Marie till RiksdagenThe trip went well down from Gothenburg to Malmö.
kugg is tonights conferencier here at Hacknight, and starts to nicely present the event.
Shedule is avaliable.
Welcome to Hacknight!
conference
...now browsing by tag
almedalen
Arwen
blackthrow
censur
conference
debatt
dld
flattr
fra
Föreläsning
ggm10
göteborg
hacknight
i2p
information
informationspolitik
integritet
Internet
internval
kampanj
Kandidering
kultur
kunskapssamhället
maloki
pirater
Piratpartiet
piratskutan
plugin
Riksdagen
riksdagskandidat
sammarbete
segling
svartkast
telecomix
turné
twitter
ung pirat
upphovsrätt
utfrågning
val2010
valturné
votering
värmland
wordpress
öppenhet
Arrived @ Hacknight #2
Saturday, June 19th, 2010Telecomix Conference ended
Thursday, June 17th, 2010It has been two amazing days. Even though I was late both days. I’ve enjoyed the lectures, the people and what I’ve learnt. This is definitely something I can see myself doing again, and I actually am when going to Hacknight #2 in Malmö.
Collection of lectures I attended:
Agent Felix Atari on Internt and AFK tunnels, I really liked the connection and similarities between tunnels on the internet and AFK/IRL/Meatspace. It was a really interesting lecture, and I felt that it expanded my mind a bit more.
Agent kugg on the security of pptp
Agent kugg and this subject really surprised me. I havt realized that when coming accross different protocolls you will need more than one proxy to become anonymous, but never really implemented it properly. I learnt alot and feel ready to go online in a more sneaky way.
Agent x on blackthrow, I missed most of this lecture, and Agent x wasn’t the original presenter which might have made the lecture a bit more confusing. I like the idea and thought behind the blackthrow, and I think that it can continue to become an interesting thing to work with. Especially in the educational way that chrisk described.
Agent jwalck on i2p, I missed some of this, since I was late today as well. I got a look into the interface of working with i2p which really made me less scared to go on and trying it myself. As I have been before. I’m pretty convinced that I will be putting up a i2p exitnod at my house very soon.
Agent endrazine on Zero Crypto, this lecture I was convinced would go right over my head with a woooosh sound. But it didn’t. I’m aware that my notes are messy, but he went at a quick rate which caused me to not have time to write down everything like I was supposed to. I might make it look better in a day or two when I’ve looked through the slideshow that was provided by him, through my blog.
Overall I’m really satisfied with this 0 cost 2 day conferense, and there is talk among the Telecomixers to put together a guide for how you can build one yourself.
Good luck and take care out there all hackerfriends!
Agent jwalck on I2P
Thursday, June 17th, 2010Start: 13:37
What: Setting up websites and running advanced services in the i2p-darknet. Agent Jaywalk will present how you may publish websites, blogs and other services without risking corporate or government repression.
Watch it: on bambuser
Sources and destination. It’s what you have in routing i2p.
If you work a server it’s as easy as running a server on vanilla internet. Except that it’s hidden
If its down its down if its up its up.
eepsites. experimental deepsites. Noone will know who uses the stuff on the sites.
Agent jwalck goes through how it looks when a i2p is set up.
On the default site you get all the information how to host the i2p and, how to regetser a domain and so forth.
The server setup is similar to the setup for the client.
Always backup the destination key. the information will be lost if you lose it. The domain-name will die.
I2p has started to increase lately and is up and coming again. Continued developments will be interesting.
Telecomix Conference Day 1 complete
Thursday, June 17th, 2010Today has been a long day. It has been educational and fun with awesome company. I couldn’t have expected better company today.
If you are interested you can read I’ve documented about the conference thus far.
After the lectures and talks we went out for beers and food. We had a really enjoyable evening and I’m glad I joined. Me and the delightful ponny left the guys in Slottskogen quite early, but were both satisfied with the day.
Unfortunately I missed the picnic with the Geek Girls here in Gothenburg, but I will have to join them another time.
For anyone in Gothenburg tomorrow you are welcome to It-university when we continue the Telecomix Conference with workshops at 09.37.
If my arms feel up to it, I will be bringing one of my servers to pimp and setup as something. I’m not completely convinced what to make of it yet. Ideas and advice will be most welcome in the comments below. TOR, i2p? Something else?
Don’t miss out on the Telecomix Microblogging system which is a decentralization and Open verison of Twitter.
Agent X on Blackthrow, Svartkast
Wednesday, June 16th, 2010Start: 16:37
What: Presentation of the svartkast technology
raccoon xor from the GHS munitions factory presents the svartkast technology and how to deploy cipherspace nodes in existing infrastructure. The svartkast can be used to create secure and completely decentralized (owner-free) channels of communication to be used in situations where freedom of speech is critical, and in situations where it is impossible to interact with the ordinary Internets without having a traceable origin. Example scenarios are during war-time, in regimes that throttle the Internet connectivity (Iran, China). Usage of svartkast, or similar technology, is however definitely not limited to these circumstances. Everyone has the right to communicate freely, without corporations and authorities surveilling our correspondence.
Damn smokes, missed most of the presentation.
The idea with the Blackthrow is to build a small computer that can be hidden inside government agencies or corporations. It connects to the TOR or I2P networks and publishes its SSH server as a hidden service in any of these networks.
It’s for an educational purpose. Building it will give you a learning experience about network and the technologies used.
It’s a proof of concept that it’s impossible to stop people to talk about whatever they want.
