Alt+Ctrl+Supr

Summer Camp Garrotxa 2009

altctrlsupr — Thu, 11 Jun 2009 15:49:41 +0000

Pues parece que ya esta lista la parrilla de contenidos y la logistica general del evento. Estara interesante, nos veremos por alla!!!

Mas informacion

Hacktitud 2009

altctrlsupr — Wed, 10 Jun 2009 15:36:56 +0000

Los compañeros del Null-Lab estan preparando para las fiestas de su pueblo unas jornadas repletas de talleres y actividades, enmarcadas en las III Jornades de Programari Lliure i Societat en Xarxa a Cerdanyola del Vallès.

Sera los dias 26, 27 y 28 de junio al Casal de Joves Altimira (Cerdanyola del Vallès)

Mas informacion

W3af Ninja Training Class

altctrlsupr — Mon, 01 Jun 2009 14:50:48 +0000

NopSec and Bonsai Information Security presents “w3af Ninja Training Class”

June 17th / 18th 2009

NopSec, Inc. SOC

155 Water St., Brooklyn, NY 11201 USA

For Information and Registration visit:

http://tinyurl.com/w3afnyctraining

Introduction

Internet security threats are migrating from pure network-level attacks to web server and web application attacks. The web application itself has become the new security perimeter, and is wide open to the new generation of attacks. That’s the reason why is very important for IT security staff to have cutting- edge knowledge of web application security vulnerability testing techniques and tools.

Overview

w3af is a Web Application Attack and Audit Framework. The project goal is to create a framework to find and exploit web application vulnerabilities that are both easy to use and extend. The project started back in 2006 with only one developer but it is now developed and supported by a team of Web Application Hackers and Open Source experts around the world. The w3af ninja training course is focused on manual and automated discovery and exploitation of web application vulnerabilities using w3af. During this course you’ll also learn how to write your own exploits and customized plugins in order to achieve your goals during a web application penetration test.

This course is an intense hands-on class in which you won’t stop learning for a minute. In each practice we’ll focus on a particular type of web application vulnerability which will be analyzed and understood manually and then it’s detection and exploitation is automated using w3af.

All around the training interesting plugin code snippets will be subject to analysis and modification, which will give you great understanding of the framework and will also give you the means to automate your future web application penetration tests.

IMF 2009

altctrlsupr — Mon, 01 Jun 2009 14:48:38 +0000

                         3rd CALL FOR PAPERS

                              IMF 2009

                     5th International Conference
          on IT Security Incident Management & IT Forensics

                     September 15th - 17th, 2009
                          Stuttgart, Germany

                          DEADLINE EXTENSION 



PAPER SUBMISSION
================
The deadline for paper submissions has been extended to June 8th, 2009.
Notification of acceptance will be sent on June 22nd.
Camera ready paper copies must be submitted until June 26th, 2009.

Papers can be submitted via the page found at:
http://www.imf-conference.org/imf2009/submission.html

Accepted papers will be published in IEEE Computer Society's Conference
Proceedings Series and be available in the IEEE online Digital Library.

CONFERENCE BACKGROUND
=====================
Information and communication technology is more and more becoming an
integral and in most cases even a vital part of life.  The worldwide
economy, public administration, health care, education and even personal
life depend on working IT.  Constriction of the availability of its
service, loss of confidentiality or alteration of data processed, or
loss of integrity of the IT infrastructure usually lead to serious or
disastrous consequences.  Hence security plays an increasingly important
role for operators and users of IT systems and infrastructures.

The establishment of static security measures like policies, standards,
and guidelines slowly but steadily is getting more common amongst IT
operators.  Nevertheless in the vast majority of cases operators do not
have the capability to detect and respond to security incidents or do a
forensic analysis of its traces that can be used in a lawsuit.
Jurisdiction in most countries is starting to change and applies
regulations on legal duty to maintain safety on operators of IT.  Hence
incident response capabilities become indispensable to avoid successful
assertion of claims for damages caused by compromised or misused
systems.

CONFERENCE GOALS
================
IMF's intent is to gather experts from throughout the world in order to
present and discuss recent technical and methodical advances in the
fields of IT security incident response and management and IT forensics.
The conference provides a platform for collaboration and exchange of
ideas between industry, academia, law-enforcement and other government
bodies.

