SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Research Skip Research Menus Research Menu Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List RE: Cature the flag (was Re: Selinux kernel patches) This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ Maybe in reply to ] [ Next in thread ] From: Ellis, Wes <wes.ellis_at_aremissoft.com> Date: Fri, 9 Feb 2001 10:54:10 -0600 Then this is another vulnerability, and would need to be addressed, a machine is not just itself, but any other machines attached to it, and this is most often were I have personally found weaknesses in audits. -----Original Message----- From: paul [mailto:paul@bladestorm.com] Sent: Friday, February 09, 2001 9:18 AM To: selinux@tycho.nsa.gov; Sandy Harris Subject: Re: Cature the flag (was Re: Selinux kernel patches) So what happens when the hackers attack the machines logging packets? Or what if they just decide to take down the router? Original Message ---------------------------------- From: Sandy Harris <sandy@storm.ca> Date: Thu, 08 Feb 2001 21:32:11 -0500 >Dale Amon wrote: >> >> On Tue, Feb 06, 2001 at 03:28:44PM -0500, Pete Loscocco wrote: >> > We think that we have a good architecture and that it warrants >> > consideration. ... >> >> Just a wild suggestion. When things are well along and >> everyone thinks the system is ready, why not put a box >> out on a public network for a game of "capture the flag"? > >The annual Defcon conference (http://www.defcon.org/) has run such >a contest, on a LAN at the conference, for several years now. Some >firewall vendors bring machines for use as targets. > >> Offer a free T-shirt "I cracked the NSA" to anyone who >> succeeds and* tells precisely how it was done. Set up* >> tests for system cracks both from fully external or from >> various shell access levels. > >In addition to attackers' machines and target machiness, they have >other machines doing packet logging so attacks can be analysed >later. > >A web search on "defcon capture the flag" will turn up the rules, >last year's logs and some discussion. > >-- >You have received this message because you are subscribed to the selinux list. >If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with >the words "unsubscribe selinux" without quotes as the message. > -- You have received this message because you are subscribed to the selinux list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. -- You have received this message because you are subscribed to the selinux list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Fri 9 Feb 2001 - 12:05:41 EST This message: [ Message body ] Next message: Ellis, Wes: "FW: Cature the flag (was Re: Selinux kernel patches)" Previous message: Daniel Harrison: "Re: Cature the flag (was Re: Selinux kernel patches)" Maybe in reply to: Sandy Harris: "Cature the flag (was Re: Selinux kernel patches)" Next in thread: Ellis, Wes: "FW: Cature the flag (was Re: Selinux kernel patches)" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom