Episode138

From Security Weekly Wiki
Revision as of 17:51, 30 January 2009 by Larry (talk | contribs)
Jump to navigationJump to search

Sponsors

  • Tenable Network Security - This episode sponsored by Tenable network security. Tenable is a developer of enterprise vulnerability, compliance and log management software, but most notably the creators of Nessus, the worlds best vulnerability scanner. Tenable Security Center software extends the power of Nessus through reporting, remediation workflow, IDS event correlation and much more. Tenable also offers a Nessus Professional Feed to detect vulnerabilities in your network today! Tenable – Unified Security Monitoring!
  • Core Security - This episode is also sponsored by Core Security Technologies, helping you penetrate your network. Now version 10.0 with WiFi-fu good to go! Rock out with your 'sploit out! Listen to this podcast and qualify to receive a 10% discount on Core Impact, the worlds best penetration testing tool.
  • Trustwave Spiderlabs - Trustwave's SpiderLabs - providing advanced information security services to planet Earth. Visit them online at trustwave.com/spiderlabs!


Announcements & Shameless Plugs

Welcome to PaulDotCom Security Weekly, Episode 138 for January 29th, 2009. A show for security professionals and by security professionals who have way too much access to beer. and computers. and maltego.


Tech segment: How to safely land an airplane in a river

Stories For Discussion

Social Engineering To Become A Police Officer

0wned By Compliance - [PaulDotCom] - Anton goes through some seemingly realistic scenarios as to why/how a merchant can be 0wned, even if PCI compliant. Yes, PCI still has merit as a "Standard", but this does not mean they are secure. I think this is where people go wrong, PCI, in my opinion, just proves that you are doing some stuff in the name of security. This is important when companies want to work together, they can ask, "Are you PCI compliant" and have some sense that they are implementing security. Or are they? Anton points out it depends on who is doing the audit, anyone can walk in and ask "Do you have a firewall?", answer: "yes". Reminds me of a story about a firewall with two holes in it, through which an Ethernet cable was being passed, therefore all traffic was "going through the firewall".

PADJACK, really? - [PaulDotCom] - I hate to rip on companies. I believe in hard work and a free market, and I like to think that in every company there are honest people working their butts off. However, I'm going to go out on a limb here and say, wow this is stupid. My bet, Larry can bypass this in about 5 seconds and gain access to the port. This is just the wrong way to approach the problem. A piece of plastic is not going to stop an attacker, it may slow them down for a few seconds, but does not provide enough security to make it worth while.

Dradis v2 - Larry - Dradis is a tool (linux) used for sharing information across multiple folks on a pen test. Looks pretty cool, and I'm going to check it out. We've talked about using a wiki for this in the past, but it can easily get overwhelmed with disorganized information. Dradis features a nice hierarchical structure that may work for some people..

Zombies ahead! - [Larry] - Nice job to the i-hacked guys. Beware, Zombies! They illustrated how to change the output on those traffic signs on the side of the road, which was incredibly easy to change (go figure, they need to be usable by a diversely educated crowd). I find it amusing that now Texas (and allegedly the country) are "scrambling" to secure these devices. Looks like in the past the default passwords were left, slightly changed, or written inside the boxes. Texas DOT claims the boxes were locked, but how many of us think that it is true? How easily are padlocks bypassed? I think what this really boils down to is the total commitment to apathy on security in other fields...if they didn't want this stuff messed with, you should take steps to make it "un-messable".

Youtube and Geotagging - [Larry] - I had the pleasure of chatting with Mark about this one. Mark's been doing some research with google and youtube and the geotagging of the videos. It seems pretty random where the geotageed data comes from, but we're both betting that some folks know how it got there. Marks method is great for taking the youtube ID and tracking it to a location. Mark thinks he might know where a few internet celebrities live. Hello Obama girl!

Damn Vulnerable Linux 1.5 is out! - [Larry] - DVL is a great way to put a system in your lab that you can test against. It has plenty of holes so you're almost guaranteed a successful compromise.

Don't forget the internal threat - [Larry] - This sounds like an almost disastrous situation that was avoided by Fannie Mae. Someone *ahem* needs to look at their employee termination practices, especially with folks that have elevated rights...