CONFERENCE TOPICS
=================
The scope of IMF 2009 is broad and includes, but is not limited to the
following areas:

IT Incident Response
--------------------
* Procedures and Methods of Incident Response
* Formats and Standardization for Incident Response
* Tools Supporting Incident Response
* Incident Analysis
* CERTs/CSIRTs
* Sources of Information, Information Exchange, Communities
* Dealing with Vulnerabilities (Vulnerability Response)
* Monitoring and Early Warning
* Education and Training
* Organizations
* Legal Aspects (Jurisdiction, Applicable Laws and Regulations)

IT Forensics
------------
* Trends and Challenges in IT Forensics
* Techniques, Tools in Procedures IT Forensics
* Methods for the Gathering, Handling, Processing and Analysis of
  Digital Evidence
* Evidence Protection in IT Environments
* Standardization in IT Forensics
* Education and Training
* Organizations
* Legal Aspects (Jurisdiction, Applicable Laws and Regulations)

Submission Details
==================
IMF invites to submit full papers of up to 20 pages, presenting novel
and mature research results as well as practice papers of up to 20
pages, describing best practices, case studies or lessons learned.
Proposals for workshops, discussion and presentation on practical methods
and challenges are also welcome.

All submissions must be written in English (see below), and either in
postscript or PDF format.  Authors of accepted papers must ensure that
their papers will be presented at the conference.

Submitted full papers must not substantially overlap papers that have
been published or that are simultaneously submitted to a journal or a
conference with proceedings.

All submissions will be reviewed by the program committee and papers
accepted to be presented at the conference will be included in the
conference proceedings.

Papers can be submitted via the page found at:
http://www.imf-conference.org/imf2009/submission.html

Details on the electronic submission procedure as well as detailed
registration information and formatting instructions are provided on
the conference web site (http://www.imf-conference.org).

Language
========
IMF 2009's scope is international hence all submissions must be written
in English. Presentations of accepted papers must be done in English.

Publication
===========
Accepted papers will be published in IEEE Computer Society's Conference
Proceedings Series and be available in the IEEE online Digital Library
as well as the IEEE Index.  Each participant of the conference will
receive a printed copy.

Dates and Deadlines
===================
The deadline for paper submissions is June 8th, 2009.  Notification of
acceptance will be sent on June 22nd, 2009.
Camera ready paper copies are due on June 26th, 2009.

June 8th, 2009: Deadline for submissions
June 22nd, 2009: Notification of acceptance or rejection
June 26th, 2009: Final paper camera ready copy due
September 15th through 17th, 2009: IMF 2009 Conference

PROGRAM COMMITTEE
=================
Susan Brenner		University of Dayton, USA
Jack Cole		US Army Research Laboratory, USA
Andrew Cormack		JANET, UK
Ralf Doerrie		Germany
Ralf Ehlert		Universitaet Magdeburg, Germany
Felix Freiling		Universitaet Mannheim, Germany
Sandra Frings		Fraunhofer IAO, Germany
Oliver Goebel		Universitaet Stuttgart, Germany
Detlef Guenther		Corporate Internal Audit, Volkswagen AG, Germany
Vijay K. Gurbani	Bell Labs, USA
Bernhard M. Haemmerli	ACRIS GmbH, Switzerland
Jim Lyle		NIST, USA
Robert Martin		MITRE Corp., USA
Holger Morgenstern	gutachten.info, Germany
Henning Pagnia		Berufsakademie Mannheim, Germany
Dirk Schadt		SPOT, Germany
Albert Schaenzle	Landeskriminalamt Baden Wuerttemberg, Germany
Mark Schiller		Statton Security Ltd, UK
Andreas Schuster	Deutsche Telekom, Germany
Marco Thorbruegge	ENISA, EU
Stephen D. Wolthusen	Royal Holloway, Univ. of London, UK
Steven W. Wood		Alste Technologies GmbH, Germany

CONFERENCE CHAIR
================
Dirk Schadt
SPOT Consulting
mailto: chair-2009 @ imf-conference.org

PROGRAM CHAIR
=============
Oliver Goebel
RUS-CERT
Universitaet Stuttgart
mailto: pc-chair-2009 @ imf-conference.org

ORGANIZING COMMITTEE
====================
Ralf Ehlert
Sandra Frings
Oliver Goebel
Detlef Guenther
Holger Morgenstern
Dirk Schadt

