Hi,
It would be a pleasure meeting folks on this mailing list, including

OBSD developers' at BH or DefCon. Thanks.
It is generally said that the BH or DefCon wireless network is

"hostile", and sane individuals must not use their laptop for the risk

of being compromised. My question is: if I use OpenBSD -current, with

not much additional configuration (apart from the Intel wifi

firmware), will the connection be reasonable secure? (Not sure if this

hostility is a publicity stunt). Thanks again.
-Amarendra

Get a laptop with an Alpha chip and run OpenVMS :-)
Also, don't worry about BH. That is the one for types who need to burn

company or federal money set aside for training. Mostly just a bunch of

clueless douchebags with goatees and vendor schwag.
Randy

On Thu, Jun 26, 2008 at 12:07 PM, Amarendra Godbole <
I look at "Intel firmware", and i go "oh." "BLOB." ;)
-jf
--

In the meantime, here is your PSA:

"It's so hard to write a graphics driver that open-sourcing it would not

help."

-- Andrew Fear, Software Product Manager, NVIDIA Corporation

http://kerneltrap.org/node/7228

The great majority of OpenBSD developers are from outside the United

States, and I would guess that most of us prefer not to visit the US now

thanks to the murderous foreign policy, authoritarian domestic

surveillance, and invasive border control. You'll find few of us there.
Personally I've been refusing invitations to go to, or even transit
While in general the Internet is a pretty hostile place, you probably

need to worry about local network attacks (sniffing, man-in-the-middle)

more than usual.
Don't trust DNS, and tunnel tunnel your outgoing connections out through

ssh or ipsec (look at the -D flag to ssh, and make sure that your

browser uses the socks proxy for DNS lookups as well)
This advice applies equally to any time you're on an untrusted network

(Internet cafe, Open wirless access point, etc)

On Thu, Jun 26, 2008 at 12:07 AM, Amarendra Godbole
I'd also recommend that you take a laptop that contains nothing you

care about.  Since if you do get hacked you won't lose anything of

value.  I believe even Defcon's website recommends you bring a freshly

installed computer to save you from the hassle of losing things.
Certainly make backup's before you go. :)
--

# Curt Micol

And make sure you have the fingerprint etc of every host you want to

connect to already on the laptop.

That way you will be warned in case of MITM attacks.
And I would generate ssh keypairs specially for the event and remove

them once you get home or leave there.
-- 
Michiel van Baak

michiel@vanbaak.eu

http://michiel.vanbaak.eu

GnuPG key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x71C946BD
"Why is it drug addicts and computer aficionados are both called users?"

Just try ;-)
Better will be use -stable with block in all in pf.

Everything is about your settings and wants.

OBSD has good chance,that attacker will better leave.
-----Original Message-----

From: owner-misc@openbsd.org [mailto:owner-misc@openbsd.org] On Behalf Of

Amarendra Godbole

Sent: Thursday, June 26, 2008 6:07 AM

To: OpenBSD general usage list

Subject: Anyone from this list at BlackHat or DefCon? And a query...
Hi,
It would be a pleasure meeting folks on this mailing list, including

OBSD developers' at BH or DefCon. Thanks.
It is generally said that the BH or DefCon wireless network is

"hostile", and sane individuals must not use their laptop for the risk

of being compromised. My question is: if I use OpenBSD -current, with

not much additional configuration (apart from the Intel wifi

firmware), will the connection be reasonable secure? (Not sure if this

hostility is a publicity stunt). Thanks again.
-Amarendra