gmane.linux.redhat.fedora.security

Breakpoint 2012 Call For Papers

2012-05-10T11:48:16

. ______________________________________
._\\. Breakpoint 2012 (___.
: Intercontinental Rialto :
: Melbourne, Australia :
: October 17th-18th :
:__ . ___:
)____________________________________\\
.
www.ruxconbreakpoint.com
www.twitter.com/ruxconbpx

Introduction
------------

Breakpoint is a new security conference to be held on the 17th and 18th of
October, in Melbourne Australia. The event will show case the work of expert
security researchers from around the world on a wide range of topics.
Breakpoint is organised by the Ruxcon conference team and will offer a
specialised and more professional security conference to complement and lead
into the larger and more casual Ruxcon weekend conference. Breakpoint will
cater towards security researchers and industry professionals alike, with a
focus on cutting edge security research.

With just one day separating both conferences, Breakpoint presents a great
opportunity for our selected speakers to receive a complimentary trip to
Australia and experience both the Breakpoint and Ruxcon conferences, not to
mention the great weather, awesome parties, and friendly people.

Melbourne is Australia's cultural capital, with Victorian-era architecture,
extensive shopping, museums, galleries, theatres, and large parks and gardens.
It is a city of many subcultures, personalities and styles, and it is these
layers that make it so interesting. Melbourne has a vibrant arts and music
scene, eccentric cafes, cobbled lane-ways, quirky shops, intimate bars and
restaurants, and is known as one of the world's great streetart capitals.

Important Dates
---------------

* May 10 Call For Presentations Open
* July 30 Call For Presentations Close
* October 15-16 BreakPoint Training
* October 17-18 BreakPoint Conference
* October 20-21 Ruxcon Conference

Topic Scope
-----------

Topics of interest include, but are not limited to:

o Mobile Device Security
o Exploitation Techniques
o Reverse Engineering
o Vulnerability Discovery
o Rootkit Development
o Malware Analysis
o Code Analysis
o Virtualization, Hypervisor Security
o Cloud Security
o Embedded Device Security
o Hardware Security
o Telecommunications Security
o Wireless Network Security
o Web Application Security
o Law Enforcement Activities
o Forensics
o Threat Intelligence
o You get the idea

Submission Guidelines
---------------------

In order for us to process your submission we will require the following
information:

1. Presentation title
2. Detailed summary of your presentation material
3. Name/Nickname
4. Mobile phone number
5. Brief personal biography
6. Description of any demonstrations involved in the presentation
7. Information on where the presentation material has or will be presented
before Breakpoint

* Preference will be given to presentations that contain original research
that will be first presented at Breakpoint.
* As a general guideline, BreakPoint presentations are between
45 and 60 minutes, including question time.

If you have any enquiries about submissions, or would like to make a
submission, please send an email to bpx-yJMC+TwIlFBgg+z3Qi7H4VaTQe2KTcn/< at >public.gmane.org

Speaker Benefits
----------------

Speakers at BreakPoint will be entitled to the following benefits:

- A round trip economy airfare to Melbourne (total cost limit applies)
- Three nights accommodation at the Intercontinental Rialto
- Complementary registration for Breakpoint and Ruxcon conferences
- Invitation to all BreakPoint and Ruxcon parties
- Unlock 'Presented on world's smallest continent' achievement

* All speaker benefits apply to a single speaker per submission.

Contact
-------

If you have any questions or queries, contact us at:

* Email: bpx-yJMC+TwIlFBgg+z3Qi7H4VaTQe2KTcn/< at >public.gmane.org
* Twitter < at >ruxconbpx
--
security mailing list
security< at >lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/security

Ruxcon 2012 Call For Papers

2012-04-19T05:04:06

Ruxcon 2012 Call For Papers

The Ruxcon team is pleased to announce the call for papers for the 2012 annual Ruxcon conference.

This year the conference will take place over the weekend of 20th and 21st of October at the CQ Function Centre, Melbourne, Australia.

The deadline for submissions is the 15th of July.

* What is Ruxcon?

Ruxcon is the premier technical computer security conference in the Australia. The conference aims to bring together the individual talents of the best and brightest security folk in the region, through live presentations, activities and demonstrations.

The conference is held over two days in a relaxed atmosphere, allowing attendees to enjoy themselves whilst networking within the community and expanding their knowledge of security.

Live presentations and activities will cover a full range of defensive and offensive security topics, varying from previously unpublished research to required reading for the security community.

For more information, please visit http://www.ruxcon.org.au

* Presentation Information

Presentations are set to run for 40 to 50 minutes, and will be of a formal nature, with slides and a speech.

* Topics

Topics of interest include, but are not limited to:

o Mobile Device Security
o Virtualization, Hypervisor, and Cloud Security
o Malware Analysis
o Reverse Engineering
o Exploitation Techniques
o Rootkit Development
o Code Analysis
o Forensics and Anti-Forensics
o Embedded Device Security
o Web Application Security
o Network Traffic Analysis
o Wireless Network Security
o Cryptography and Cryptanalysis
o Social Engineering
o Law Enforcement Activities
o Telecommunications Security (SS7, 3G/4G, GSM, VOIP, etc)

* Submissions

Submissions should thoroughly outline your desired presentation subject.

If you have any enquiries about submissions, or would like to make a submission, please send an e-mail to presentations< at >ruxcon.org.au

The deadline for submissions is the 15th of July.

If approved we will additionally require:

i. A brief personal biography (between 2-5 paragraphs in length).
ii. A description on your presentation (between 2-5 paragraphs in length).

* Contacts

Email: presentations< at >ruxcon.org.au
Twitter: ruxcon
--
security mailing list
security< at >lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/security

Upgrade Unhide package

Yago Jesus — 2012-03-10T02:58:38

Hi,

I don't know if this is the correct mail list so if I make a mistake,
please accept my apologizes.

I'm the author of Unhide http://www.unhide-forensics.info and I have
noted that Unhide package from Fedora is outdated. I think you should
upgrade the package because the new releases of Unhide improves the
tool and fixes some bugs.

Thanks
--
security mailing list
security< at >lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/security

Self introduction

Christopher Meng — 2012-03-03T00:13:31

Hi everyone,I just join this list in order to help improving the security team.

thank you very much for the excellent Fedora

2011-12-19T13:31:44

Good morning,
thank you very much for the excellent Fedora.
I worry about safety, surf the Internet without antivitus.
Is it possible to configure the system or boot partition for the linux
read-only?
Thus, placing the system in a partition of the data reading and a read /
write the system is not corrupt.

Greetings and thank you very much.

Roberto


--
security mailing list
security< at >lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/security

Review Request: python-pyflag - Forensic and Log Analysis GUI

soumya chakraborty — 2011-11-24T21:07:33

Hi

Please review the package request for
Pyflag<http://www.pyflag.net/cgi-bin/moin.cgi>.
This is in the packaging wishlist for Fedora Security Spin. The only
problem I found with packaging this tool was a no show from upstream. After
sending mails and pinging them in #irc didn't help to get a single
response. The package which is build has a "Incorrect fsf address" error
which cannot be removed by me and can be only be sorted out by the upstream.

Please review the package and let me know the suggestions The Bugzilla link
is here <https://bugzilla.redhat.com/show_bug.cgi?id=756856> .

Thanks,
---------------------------------------
Soumya Kanti Chakraborty
--
security mailing list
security< at >lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/security

Ruxcon 2011 Final Call For Papers

2011-08-15T10:53:07

Ruxcon 2011 Final Call For Papers

The Ruxcon team is pleased to announce the final call for papers for the seventh annual Ruxcon conference.

This year the conference will take place over the weekend of 19th and 20th of November at the CQ Function Centre, Melbourne, Australia.

The deadline for submissions is the 15th of October.

* What is Ruxcon?

Ruxcon is the premier technical computer security conference in the Australia-Pacific region. The conference aims to bring together the individual talents of the best and brightest security folk in the region, through live presentations, activities and demonstrations.

The conference is held over two days in a relaxed atmosphere, allowing attendees to enjoy themselves whilst networking within the community and expanding their knowledge of security.

Live presentations and activities will cover a full range of defensive and offensive security topics, varying from previously unpublished research to required reading for the security community.

For more information, please visit http://www.ruxcon.org.au

* Presentation Information

Presentations are set to run for 50 minutes, and will be of a formal nature, with slides and a speech.

* Presentation Submissions

Ruxcon would like to invite people who are interested in security to submit a presentation.

Topics of interest include, but are not limited to:

Submissions should thoroughly outline your desired presentation subject.

If you have any enquiries about submissions, or would like to make a submission, please send an e-mail to presentations () ruxcon org au

The deadline for submissions is the 15th of October.

If approved we will additionally require:

i. A brief personal biography (between 2-5 paragraphs in length).
ii. A description on your presentation (between 2-5 paragraphs in length).