STEERING COMMITTEE
==================
Sandra Frings
Oliver Goebel
Detlef Guenther
Jens Nedon
Dirk Schadt

PROGRAM COMMITTEE
=================
see: http://www.imf-conference.org

UNDER THE AUSPICES OF
=====================
German Informatics Society (GI e.V.)
Wissenschaftszentrum Ahrstr. 45, 53175 Bonn, Germany
Tel.: +49 228 302 145, Fax: +49 228 302 167
Special Interest Group SIDAR
http://www.gi-ev.de/allgemeines/index-english.html

IN CO-OPERATION WITH
====================
IEEE Computer Society
SPOT Consulting
Fraunhofer Institut fuer Arbeitswirtschaft und Organisation IAO
Universitaet Stuttgart, RUS-CERT

SPONSORSHIP
===========
We invite interested organizations to serve as sponsors for
IMF 2009; please contact the Sponsor Chair, Detlef Guenther,
for information regarding corporate sponsorship
mailto: sponsor-chair-2009 @ imf-conference.org

------------------------------------------------------------------------

Best wishes
Ollie
--
Oliver Goebel                        mailto:Goebel@CERT.Uni-Stuttgart.DE
Stabsstelle DV-Sicherheit (RUS-CERT) Tel:+49 711 685 1 CERT
Universitaet Stuttgart               Tel:+49 711 685 8-3678 / Fax:-3688
Breitscheidstr. 2, 70174 Stuttgart   http://CERT.Uni-Stuttgart.DE/

26C3

altctrlsupr — Mon, 01 Jun 2009 13:25:50 +0000

26C3: Here Be Dragons
  26th Chaos Communication Congress
  December 27th to 30th, 2009
  Berlin, Germany http://events.ccc.de/congress/2009/


Overview
========

is the annual four-day conference organized by the Chaos Computer Club
(CCC) in Berlin, Germany.First held in 1984, it since has established
itself as "the European Hacker Conference" attracting a diverse
audience of thousands of hackers, scientists, artists, and utopists
from all around the world.

We want you to join and be a part of this unique event which serves as
a public platform for cross-culture inspiration and borderless
networking. 26C3 is fun!

Topics
======

The 26C3 conference program is roughly divided into six general
categories. These categories serve as guidelines for your submissions
(and later as a means of orientation for your prospective audience).
However, it is not mandatory for your talk to exactly match the
descriptions below. Anything that is interesting and/or funny will be
taken into consideration.

Society
-------
Technology development causes great changes in society and will
determine our future. This category is for all talks on subjects like
surveillance practices, censorship, hacker tools and the law,
intellectual property and copyright issues, data retention, software
patents, effects of technology on kids, and the impact of technology
on society in general.

Hacking
-------
The "Hacking" category addresses topics dealing with technology,
concentrating on current research with high technical merit.
Traditionally, the majority of all lectures at 26C3 revolve around
hacking.

Topics in this domain include but are in no way limited to:
programming, hardware hacking, cryptography, network and system
security, security exploits, and creative use of technology.

Making
------
The "Making" category is all about making and breaking things and the
wonderful stuff you can build in your basement or garage. Most welcome
are submissions dealing with the latest in electronics, RepRaps,
lasers, 3D-printing, climate-change survival technology, robots and
flying UAVs, steam machines, alternative transportation tools,
guerilla-style knitting, and wearable hardware hacks.

Science
-------
The "Science" category covers current or future objects of scientific
research that have the potential to radically change our lives, be it
basic research or projects conducted for the industry.

We are looking for talks and papers on the state of the art in this
domain, covering subjects such as nano technology, quantum computing,
high frequency physics, bio-technology, brain-computer interfaces,
genetic hacking and hackteria, automated analysis of surveillance
cctv, map-making, psychogeography etc.

Culture
-------
Shaping the world we live in means making it more interesting,
entertaining and beautiful. The hacker culture has many facets ranging
from electronic art objects, stand-up comedy, geek entertainment,
video game and board game culture, electronically generated music, 3D
art, and everything that bleeps and blinks to e-text literature and
beyond. If you like to show your art and teach others how to make
their lives more enjoyable, this category is for you.

Community
---------
In addition to individual speakers the Chaos Communication Congress is
also inviting groups such as developer teams, projects and activists
to present themselves and their topics.

Developer groups are also encouraged to ask for support to hold
smaller on-site developer conferences and meetings in the course of
the Congress.

