Jump to content

nvemb3r

Active Members
  • Posts

    33
  • Joined

  • Last visited

Posts posted by nvemb3r

  1. I came across this on Reddit. Nothing To Hide is a stealth/puzzle game where you navigate through levels while trying to stay within field of view of cameras within the game.

    While the game does emphasize issues with having to hide who you really are, this isn't a full blown propaganda game. The game's early demo has some rather challenging puzzles, and more should come in the game's later stages of development.

    nothingtohide.cc

    [media][/media]

  2. But you did this with your own vpn and not a 3rd party vpn correct?

    I did this through a VPN I subscribed to. While everyone in the far east can't brute force my OpenSSH service, attacks can still be attempted by anyone else that subscribes to the same VPN, or by users in my area with the same ISP.

    In a business environment, it would be better to roll your own VPN (that only a handful of people can access), but have another means of accessing your system other than the VPN. If the VPN is the only way you can SSH into a computer, than that VPN service can be targeted for a DoS attack. Once your VPN goes down, so does SSH access.

  3. I'm not a computer criminal, I'm just a guy that likes computers, the internet, and I.T. However, after some events in my past I feel I need to answer this.

    One thing I got from building my first PC, maintaining it, and learning to program is a sense of agency and control. Once you learned how a computer, protocols, and other things work, you can mess with them and make your gadgets do stuff. My desktop runs faster, my phone's battery life has extended, and I've ensured that my devices protect my privacy. They all do that because I will them to (apologies if that sounds weird). In a way, hacking (if that's what you want to call what I described) makes me feel good. Call me a control freak. :)

    Unfortunately, life isn't like working with computers, or playing a video game. Good people can get scolded for no damn reason, and bad people get rewarded for lying, cheating, and stealing from others. In our society, people will call you out and shoot you down for what you are, instead of who you are and what you do. Here, an inferior job candidate can take the job you worked so hard to get because the other person knew someone in the company. In some communities, people may not care for the incredible talents you possess, and only for the people in their social network. Long story short: Life isn't fair, and sometimes it can make you feel like you have no control over your own life.

    I'm sorry if it looks like I'm venting, but that's by perspective.

  4. Above post sums it up pretty much. SSH, SFTP, SCP, TLS/HTTPS usage, VPNs and IP restrictions work well and if not possible to use shell access over SSH, maybe setting up some form of two factor authentication so no one can get in without say a sent passphrase/onetime key sent to your phone or email(securely), or use of things like a YubiKey/smartcards.

    One thing I did is white list the address ranges for your ISP and VPN for SSH use. That way it would only be accessible from your local area, or through your VPN. That significantly reduced the number of logs coming in from hosts abroad.

    I did this by messing with the /etc/hosts.allow and /etc/hosts.deny files.

  5. I've been using IPredator for a while, and I've had help with issues in the past. The only catch is that the only reliable protocol they're using at the moment is OpenVPN. They also support PPTP, which isn't good, and other protocols won't be supported til the end of the year.

  6. Sorry for getting back to you late.

    Accessing FTPS over port 21 instead of port 990 worked. I've had issues with iptables and the config file that I didn't notice before. :)

    Changes to vsftpd.conf:

    # Certificate and key locations
    rsa_cert_file=/etc/ssl/private/vsftpd.pem
    rsa_private_key_file=/etc/ssl/private/vsftpd.key
    
    # Turn on SSL
    ssl_enable=YES
    ssl_tlsv1=YES
    ssl_sslv2=YES
    ssl_sslv3=YES
    ssl_ciphers=HIGH
    
    # Enable Implicit SSL
    implicit_ssl=YES
    pasv_enable=YES
    pasv_min_port=15000
    pasv_max_port=16000
    
    
  7. Hello,

    I'm having issues trying to unblock ports 989 and 990 on iptables. I'm able to connect to my vsftpd service with plain FTP (not what I'm comfortable with), and I've been able to unblock ports for other services I use (Apache, OpenSSH, etc). Every time I do a port scan, those two ports never come up.