* Contact Details

Presentation Submissions: presentations () ruxcon org au

Ruxcon 2011 Final Call For Papers

2011-08-15T10:53:07

Ruxcon 2011 Final Call For Papers

The Ruxcon team is pleased to announce the final call for papers for the seventh annual Ruxcon conference.

This year the conference will take place over the weekend of 19th and 20th of November at the CQ Function Centre, Melbourne, Australia.

The deadline for submissions is the 15th of October.

* What is Ruxcon?

The conference is held over two days in a relaxed atmosphere, allowing attendees to enjoy themselves whilst networking within the community and expanding their knowledge of security.

Live presentations and activities will cover a full range of defensive and offensive security topics, varying from previously unpublished research to required reading for the security community.

For more information, please visit http://www.ruxcon.org.au

* Presentation Information

Presentations are set to run for 50 minutes, and will be of a formal nature, with slides and a speech.

* Presentation Submissions

Ruxcon would like to invite people who are interested in security to submit a presentation.

Topics of interest include, but are not limited to:

Submissions should thoroughly outline your desired presentation subject.

If you have any enquiries about submissions, or would like to make a submission, please send an e-mail to presentations () ruxcon org au

The deadline for submissions is the 15th of October.

If approved we will additionally require:

i. A brief personal biography (between 2-5 paragraphs in length).
ii. A description on your presentation (between 2-5 paragraphs in length).

* Contact Details

Presentation Submissions: presentations () ruxcon org au

Fedora Security URL full Path!

Jan Muhammad — 2011-08-03T17:25:15

Hi Group,

In configuring my Patch Management System-- Pakiti (http://pakiti.sourceforge.net/), I need to specify the URL for Fedora based OS. 

What would be the URL to put the full path to the file which contains the list of packages
provided by the repository?
For example the Scientific Linux has URL to full path:
http://linuxsoft.cern.ch/cern/slc54/x86_64/yum/os/repodata/primary.xml.gz


Also the Debian based systems working with following details:

Repository Name: Debian 5.x main
Select architecture: x86_64
URL:
http://security.ubuntu.com/ubuntu/dists/karmic-security/main/binary-amd64/Packages.gz
Tick contains security updates
Select OS group: Debian 5.x

Thanks in advance for help!

Regards

-Jan

one numpty later

Tim Thomas — 2011-06-20T20:37:23

Hi again, I realised just after I sent the last mail and went in to disable
the wife's acct, her acct was set 'yes' to auto log on. Is this causing the
problem when I am logged in? (mine set to no) I have disabled her auto log
on for now.

T

Fedora 15 Multi user machine log in security bug

Tim Thomas — 2011-06-20T20:35:10

Hi,

I think there is a bug with the user set up in Fedora 15. I have just
introduced my wife as a second, basic user. Now, when she is logged off, I
am logged on, I put the machine in suspend mode then wake it up, it crashes
on wake up. I power down, power up and it puts me straight to her desktop,
no log in, nothing. I have to log her out, and log back in as me.
Also, if I log out from normal use, shut down and then reboot, the same
thing happens.

To me this suggests somewhere in the code for the user accounts we have a
problem? Or is there a real simple fix?

I am running the 64 bit core Fedora 15, with just two users.and few if any
updates.

I'm brand new to this list, and also relatively new to Linux (3 months - a
real baby compared to the original old hands!) so if you need a stack trace
or something to read off what is happening, please could you give clear
instructions as to how to run it?

Thank you very much for your help
Kind Regards,
Tim

Hardening Fedora

2011-05-23T23:01:24


Hello all,

Is there a hardening Fedora guide that is kept
current?  I did a quick Google search but only found some information
for FC2 & 3.

If not, is there any interest in having
one?

---
Will Y.

Default Fedora installation suffers from egregious configuration flaw

dirk cummings — 2011-05-19T00:35:38

On a default install of Fedora 14, and also the latest release candidate for 15, the user is presented with:

An iptables rule that opens port 22 to the worldsshd service automatically startedsshd_config with default option: PermitRootLogin yes
It's like every new install comes with the keys to the castle hanging on outside of the door for anyone who comes knocking.

I find this situation a serious oversight in light of the fact that Fedora obviously values security (like selinux, or how the installer forces a minimum password length, etc)

Any experienced linux user will know to check iptables and disable unnecessary services, but I wouldn't expect this from a new linux user (exactly the people the refreshed GNOME experience is supposed to attract).  I think the default configuration should be in the name of security, and sshd should not be listening on a default port with an open rule with root login enabled.