Further Information
===================

The Chaos Communication Congress is a non-profit oriented event and
speakers are not paid. However, financial help on travel expenses and
accommodation is possible. It needs to be agreed upon after acceptance
of the submission, though. Don't be shy and state your requirements in
the application when submitting your lecture and we'll work something
out!

You can find the preliminary agenda and additional information on our
26C3 website at http://events.ccc.de/congress/2009/.

For further information and questions please feel free to contact 26C3-
content  (at)  cccv.de

Submissions
===========

All proposals must be submitted online using our online lecture
submission system at https://cccv.pentabarf.org/submission/26C3.
Please follow the instructions given there. If you have any questions
regarding your submission, feel free to contact us at 26C3-content
(at)  cccv.de but do NOT submit your lecture via e-mail.

Language
========

26C3 is an international event and we want to have a lot of
interesting talks in English for the benefit of our growing number of
international guests. So ideally we are looking for speakers who can
give lectures and/or workshops in either English or German. But while
we are interested in maximizing the quality of presentations, the
topic and its relevance to our community are our main concern. So
don't worry about your English skills: the language of a submission is
not a criteria for accepting or rejecting it!

If you're a native German speaker and feel insecure about talking in
English, have received criticism on your language skills from your
audience before, or if you just fear that the value and
understandability of your lecture might suffer, please offer your talk
in German.

Lecture Requirements
====================

Lectures should not exceed 45 minutes plus up to 10 minutes for
questions and answers. Longer time slots are possible if we feel the
topic demands it (please tell us if necessary). Workshops should
include a talk on the basic principles in the lecture programm and a
practical hands-on session in the workshop room.

Papers
======

Accepted speakers can optionally hand in a paper which will be
published with an ISBN in the 26C3 Proceedings. Papers will be
accepted in Portable Document Format (PDF) only and should be around
5-10 pages. The PDF file must not be password-protected or contain
other restrictions. Paper size should be DIN A4 (297x210mm) in
portrait orientation. All margins must be set to at least 2 cm (0.78
inches). Pictures should be high-contrasted, greyscaled and up to
300dpi. Apart from that, you are free to use any layout you want.

Slides
======

Accepted speakers are asked to hand in slides used in their talks.
Please use a well-known format for your slides. PDF is a wise choice.

Publication
===========

Audio and video recordings of the lectures will be published online in
various formats. The Chaos Communication Congress Proceedings are
published on paper and online. Only reviewed and accepted talks and
presentations will be published.

All material will be available under the Creative Commons
"Attribution-NonCommercial-NoDerivs 3.0 Germany" (BY-NC-ND) license
allowing free non-commercial redistribution of the material as long as
the original credit to authors and publishers is retained.

Licence URI: http://creativecommons.org/licenses/by-nc-nd/3.0/de/

We encourage contributors to publish their work under a more liberal
license; if you wish to do so, please state this with your submission.

Dates and Deadlines
===================

The deadline for submission is October 9th, 2009 Midnight (23:59) UTC.
Notification of acceptance will be sent by e-mail on November 8th,
2009 the latest. However, you may very well get your notification
earlier than that if needed. Final papers or slides are due by
November 27th, 2009.

* October 9th, 2009 (Midnight UTC) Submission due
* November 8th, 2009 (Midnight UTC) Final notification of acceptance
(or earlier)
* November 27th, 2009 (Midnight UTC) Final papers due
* December 27th - 30th, 2009 Chaos Communication Congress

Instalacion de Aircrack-NG-SSE2 en Asus eeePC y otras maquinas

altctrlsupr — Sun, 24 May 2009 12:49:41 +0000

El trabajo que realizan desde Aircrack-NG esta produciendo diversas ramificaciones que han llevado a facilitar enormemente el descrifrado de claves, sobretodo WEP. Ademas de las diversas livecd especializadas que podemos encontrar que utilizan como base o incluyen Aircrack-NG (Wifiway, BackTrack, ChaoX-NG…) , desde el website oficial podemos elegir varias formas de instalar o hacer correr la suite. Una seria utilizando Slitaz Aircrack-NG Distribution, version optimizada para los notebooks Acer Aspire One, pero que deberia funcionar en cualquier maquina con GNU/Linux, que podemos descargar desde aqui. Pasamos el fichero iso a un CD o lo utilizamos desde una maquina virtual y nos ahorramos de darles dinero a la innombrable, para disponer de un livecd.
Tambien podemos instalar la suite. Para ello, en primer lugar, nos descargamos la version mas reciente de Aircrack-NG, que incluye SSE2, que nos permitira aumentar la velocidad de proceso de las claves en relacion a versiones anteriores de la suite.
Podemos elegir entre instalar la version mas reciente mediante subversion (1) o el paquete con las fuentes mas recientes (2):