Agent kugg on the Security of PPTP
Wednesday, June 16th, 2010Start: 15:37
What: Agent Kugg talks about the security of PPTP
Many larger VPN companies use PPTP for securing their customers. Kugg will talk about PPTP and show some de-anonymisation weaknesses for different setups. These techniques are actually used by government and private agencies to identify individuals using VPN.
Watch it: On bambuser
Don’t miss Hacknight!
Poptop and misconfigurations
The misconfigurations cause you to be not as anonymous as you think you are.
What is a VPN service?
It’s a virtual private network. It creates a local interface on your
What is a proxy?
It’s a relay of a request.
Errors:
You need a proxy for every thing. FTP, Gopher, SOCKS host.
It can be easy to fuck up here. It is often used as a deanonymisation
Flash don’t care, about your proxy. It will work with your real IP.
WSword, if you have a link in or to a document, it will reveal your IP.
Quicktime as well.
These does not respect your proxy settings.
Check www.decloak.net for information about how you’ve failed in your protection.
Proxy-Authenticate, for TOR-nods and such. Gmail, has Flash objects to figure out your real IP.
Velcme to the virtual private network! Everyone in the virtual network are on the same network. Which is a problem. You are exposing your entire harddrive, domain and mac adress.
nbtscan -m .t2000 -qv -s/
When scanning the network we find alot of information about the connected machines. Through this search, ones a day, you can find patterns, and start following the information you get.
It’s bad that they will get exposed. The people who are not exposed are the ones who are not showed in the list, but they are still pointed out.
On Bittorrent Anti Piratbyrån is found to have used Ipv6 to detect your real IP.
-
PPTP Creates VPNetworks
If Clients are not seperate they will expose each other
IPv6 and pptp don’t match turn ipv6 off?
Ms windows firewalls are stupid
The known authentication mechanisms for pptp authentication are to weak. (EAP-TLS works if there are a public key exhange)
Web browsers are dangers and hard to harden
Endusers needs help!
We need to detect flaws and expose them, and fix them. Make up new services.
Try and support OpenVPN
Teach SSH and share
Never leave a darknet
These are good systems, they just need to grow and be nurished and formed into something better.
Don’t miss Hacknight!
Agent Felix Atari on Internet and AFK Tunnels
Wednesday, June 16th, 2010Start: 14:37
What: Agent Felix Atari talks about the Internet and AFK tunnels
The act of tunneling has gone through a socio-political change in recent years. It is no longer associated with closed groups, sect-like behavious and hiding away from the mainstream. This talk will argue that developing tunneling technology is the very prerequisite for remaining open at the surface and feature an exposé from dark nets to sunny mexican pirate markets.
Watch it: On bambuser
Since I was late I missed some of the presentation, and I will write what I caught.
Agent Felix Atari made an interesting analogy about the layers of communications in a way of layers in the jungle. It’s not just a plain surface.
Tunnels can only be closed off at the entrances, but the tunnels are still there and the information within the tunnel is still safe.
A problem with tunnels is that the laws can’t stop what goes through them. The communication, may it be of product or just normal communication, will find a way anyway. It undermines this binary power of borders.
The border between Mexico and US is made as an example.
No matter if you have a border or not, there is a slow degredation. The borders will move. Even if they have to go into the ground.
Surveilance wont stop or fully control. It will only make it slower, but never stop the process completely since the information always can go through tunnels.
Ciphersspace is just as cyberspace, but a little slower.
Discussion:
There are tunnels who are ever ending, and with no entrances.
Examples of being cut off from earth, in tunnels making a living in there.
Have you studied the similarities between the i2p tunnels and physical tunnels? With enough force you can destroy physical tunnels, and you should be able to with i2p as well?
Tunnels are temporary, they are built, and moved and rebuilt and so on. You can fortify them, if they are used for a longer time. Within filesharing you move a tunnel to somewhere else when a vonerability is found.
The information that is submitted through tunnels are usually short messages, which makes tunnels work even though they are slow.
Cipherspare sites have different esteics since they are slower, and need to be able to go through easier. It’s going back to web 1.0.
Could the tunnels be exploited? At the mexican us border, where mexican put up sweatshops near the border in mexico. So people move closer to the border to get the jobs and pay. The transportation from mexico to the US gets deminished. IS there anything similar going on in i2p?
Tunnels attrackt all different kind of activity. Look at the mexican border, drugs, and so forth. Tunnels often operate in intense zones.
Yes tunnels can be exploited.
If you want to spread something, you could create a buzz in the tunnels that there’s a leak, and have it spread back to the surface.
Erupted in a discussion about urination and bushes. Remove places where people can pee, and then “stake out” the areas where you have to go to pee, and catch you in the act.
Leaks and infiltration is a way to get out information from hidden tunnels, It can be tunnels in the government communication or other hidden. There are tunnels everywhere.
Försenad till Telecomix Conference
Wednesday, June 16th, 2010Jag var försenad hit, så det kan gå. Men nu är jag här och det kommer bli två mycket intressanta dagar med föreläsningar och aktiviteter/workshops.
Ser många härliga personer här redan nu. För att nämna några:
Isak Gerson, Jimmy ‘HerrKanin’ Callin, Christopher ‘chrisk’ Kullenberg, Rikard ‘razor’ Fröberg, Göran Widham, Mikael Jämtsved och Magnus ‘monki’ Eriksson, som just nu föreläser.
Uppdateringar kommer fortlöpa under dagen.