~Team Edward~

Ruxcon 2011 Call For Papers

2011-05-17T06:37:08

Ruxcon 2011 Call For Papers

The Ruxcon team is pleased to announce the call for papers for the seventh annual Ruxcon conference.

This year the conference will take place over the weekend of 19th and 20th of November at the CQ Function Centre, Melbourne, Australia.

The deadline for submissions is the 30th of July.

* What is Ruxcon?

The conference is held over two days in a relaxed atmosphere, allowing attendees to enjoy themselves whilst networking within the community and expanding their knowledge of security.

Live presentations and activities will cover a full range of defensive and offensive security topics, varying from previously unpublished research to required reading for the security community.

For more information, please visit http://www.ruxcon.org.au

* Presentation Information

Presentations are set to run for 50 minutes, and will be of a formal nature, with slides and a speech.

* Presentation Submissions

Ruxcon would like to invite people who are interested in security to submit a presentation.

Topics of interest include, but are not limited to:

Submissions should thoroughly outline your desired presentation subject.

If you have any enquiries about submissions, or would like to make a submission, please send an e-mail to presentations () ruxcon org au

The deadline for submissions is the 30th of July.

If approved we will additionally require:

i. A brief personal biography (between 2-5 paragraphs in length).
ii. A description on your presentation (between 2-5 paragraphs in length).

* Contact Details

Presentation Submissions: presentations () ruxcon org au

Ruxcon 2011 Call For Papers

2011-05-17T06:37:08

Ruxcon 2011 Call For Papers

The Ruxcon team is pleased to announce the call for papers for the seventh annual Ruxcon conference.

This year the conference will take place over the weekend of 19th and 20th of November at the CQ Function Centre, Melbourne, Australia.

The deadline for submissions is the 30th of July.

* What is Ruxcon?

The conference is held over two days in a relaxed atmosphere, allowing attendees to enjoy themselves whilst networking within the community and expanding their knowledge of security.

Live presentations and activities will cover a full range of defensive and offensive security topics, varying from previously unpublished research to required reading for the security community.

For more information, please visit http://www.ruxcon.org.au

* Presentation Information

Presentations are set to run for 50 minutes, and will be of a formal nature, with slides and a speech.

* Presentation Submissions

Ruxcon would like to invite people who are interested in security to submit a presentation.

Topics of interest include, but are not limited to:

Submissions should thoroughly outline your desired presentation subject.

If you have any enquiries about submissions, or would like to make a submission, please send an e-mail to presentations () ruxcon org au

The deadline for submissions is the 30th of July.

If approved we will additionally require:

i. A brief personal biography (between 2-5 paragraphs in length).
ii. A description on your presentation (between 2-5 paragraphs in length).

* Contact Details

Presentation Submissions: presentations () ruxcon org au

spam and fedorahosted

Casper — 2011-04-30T11:44:30

Hello,
this morning I received a spam so troubling :


A spam speaking about Fedora ?!?
Why I think it's a spam ? Because the response adress towards yahoo
How spammer recovered my adress ?
Maybe it's a security failure of the infrastucture...
Please help me

Security Tracking Bugs

Christian Krause — 2011-03-15T21:29:11

Hi,

In the CVE bugs the following wiki page is referred:

https://fedoraproject.org/wiki/Security/TrackingBugs


- larger parts are written in the conjunctive or future so that it is
not clear, whether the page describes the current procedure or just some
wish list for the future

- the page lacks of the description of the very specific tasks for the
maintainers

- some information is outdated and/or wrong - e.g. the description how
many tracking bugs are created


I took the opportunity to clarify some parts of this page and I also
added a section with step-by-step instructions for the maintainers:

https://fedoraproject.org/wiki/User:Chkr/Drafts/Security/TrackingBugs

The changes between the original page and my draft can be reviewed here:

https://fedoraproject.org/w/index.php?title=User%3AChkr%2FDrafts%2FSecurity%2FTrackingBugs&diff=227140&oldid=227125

Most changes are just cosmetic nature and/or clarifies the process.
Nevertheless, it needs to be carefully reviewed.

There is one particular item I'd like to discuss:

I find the idea of having multiple tracking bugs quite helpful since it
really simplifies the maintainer's job: He can make full use of bodhi's
feature to close the bug reports automatically.

