On Thu, 2003-02-27 at 17:25, William Coulter wrote:
> I would love to attend and take notes on IDS with rootKit and everything else but I can't make it.
> Could some one take notes and/or post them to the SLUG. You could email me everything. Hey
> Derek, are you willing to post your full written presentation? Security is a big thing for me. I
> am always trying to learn about security.
I'd probably do something in OpenOffice's presentation thing and put it
somewhere people could get to it.
Although anyone who was there for my firewall presentation can probably
attest to the fact that security issues are not things that can be
easily explained with a slideshow. :)
Something though, since a lot of people are saying "I'd like to hear a
presentation on rootkits" - I am NOT particularly interested in talking
about exploits. I could briefly mention some of the different types
that are out there, but I'd rather focus on the actual IDS components
and how they work, setting them up, etc. It's a lot more interesting to
me than skript kiddie stuff, which is really what most exploits are
nowadays.
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
#!/usr/bin/perl -w
$_='while(read+STDIN,$_,2048){$a=29;$b=73;$c=142;$t=255;@t=map
{$_%16or$t^=$c^=($m=(11,10,116,100,11,122,20,100)[$_/16%8])&110;
$t^=(72,@z=(64,72,$a^=12*($_%16-2?0:$m&17)),$b^=$_%64?12:0,@z)
[$_%8]}(16..271);if((@a=unx"C*",$_)[20]&48){$h=5;$_=unxb24,join
"",@b=map{xB8,unxb8,chr($_^$a[--$h+84])}@ARGV;s/...$/1$&/;$d=
unxV,xb25,$_;$e=256|(ord$b[4])<<9|ord$b[3];$d=$d>>8^($f=$t&($d
>>12^$d>>4^$d^$d/8))<<17,$e=$e>>8^($t&($g=($q=$e>>14&7^$e)^$q*
8^$q<<6))<<9,$_=$t[$_]^(($h>>=8)+=$f+(~$g&$t))for@a[128..$#a]}
print+x"C*",@a}';s/x/pack+/g;eval
usage: qrpff 153 2 8 105 225 < /mnt/dvd/VOB_FILENAME \
| extract_mpeg2 | mpeg2dec -
http://www.cs.cmu.edu/~dst/DeCSS/Gallery/
http://www.eff.org/ http://www.anti-dmca.org/
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 15:55:55 EDT