    I don't know if I screwed up iptables, or if I screwed up my daemon. Or both.

  8. My household is sorta the same way. I don't mind helping my grandparents because they're interested in learning how to use the computer. Other people I've assisted in my home just see a problem and tell me to fix it. Here are some things they need to understand:

    • There are some things I can't fix, and is beyond my control.
    • Some things aren't broken, it's just how it works.
    • I am not a miracle worker.
    • I'm not gonna show you how to use BitTorrent.
  9. I believe int0x80 did a few episodes covering how to do this, with one of them putting the boot files and uuid stuff on a thumb drive for user data so a system wouldn't be able to boot without the thumb drive. Search the episodes from like a season or two ago though, pretty sure he covered a number of ways to do it.

    I used to use two factor authentication for full disk encryption until my Arch install broke. Now I just use a very lengthy passphrase (length > complexity in my opinion). dm_crypt can read specific files to use as keyfiles. The key file can be any sort of file, from a text file, a video file, a song file, so long as it gets the key from the file. I would recommend just using a textfile containing the key, unless you know how dm_crypt reads those files. Thats just what I did in the past, I'm sure there are better solutions.

  10. Join a local hackerspace or find a programming meetup in you area. Or find an open source project that you care about and get involved.

    In my experience, most open source projects have very newbie-friendly communities. If you're willing to contribute they will train you on how to get started and coach you on writing code that meets their standards.

    There is a hackerspace, but its about 35 miles away from my home, plus my day job ties up my schedule. I'm trying to get it all sorted out though. I'll look into open source projects for things I'm using right now.

  11. I'm not going to say I'm a professional programmer (I'm not even an employed professional, never had been), but I have picked up the concepts of procedural, object oriented programming, and tagging. I picked some languages up (not fluent in anything), and go to BBSs when I run into trouble (very reluctant to do so though).

    Aside from school work in the past, and some online tutorials, I've never gotten any real objectives as to what to do with the knowledge. I know that you write programs, but I'm unsure about what to make. Plus among those in my AFK social circle, I'm the only one interested in the subject. While I would like to contribute to open source projects, I'm not the most confident when it comes to making those sorts of contributions.

    How do you guys stay motivated to code and maintain your skills when you don't have a real goal to achieve them with? I'm not sure if other people have hit this "wall" or if I'm just being lazy.

  12. I normally read non-fiction exclusively (if I can't learn from it, it wasn't worth my time). But my girlfriend had me read Cory Doctorow's Little Brother. It was an interesting tale about the City of San Fransisco being turned upside down after the Bay Bridge blew up. The protagonist uses the internet and information technology to fight against a surveillance state, and the author really tried to incorporate real working technologies (asymmetric cryptography, Tor) into this story.

    I've been wanting to look into more of Doctorow's novels. When it comes to literature, I'm a very closed minded person, and rarely read a story to entertain myself.

  13. Hello,

    I've been wanting to start a blog, the hard way. I've rented out a VPS, got a domain name, and set up Apache, openssh, iptables, all that good stuff. Now, the web service is running (with my placeholder webpage) as intended and the site is reachable. Only thing is that it only worked right when I used the VPS's IP address. When I typed in the domain name, configured to point toward the URL, it would display the page in an frame, with the title cut out. It also doesn't give you your source, and gives you the fetched source instead:

    <html><HEAD>
    
    </HEAD><FRAMESET border='0' ROWS='*,1'> <FRAME SRC='http://X.X.X.X'><FRAME SRC='blank.html'> </FRAMESET> </html>

    I looked into it, and it turned out to be an issue with my current DNS register. I changed my name server to manage the registry, and changed the alias (no pointing) to my server's ip address. I've also game it a CNAME (www.mydomain.com redirecting to mydomain.com). After a while, the alias domain started to work, but my CNAME is still giving me issues (returns my site in a frame). Plus, HTTP requests to the server via the domain name wasn't was timely as SSH or ping requests were.