(1) subversion

# svn co http://trac.aircrack-ng.org/svn/branch/aircrack-ng
# cd aircrack-ng

(2) http://nightly.aircrack-ng.org/

Podemos descargar las fuentes fresquitas y el airoscript, que facilitara el manejo de aircrack-ng (aqui un video de su utilizacion):

# tar zvxf aircrack-ng-trunk-2009-05-24-r1544.tar.gz
# cd aircrack-ng-trunk-2009-05-24-r1544/

Instalamos lo necesario para poder compilar software, si no lo tenemos ya:

# apt-get install build-essential

Y lo mismo con las dependencias: libtool, autoconf y sqlite3.

En cualquiera de los dos casos, mediante subversion o descargando el ultimo codigo fuente, continuamos la instalacion, con soporte para airolib-ng si queremos crear bases de datos sqlite con los ESSIDs y las contraseñas, que posteriormente podran utilizarse para el descifrado de claves de paso WPA/WPA2. Tambien es util el parametro unstable=true para poder compilar tkiptun-ng, easside-ng (y buddy-ng) y wesside-ng, herramientas en pruebas que permiten automatizar el proceso de descifrado WEP.

# make sqlite=true unstable=true
# make sqlite=true unstable=true install

Si todo ha salido bien, perfecto, ya podemos comprobar la seguridad de las ondas de nuestro entorno. Es posible que obtengamos algunos errores como estos:

gcc -g -W -Wall -Werror -O3 -D_FILE_OFFSET_BITS=64 -D_REVISION=1545 -I/usr/local/include -DHAVE_SQLITE -Iinclude -c -o aircrack-ng.o aircrack-ng.c
En el archivo incluído de aircrack-ng.c:65:
crypto.h:12:26: error: openssl/hmac.h: No existe el fichero ó directorio
crypto.h:13:25: error: openssl/sha.h: No existe el fichero ó directorio
crypto.h:15:25: error: openssl/rc4.h: No existe el fichero ó directorio
crypto.h:16:25: error: openssl/aes.h: No existe el fichero ó directorio
cc1: warnings being treated as errors
In file included from aircrack-ng.c:69:
sha1-sse2.h: En la función ‘calc_4pmk’:
sha1-sse2.h:143: error: declaración implícita de la función ‘HMAC’
sha1-sse2.h:143: error: declaración implícita de la función ‘EVP_sha1’
aircrack-ng.c:72:21: error: sqlite3.h: No existe el fichero ó directorio
aircrack-ng.c: En el nivel principal:
aircrack-ng.c:73: error: expected ‘=’, ‘,’, ‘;’, ‘asm’ or ‘__attribute__’ before ‘*’ token
aircrack-ng.c: En la función ‘crack_wpa_thread’:
aircrack-ng.c:3916: error: declaración implícita de la función ‘EVP_md5’
aircrack-ng.c: En la función ‘main’:
aircrack-ng.c:4906: error: declaración implícita de la función ‘sqlite3_open’
aircrack-ng.c:4906: error: ‘db’ no se declaró aquí (primer uso en esta función)
aircrack-ng.c:4906: error: (Cada identificador no declarado solamente se reporta una vez
aircrack-ng.c:4906: error: para cada funcion en la que aparece.)
aircrack-ng.c:4907: error: declaración implícita de la función ‘sqlite3_errmsg’
aircrack-ng.c:4907: error: el formato ‘%s’ espera el tipo ‘char *’, pero el argumento 3 es de tipo ‘int’
aircrack-ng.c:4908: error: declaración implícita de la función ‘sqlite3_close’
aircrack-ng.c:5567: error: declaración implícita de la función ‘sqlite3_mprintf’
aircrack-ng.c:5567: error: la asignación crea un puntero desde un entero sin una conversión
aircrack-ng.c:5569: error: declaración implícita de la función ‘sqlite3_exec’
aircrack-ng.c:5570: error: ‘SQLITE_LOCKED’ no se declaró aquí (primer uso en esta función)
aircrack-ng.c:5570: error: ‘SQLITE_BUSY’ no se declaró aquí (primer uso en esta función)
aircrack-ng.c:5576: error: ‘SQLITE_OK’ no se declaró aquí (primer uso en esta función)
aircrack-ng.c:5576: error: ‘SQLITE_ABORT’ no se declaró aquí (primer uso en esta función)
aircrack-ng.c:5578: error: declaración implícita de la función ‘sqlite3_free’
make: *** [aircrack-ng.o] Error 1

