Many people including myself prefer to run an OS from a USB storage device and not a CD, one of these reason is notebooks.
I currently run BT3 of a USB stick, but BT4 final is only around the corner, and the Remote Exploit guys have released a video of how to get it up and running on USB.
Visit Remote Exploits Website for more info.
So the UK digital super highway is erm, slow to say the least. People dont get the speeds advertised, not everyone can get broadband, and lets face it who can be doing with 56k anyway.
Now its all going to change, the government have published the Digital Britian report and apparently the future is shiny, with blue flashing lights.
I have to admit I have not read it all yet, its 245 pages but here are the highlights as published elsewhere.
The main points outlined in the report include:
• a three year plan to boost digital participation
• universal access to broadband by 2012
• fund to invest in next generation broadband
• digital radio upgrade by 2015
• liberalisation of 3G spectrum
• legal and regulatory attack on digital piracy
• support for public service content partnerships
• changed role for Channel 4
• consultation on how to fund local, national and regional news
Not surprisingly there will be a tax 🙂 Apparently something like an additional 50p will be charged each month to those with a landline to help pay for all this.
I wont go into my political government rant mode, but we always seem to get taxed more and more, we are supposed to be on a downturn, and we are all struggling for cash. Perhaps we could not do up some MP’s kitchens to help pay for Britians World Class Digital future.
Heres a link to the report, enjoy 🙂 PDF Digital Britian.
Thanks to my good InfoSec buddy Andrew Waite of InfoSanity, he prompted me to have a play with Nepenthes (Honeypot?).
So I setup a Debian VM and popped into a DMZ and went about installing Nepenthes.
Debian took about 20 mins to install (I took the minimal download updates as it installs option), then I went with the precompiled / built option.
Again this was straight forward and was up and running in no time. Had some issues getting Nepenthes running after a reboot and finding the appropriate config files (Andrew to the rescue again).
Anyway once up and running, 9 mins passed (I thought it would be less) I am already getting activity. I got hit with W32.spybot.worm and W32.virut.h. I searched the hashes on Virus Total, so they were nothing new, but you will see Andrew has found some interesting results, but hes had it running a fair while. You can see whats going on by reviewing the log files, and looking at the binaries (viruses) that have been intercepted
Great to have a mess around and see how these things work, and just prove it doesnt take long after connecting to the Internet to get owned 🙂
I think there is also value to deploying a honeypot within your corporate environment as another layer of detection to identify internal Malware floating about.
For those who are Linux adverse there are some Windows Honeypots like HoneyBOT, I have not tried these myself, but it might be worth a look.
Nepenthes is a low interaction honeypot like honeyd or mwcollect. Low Interaction Honeypots emulate _known_ vulnerabilities to collect information about potential attacks. Nepenthes is designed to emulate vulnerabilties worms use to spread, and to capture these worms. As there are many possible ways for worms to spread, Nepenthes is modular. There are module interface to
I am aiming to attend BruCON this year, so hopefully see some of you guys around, heres what its all about:
BruCON aims to become the best and most fun hacking (*) and security event in Belgium and W. Europe offering a high quality line up of speakers, opportunities of networking with peers, hacking challenges and workshops. Organized in Brussels, BruCON is an open-minded gathering of people discussing computer security, privacy, information technology and its cultural/technical implications on society. The conference creates bridges between the various actors active in computer security world, included but not limited to hackers(*), security professionals, security communities, non-profit organizations, CERTs, students, law enforcement agencies, etc…
Topics of interest include, but are not limited to :
– Electronic/Digital Privacy
– Wireless Network and Security
– Attacks on Information Systems and/or Digital Information Storage
– Web Application and Web Services Security
– Lockpicking & physical security
– Honeypots/Honeynets
– Spyware, Phishing and Botnets (Distributed attacks)
– Hardware hacking, embedded systems and other electronic devices
– Mobile devices exploitation, Symbian, P2K and bluetooth technologies
– Electronic Voting
– Free Software and Security
– Standards for Information Security
– Legal and Social Aspect of Information Security
– Software Engineering and Security
– Security in Information Retrieval
– Network security
– Security aspects in SCADA, industrial environments and “obscure” networks
– Forensics and Anti-Forensics
– Mobile communications security and vulnerabilities
– Information warfare and industrial espionage.
For more info:
http://www.brucon.org/
We all know things get messy when the shit hits the fan. Well now you can travel prepared.
I found this on Firebox today, and it made me laugh so much. Its just great, check it out here.
Flat-packed, the Shit Box pops open to become a rigid but comfy loo into which you can drop your fudge, again and again, without making a mess or gassing everyone within a 5 mile radius. That’s because it comes with 10 biodegradable poo bags. Genius! Simply pop one inside, lay your cable, remove the whole shebang, tie up the bag and shove it in your best mate’s sleeping bag… sorry, we mean dispose of it responsibly.
Microsoft have released the much anticipated Service Pack 2 for the Vista and 2008 Server OS.
You can download this directly from MS here, and get additional information from Technet here.
A few improvements are supposed to be apparent, such as faster launching of applications, improved wireless functionality and faster shut down times.
It is also worth noticing that a tool is available to clean up once you have installed SP2, so that it can remove some of the previous SP1 clutter. Simply run compcln.exe, and you should hopefully see some Windows Folder shrinkage.