    Anyway, I guess what I'm asking is how can I better manage my DNS registry. Knowing aliasing vs pointing was something thats nice to know, but I was wondering if there are other things I should know about.

  14. We all have been profiled due to our affilliation with Hak5... not to be the Debby Downer...

    Thats been going on ever since hackers popped up in Hollywood. It's not going to happen tomorrow, but people will eventually learn the broader definition of the word.

  15. Yeah, something is not right, and we need new leaders. I'm not talking just the President, but all of congress, United Nations, leaders of other Nations, and our military personnel around the world need to be better compensated for being put into empty wars brought about from lies under many past administrations and countries like Syria, Egypt, etc, mistreating their citizens, and brought home, treated for PTSD, and given the chance to lead normal lives.

    While I agree that we need new leaders that serve the public, that alone won't help. We need people to actually give a damn.

    A lot of people think their info and communications is safe and secure, when we know differently. A lot of people insist on waiting for elected officials to solve our problems, while they don't do something themselves. Nowadays people have become somewhat apathetic, and just mind their own business. This is why I admire community servants and activists.

  16. As far as being spied on by the I.T. staff goes, I never have an expectation of privacy when I'm in a school or business environment. Thats the only useful bit I got.

    If this guy is being targeted by someone, than you should call the law. I know it may not seem like certian law enforcement peeps will make sense of computer terminology, but it still helps to file a report and have all this on record.

  17. If law enforcement can't do their job without infringing upon the 4th amendment and squashing the 1st amendment, then perhaps it's time for some in law enforcement to get out of the business altogether.

    Agreed. Unfortunately, things like the internet are still new. While we may have some I.T. know how, law enforcement, and our leaders do not. Congress didn't know how DNS or DNSSEC worked, and yet they wanted to pass SOPA, which adversely screws with those systems that effects the world.

    Personally, I think every criminal case involving computers, cell phones, or whatever, should follow the same procedures for solving crimes in the physical world. If a cop wants my PC, encryption keys, or whatever, they should need a warrant. Also, if the police do anything to your equipment, you should be allowed to get a record of what work has been done.

    Too bad about the pissing match...this thread has some potential.

    Let's keep it civil.

    Also, agreed. This is a rather big issue, and it's a shame that hasn't really caught on.

  18. that Ladytron group you mentioned looks kind of interesting. what's a good song by them?

    yea Chemical Bros are good too. i prefer Paul Van Dyke and Teisto for trance, but I saw them at the 2005 Ultra Music Festival in Miami and they had lots of fireworks and people were going crazy with exciment. i meant to be intoxicated, but i was accidentally sober and it was hillarious to see a crowd of thousands of people on XTC LOL. craaaazy!

    I like Mirage and Ghosts. Their later albums have a alternative feel to them, while their earlier ones involve mostly dance/electro.

  19. I will listen to anything good, rock (Ash, Nine Inch Nails, New Order), hip-hop (Wordburglar, Jesse Dangerously, Dual Core), and electro (The Chemical Brothers, Ladytron, shemusic).

    If it's not American Top 40, it goes in my music player.

  20. I just loved fixing computers, and making them do cool stuff. I built my first PC when I was 15, so I could play PC games (wasn't the best built PC, but I was proud of what I done). I was also foolish enough to try and overclock the 130W processor in the small mid-tower case.

    I got into hacking when I figured out how to crack the WEP encryption to Wi-Fi networks, and when my high school's web filter became overzealous. I would like to show people how stay safer on Wi-Fi (or any wireless medium, where the physical layer can be easily attacked), get around the rather obstructive web filters and monitors (it can interfere with research at school, and is unfortunately used by regimes overseas), and simply how to stay safe online.

×
×
  • Create New...