Este error lo solucionamos instalando el paquete libssl-dev:

# apt-get install libssl-dev

Otros errores pueden solucionarse instalando libsqlite-dev.

Una vez instalado, comprobamos si tenemos el soporte SSE2:

# aircrack-ng –cpu-detect

Si habeis llegado hasta aqui del articulo, posiblemente os habreis dado cuenta que el titular es un poco redundante, ya que el proceso de instalacion es identico para un eeePC, un portatil o cualquier otro Linux.

Por ultimo, comentar que recientemente el sitio de Aircrack-ng.org estuvo varios dias fuera de servicio debido a un ataque DoS, y que el autor demuestra una actitud bastante etica proponiendo al atacante un plazo de resolucion y aclaracion del tema previo a cualquier denuncia.

Referencias:

http://forum.aircrack-ng.org/

http://www.wifiway.org/sp/articulos/aircrack-ng-rc1-con-sse2.html
http://foro.seguridadwireless.net/soporte-wifiway-para-netbooks/wifiway-1-0-beta2-para-eee-pc-901-904-1000-medion-akoya-mini/
http://airodump.net/aircrack-ng-optimalization-cpu-sse2/

3ª Party Wifi a Badalona

altctrlsupr — Sun, 17 May 2009 11:19:41 +0000

El Departament d’Electronica i Telecomunicacions de l’IES La Pineda organitza un any mes la Party Wifi, amb concursos, jocs i premis.

Mes info

Manifest

Amb aquest manifest convoquem a tothom que faci servir“WiFi” a la festa d’usuaris/es sense fils.

Esteu convidats a venir amb qualsevol aparell que es pugui connectar amb l’estendard 802.11b/g o 802.11a. Tindrem uns quants punts d’accés amb diferents configuracions on pugueu experimentar les vostres connexions.

També hi haurà la possibilitat de connectar-se a la xarxa lliure de Badalonawireles, ja integrada a “guifi.net”, i fins i tot tocar un node d’accés a aquesta xarxa.

Per potenciar l’aspecte lúdic, també tindrem demostracions de jocs en xarxa.

Ens interessa la vostra participació, per tant és molt important que porteu el vostres equips. L’equip de l’IES La Pineda estarà a la vostra disposició per ajudar-vos a configurar-lo.

Porteu les vostres consoles portàtils, no donem noms perquè no ens paguen, tota consola que tingui connexió WiFi la podreu fer servir per jugar.

Enredarem els alumnes de “telecos” per amenitzar la festa amb música.

En aquesta tercera edició, volem millorar l’anterior. Per tant esperem que no sortiu amb les mans buides.

VoIP cifrado y sin intermediarios

altctrlsupr — Sat, 16 May 2009 16:24:52 +0000

Explorando las posibilidades que nos ofrece la VoIP mas alla de Asterisk, me he encontrado con I Hear U (IHU), software libre para poderse comunicar mediante la red sin necesidad de centralitas, servidores, ni protocolos de sesion como SIP o H323.

IHU establece la comunicacion entre dos maquinas punto a punto (p2p) y unicamente empleando el protocolo UDP (por defecto), aunque tambien podemos configurarlo para utilizar TCP, y ofrece la posibilidad de cifrar el flujo de audio mediante un sistema criptografico hibrido (RSA+Blowfish). Para informacion completa sobre todas las opciones (en ingles) podeis dirigiros al manual.
En cuanto a las dependencias, necesitamos tener instaladas las librerias QT, el controlador de sonido ALSA, el codec Speex, la libreria Soundtouch y la libreria OGG, todo software libre como podeis comprobar.
La instalacion en Debian GNU/Linux es bien sencilla:
apt-get install ihu
Ahora vamos a lo que nos interesa, que es poder hacer y recibir llamadas.
Si nos conectamos desde un equipo con conexion directa a Internet (sin pasarelas ni cortafuegos), deberiamos directamente poder hacer ambas cosas, solamente necesitamos saber la IP o nombre DNS de quien queremos llamar.
En caso de que la maquina este conectada a una pasarela (router,…) deberemos redirigir y/o abrir en el cortafuegos el puerto 1793 TCP/UDP para entrada y salida.
Si activamos la opcion de cifrar el flujo de salida (”Encrypt outgoing stream”), el audio se descifrara en el IHU del otro extremo, ya que el intercambio de claves es automatico. En una misma conversacion se puede activar/desactivar el cifrado cuando se quiera, asi como cambiar la clave de cifrado (modo paranoico).

