Listener Feedback02

From Security Weekly Wiki
Jump to navigationJump to search

Listener Feedback Episode 2 draft

windows not best platform for security-


adrian crenshaw(irongeek) sez: haxxor, nmap video http://www.haxxxor.com/clips/vol2/

seth fogee (airscanner.com) nikon coolpix p1 software- wireless to printer? PHEW

raoul syles: sans pen testing sponsored by core- good, but biased?

david (from UK?)- steve gibson https password generator 64 char

dano (HI)remote management solutions: need secure remote man ->windows host with gui: 1. www.radmin.com aes 256 bit encryption secure 2. VNC paid version (tunnel realvnc) 3. RDP; not by default though (vulnerable to MIM attack)

john lowry: fuzzy hashing -> yes same as on cyberspeak..... ssdeep

tadaka- defensive tools for macs; HIDS for OSX; ->defaults blows goats

Certs, what do you have, whats the recommendations? -> cisco certs ccna, sans security essentials, CISP (through sans- requires field experience)

offsite security- encryption only for admin rights, can we do just password -> sudo for windows

hamachi- can u trust it? -> only the key exchange goes through them. relies on closed source encryption (phewski)

Questions about sans? call or email them. Super fast response

irongeek sez: canvas is hot

nepathies.org

twitchy matrix theme- thumbs up

wireless forensic product- wirecapture.net

raoul- some wirelessresources.net link

joe- bandwidth shaping to replace ISA. symphonix.com network composer