reason)
[00:55] <techMiles> no I mean my writing seems terrible in comparison to others'
[00:56] <cyberanger> mine isn't a comparison even, just getting the point across, blog is one shot
[00:56] <techMiles> yeah
[00:56] <cyberanger> I can explain here if you don't get it
[00:56] <techMiles> here, I can ask immediate questions for clarification.
[00:56] <cyberanger> a blog I look at comments and what?
[00:56] <techMiles> alright. well time to run! will hopefully ttyl, or another day.
[00:56] <techMiles> maybe I can make a meetup sometime soon.
[00:56] <cyberanger> I'm usually around
[00:57] <cyberanger> well, I've gotta too, and idk where in the state you are
[00:57] <cyberanger> later, whoops ;-)
[03:20]  * cyberanger starts to choke on all the quiet
[04:44] <wrst> cyberanger: its friday night :)
[04:45]  * cyberanger says too late, strangled by the quiet, don't believe the sucide note
[04:45] <wrst> ha ha
[04:46] <cyberanger> cyberangewas.strangled.net will stay up as a tribute to poor cyberanger
[04:47] <wrst> :)
[04:47]  * cyberanger thinks he'll be hanging onto that domain as long as he can, seems to play into a fair bit of jokes lately
[04:52] <cyberanger> wrst: how was dinner?
[04:53] <wrst> it was good
[04:53] <wrst> all went well
[04:53] <wrst> made record time back from nashville
[04:54]  * cyberanger mutters something about a lead foot
[04:59] <wrst> my wife did the same thing
[05:02] <wrst> only slightly above the speed limit
[05:02] <cyberanger> slightly, huh
[05:12] <wrst> real really just five over
[05:14] <cyberanger> 5 over the limit or everyone else (I love this state for that)
[05:18] <wrst> the limit cyberanger I am using swype some I think I could get used to this
[05:20] <wrst> cyberanger good night just realized how late it is
[05:22] <electricus> ya.. getting pretty late
[05:23] <wrst> wow electricus you will turn into a pumpkin too good night
[05:23] <cyberanger> hehe, night wrst
[05:24] <cyberanger> friday night, quoting someone ;-_
[05:24] <cyberanger> D'Oh, oh well, I was overusing those anyway
[14:47] <wrst> natty works again!
[23:42] <cyberanger> with all the quiet in here, I wonder, did I miss something? ;-)
[23:48] <wrst> hey cyberanger
[23:51] <cyberanger> hey wrst
[23:51] <wrst> cyberanger: its saturday guess that's why all the quiet?
[23:51]  * cyberanger starts to choke on all the quiet
[23:52] <cyberanger> citing last nights statement
[23:52] <cyberanger> I think this channels trying to kill me ;-)
[23:55] <wrst> :P
[23:55] <wrst> cyberanger: i read somewhere that the dock thing in 11.04 is not boing to be moveable... that's kinda crap
[23:58] <cyberanger> lousy
[23:58] <cyberanger> +1 for openbox and tin2 then
[23:59] <wrst> yeah that doesn't make me overly happy