Difference between revisions of "Network"
From BruCON 2016
(→General Terms and conditions regarding internet usage) |
(→BruCON CERT) |
||
Line 7: | Line 7: | ||
==BruCON CERT== | ==BruCON CERT== | ||
− | However, we have a CERT (Computer Emergency Response Team). If you suspect any illegal activity, you can contact us and we will take the necessary actions | + | However, we have a CERT (Computer Emergency Response Team). If you suspect any illegal activity, you can contact us and we will take the necessary actions to investigate the reported incident. |
Email: [mailto:cert@brucon.org cert at brucon dot org]<br> | Email: [mailto:cert@brucon.org cert at brucon dot org]<br> | ||
− | Telephone: +32 492 | + | Telephone: +32 492 84 31 57 |
== Network Facilities == | == Network Facilities == |
Revision as of 11:02, 8 September 2012
To update for 2012!
Contents
General Terms and conditions regarding Internet usage
Due to the new venue, we had to find a new sponsor for our Internet connectivity. This year, our bandwidth is provided by Mac Telecom. We are happy to provide a free Internet access for the BruCON visitors. Users of this Internet access agree to NOT use this connection for illegal or unethical activities. BruCON is kindly asking our visitors not to do anything that might jeopardise this event. BruCON vzw and it's members takes no responsibility regarding the illicit use of the network and Internet access.
BruCON CERT
However, we have a CERT (Computer Emergency Response Team). If you suspect any illegal activity, you can contact us and we will take the necessary actions to investigate the reported incident.
Email: cert at brucon dot org
Telephone: +32 492 84 31 57
Network Facilities
- Internet Access
- Wi-Fi - A wireless network will be available for free.
- Wired - Wired connectivity will be provided only for the press, speakers (presentations, lightning talks, workshops, ...) and the crew.
- Provided Services - IP addresses will be allocated via DHCP for visitors. Speakers who need a fixed IP address can contact the network crew.
- Connectivity Details
- SSID : brucon
- WPA pre-shared key: (on demand)
- IP range : Provided by DHCP
- Default GW : Provided by DHCP
- GW MAC Address : 28:c0:da:7e:83:00
- DNS : Provided by DHCP
- IPv6 Connectivity
How to Survive?
Attending a conference with a public network is not without security risks. You are often directly connected to the Internet. Consider it the Wild Wild West. Before coming to the event, please be sure to follow the following best practices:
General rules
- If possible bring a dedicated device to the conference with a fresh & limited set of softwares and data. Don't take a brand new one, it can be hit by flying objects, fall or flooded by beer.
- Don't bring confidential data with you.
- Do not carry business documents and keep your USB sticks away from other participants.
- If you bring your regular device, perform a full backup of your data and restore them after the conference
- Be sure to use fully-patched softwares
- Take care of physical security: put BIOS passwords, don't leave your devices unattended.
- Put labels on your hardware (if you'd like to remain anonymous, don't put your name but a unique detail like a sticker under the battery to make the device easily identifiable)
- Encrypt everything, always
- Encrypt your disks (TruCrypt)
- If you need to communicate over the wild Internet, use VPN or any other kind of tunneling like SSH tunnels.
- Avoid any unsecured protocols like POP3, IMAP, HTTP-auth, Instant Messenger, Twitter (cookies)
- Do not trust anybody! Even not secured web-sites.
- Don't log with administrative rights (Administrator, root, ...)
- Lock your sessions if you stand-by your device
- Be prepared for the worst case scenario, shit happens!
- Your batteries have a (too) limited life-time. Powercords will be deployed but we cannot cover the whole area. It's a good idea to take a powercord extender with you.
Microsoft OS
- Be sure to have an anti-virus running (with up-to-date signatures) and a firewall.
- Disable all unwanted services (Go to 'Start', 'System Settings', 'Services', 'Properties of service' then 'Stop').
- Useful references:
MacOS
- Disable all unwanted services (Go to 'System Preferences', 'Sharing', 'Services' and uncheck all the things you don't need).
- Protect your Keychain access (where all your password are stored). Start the Keychain utility (Go to 'Applications', 'Utilities' then 'Keychain Access'). Select the 'login' keychain from the sidebar and go to the menu 'Edit', 'Change Settings' for Keychain "login"'.
- Useful references:
Linux
- Disable unwanted service (Via a root shell, issue the command '/etc/init.d/$service' stop or '/usr/sbin/$service' stop )
- Protect your GRUB or LILO boot loader with a password
- Limit access to the console using /etc/securetty.
- Useful references:
PDA/iPhone
- Lock your iPhone automatically after an inactivity period.
- Disable Bluetooth discovery and services.
- Disable preview of SMS on your iPhone(which will be displayed even if locked).
- Useful references:
Do not ...
- deploy rogue Wi-Fi access point nor rogue servers (DHCP).
- use unencrypted protocols (once again I know...)
- perform suspicious activity like ARP spoofing, DoS or bruteforce attacks (non-exhaustive list!)
Privacy
- Please respect visitors privacy. Do not take picture without proper authorization of visitors faces, screen-shots nor papers
Emergencies
- In case of network outage or suspicious activity, please contact our CERT via e-mail or phone
- E-mail: [cert at brucon dot org]
- Phone: +32 492 88 63 84
- We do NOT provide support for personal problems. We're not your mother! ;-)
Network Status / Updates
- 12/09/2011 15:04 - Core router configured, network deployment scheduled on Saturday 17th.
- 16/09/2011 14:38 - Core router replaced due to a hardware problem. Link tested: 600Mbits/s. Ok.