Very interested.. would it incorporate some general
security info also .. ie anything usefull to know to
be able to understand the LKM rootkit intrusions?
Thanks
--- Derek Glidden <dglidden@illusionary.com> wrote:
>
> Ok, I have a couple responses that people would be
> interested in seeing
> a presentation on IDS systems like Snort and
> Integrit.
>
> Anyone else?
>
> I'd like to know it'll be well-received before I put
> too much effort
> into it. It will almost certainly be at a Tampa
> meeting, since those
> are the easiest for me to get to. If there's enough
> interest, and no
> schedule conflicts (i.e. something else is already
> scheduled), I could
> probably have something ready by the March meeting.
>
> --
>
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> #!/usr/bin/perl -w
>
$_='while(read+STDIN,$_,2048){$a=29;$b=73;$c=142;$t=255;@t=map
>
{$_%16or$t^=$c^=($m=(11,10,116,100,11,122,20,100)[$_/16%8])&110;
>
$t^=(72,@z=(64,72,$a^=12*($_%16-2?0:$m&17)),$b^=$_%64?12:0,@z)
>
[$_%8]}(16..271);if((@a=unx"C*",$_)[20]&48){$h=5;$_=unxb24,join
>
"",@b=map{xB8,unxb8,chr($_^$a[--$h+84])}@ARGV;s/...$/1$&/;$d=
>
unxV,xb25,$_;$e=256|(ord$b[4])<<9|ord$b[3];$d=$d>>8^($f=$t&($d
>
>>12^$d>>4^$d^$d/8))<<17,$e=$e>>8^($t&($g=($q=$e>>14&7^$e)^$q*
>
8^$q<<6))<<9,$_=$t[$_]^(($h>>=8)+=$f+(~$g&$t))for@a[128..$#a]}
> print+x"C*",@a}';s/x/pack+/g;eval
>
> usage: qrpff 153 2 8 105 225 < /mnt/dvd/VOB_FILENAME
> \
> | extract_mpeg2 | mpeg2dec -
>
> http://www.cs.cmu.edu/~dst/DeCSS/Gallery/
> http://www.eff.org/
> http://www.anti-dmca.org/
>
__________________________________________________
Do you Yahoo!?
Yahoo! Tax Center - forms, calculators, tips, more
http://taxes.yahoo.com/
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 15:54:42 EDT