Hacking At Random 2009

admin — Fri, 15 May 2009 20:21:36 +0000

Algo justita me llega esta informacion (el call for papers tiene fecha limite hoy), pero parece que con el buen tiempo comienzan a brotar los eventos de hacking, como si se tratase de plantitas vigorosas recien sembradas (mmm, en que estare pensando?).

Es un evento abierto (que no es lo mismo que gratuito, a menos que hayais nacido despues del 16 de agosto de 2003), dedicado al hacking en sus mas amplias concepciones, que se viene celebrando cada cuatro años desde 1989 en los Paises Bajos.

Se celebrara los dias 13 a 16 de agosto 2009 en Vierhouten.

Informacion ampliada:

Wiki

IRC

Vigilancia centralizada de la seguridad de varios servidores

altctrlsupr — Mon, 11 May 2009 12:05:50 +0000

Existe una herramienta que facilitara bastante la compleja labor de monitorizacion continua de varios servidores: OSSEC HIDS.

Explicaremos la instalacion del servidor y el cliente (agente) OSSEC para entornos GNU/Linux:

Instalacion de OSSEC:
Descargamos el codigo fuente http://www.ossec.net/files/ossec-hids-2.0.tar.gz
Lo descomprimimos y entramos en el directorio:

# tar zvxf ossec-hids-2.0.tar.gz
# cd ossec-hids-2.0
# ./install.sh

Le indicamos el idioma y el tipo de instalacion (local, servidor, agente). Le indicamos la ubicacion de la instalacion y a que direccion de correo electronico deberan enviarse las alertas. Le indicamos si queremos instalar la comprobacion de integridad del sistema y la deteccion de rootkits, asi como la respuesta activa automatica ante problemas, el modo de rechazar las conexiones (bloqueando usuarixs en hosts.deny o en iptables), y la habilitacion de syslog remoto (en el puerto 514 UDP).
Por defecto si lo instalamos como servidor se configura el analisis de los siguientes registros:

/var/log/messages
/var/log/auth.log
/var/log/syslog
/var/log/mail.info
/var/log/dpkg.log
/var/log/apache2/error.log
/var/log/apache2/access.log

Si lo instalamos en modo cliente (agente) analizara:

/var/log/messages
/var/log/auth.log
/var/log/syslog
/var/log/mail.info
/var/log/dpkg.log

Para añadir algun otro registro se deben añadir al archivo /var/ossec/etc/ossec.conf como entradas del tipo localfile.

Para añadir agentes al servidor:

# /var/ossec/bin/manage_agents

Primero añadimos el nuevo agente, introduciendo el nombre, IP e ID, y seguidamente extraemos la clave que se genero en el agente, con la opcion e y respondiendo a la ID del cliente.
Ahora debemos importar la clave del servidor desde el cliente. Para ello ejecutamos manage_agents en la maquina cliente:

# /var/ossec/bin/manage_agents

Una vez terminada la instalacion, solamente nos queda iniciar OSSEC HIDS, primero en el servidor y despues en los clientes:

/var/ossec/bin/ossec-control start

Al iniciarlo (si lo hemos instalado como servidor) se inician los siguientes demonios:

ossec-maild
ossec-execd
ossec-analysisd
ossec-logcollector
ossec-remoted
ossec-syscheckd
ossec-monitord

Y en modo cliente:

ossec-execd
ossec-agentd
ossec-logcollector
ossec-syscheckd

Para detenerlo:

/var/ossec/bin/ossec-control stop

Ahora probamos que funciona correctamente, provocando una alerta, que por defecto ira a parar a /var/ossec/logs/alerts/, donde automaticamente se organizan por año, mes y un log cada dia.