Hi, Will this ManilaCon be anything like the hacker's convention that is held in UK? CA & MySecureSign may not really have a very nice disposition regarding hackers (regardless of type, white hat, black hat ,etc). What about ISSSP & ITFP, what are their dispositions?
I'm kind of lost here, How does one harden a server to be able to stand-up to attacks initiated by the one's who created the server software in the first place? Wouldn't it be a piece of cake to bypass what ever setup that will be chosen ? Guys ( & Gals), Let's not be blinded by the potential prize gained by being able to complete this challenge.... Let us think, who sponsored this event? What would happen if PLUG failed? What will happen then to the budding FS/OSS support in the Philippines? This may very well be a trap! Coz the way I see it either way (PLUG succeed of fail ) they(CA, etc.) win....... Their having us fight against each other..... This is only my opinion regarding this matter, I'm not saying that you should or should not, I'm just hoping that you gave this enough serious thought & consideration........ ----------------------------------------- It's supposed to be fun, not an obsession ------ Ian Wrote ------- PLUG People/Penguins! This is a call for volunteers. PLUG has been requested to field volunteers to defend the Linux boxes they will deploy in the ManilaCon Hackers convention in May. (details on http://www.isssp.org.ph) We will be given 3 days to bring online a hardened server with a specifically chosen set of services to offer. Come convention time hackers of all types of 'hats' will do what they can to compromise the Linux server. Note that PLUG will be responsible for the Linux box, and Microsoft will be responsible for NT/2K, and there will also be entries for a Sun/Solaris box, and a MAC. Our job is to make sure that the box is impregnable, impenetrable, and also _useful_. It doesn't count if we disconnect it from the net, power it down, dismantle it and bury it under several layers of bedrock, concrete and solid steel. So what is this actually? It's a chance to practice what we preach. All the stuff we publicly advocate will be put to use against very potent adversaries. It's a chance to publicly defend Linux against a hacker community which some dread, or maybe even fear. This is as much in the public eye as it will ever be. This is where the FUD against open source being insecure due to its very 'openness' will finally be proven or disproven. It's a chance to put our own knowledge in securing linux up against the best and latest hacking tools used by them 'kiddies'. Best of all it's a very good learning experience for all those who will volunteer. So if you think you have enough skills to make the team PenguiGnus. drop me a line publicly or privately. We're forming the PLUG Dream Team. Ian _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