So I would suggest that either
a) the security engineer (who opens the security bugs) checks, which
Fedora branches are affected and creates the appropriate tracking bugs
or
b) the step-by-step section could contain the explicit suggestion that
the maintainer could (or should?) create the appropriate number of
tracking bugs for each release himself

I would prefer a), because it would make the work of the packagers
easier and the process of handling the CVE bugs more reliable since the
risk of missing to fix a specific branch is minimized.

So, what do you think?


Best regards,
Christian

libp11 et engine_pkcs11 fecora core 10

2011-03-04T00:58:41

hello list fedora security. 

I installed the packages libp11 and engine_pkcs11 of  fedora core 10 on
my centos 5.5 to allow me to compile the latest version of bind. 

fedora core packages 10 are no longer updated and let me know if it is
flawed security

thanks for your return

RFC: Packagedb and private bugs

Toshio Kuratomi — 2011-02-19T02:21:42

Greatings security team,

One of the pages in the Fedora PackageDB displays all the bugs that a Fedora
package contains.  Until Saturday, last week the displayed information
contained the id and summary of private bugs.  Someone reported this as
a security issue and I modified the list to only show public bugs.  However,
this is less than ideal from a developer perspective as maintainers use the
list to keep track of what bugs are opened against their packages (or
packages that they're thinking of taking on).  I'm thinking of changing this
to display the bug ids, a link, and a summary of "Private Bug" instead.
This will let leak the fact that a private bug exists against the package
and also the relative newness of the bug (via the size of the bug id) but no
other information.

FESCo discussed this and thought it sounded fine but wanted me to run the
idea past the security team in case there were arguments against this that
they hadn't considered.  The FESCo ticket is at:
https://fedorahosted.org/fesco/ticket/561

The meeting logs have their reasoning:
http://meetbot.fedoraproject.org/teams/fesco/fesco.2011-02-16-17.30.log.html

Search for #topic #561

If you have feedback, it's probably best to add it to the fesco ticket as
I don't know how many fesco members are subscribed here.

-Toshio

CPE information for Fedora packages useful?

Silvio Cesare — 2011-01-31T08:21:39

Hi,

Debian maintain a list of CPE inormation for packages on their security
tracker http://svn.debian.org/wsvn/secure-testing/data/CPE/list
The CPE information is not complete and does not contain version
information. This makes it relatively static except when packages are added
or removed from the repository. It can be useful to maintain this limited
CPE information for searching purposes.

In the past I generated an automatic mapping between packages in Debian and
Fedora
https://github.com/silviocesare/Equivalent-Packages/blob/master/NearestNeighbour/Debian5_Fedora13_Matches.
CPE list for Fedora. The list would not cover all of Fedora's packages and I
could not guarantee 100% accuracy, however such a list may be useful.

I can create this list if the security team or developers are interested and
perhaps it could be put on the Fedora wiki.

Apologies if this has already ben answered. I have asked Fedora in several
forums if similar information (such as package mappings) would be useful,
and the general consensus thus far has been that it is not needed. However,
while package mappings might not be useful to Fedora, perhaps a partial CPE
list could be.

CC me on responses.

--
Silvio Cesare

Links/new content that may be useful to Fedora

Silvio Cesare — 2011-01-04T08:11:16

Hi, I am a PhD student at Deakin University. I am also a recent member to
the Debian testing security team. As part of my research I have been looking
at Linux security.

Debian maintain a security tracker
http://security-tracker.debian.org/tracker/ . I think RHEL maintains
security tracking but I do not know the details. Fedora as far as I know do
not publicly and actively maintain security tracking once an advisory is
released.

A simple report I generated last year was tracking of packages and the CVEs
that they reference in an advisory. I did that by scraping the public
mailing list archive of advisories/updates and grepping for CVE references.
I have made a report from last year publicly available
https://github.com/silviocesare/Privileged-Programs/blob/master/SecurityAdvisories/Fedora/SecurityAdvisories.txt
.
This might be useful on the Fedora wiki.

A report I made of Debian's SUID/SGID programs from all packages in the
repository is here
https://github.com/silviocesare/Privileged-Programs/tree/master/Debian5.05 .
I suspect Fedora already has such a list in line with the Fedora 15 target
of removing SUID/SGID programs from the distribution.

Another report I made which may or may not be useful to the security team is
a list of packages between Debian and Fedora that are roughly equivalent,
irrespective of what the package names are
https://github.com/silviocesare/Equivalent-Packages/blob/master/NearestNeighbour/Debian5_Fedora13_Matches
.
There are some false positives and false negatives due to the fact that the
list is automatically generated. This equivalent packages list might be
useful on the Fedora wiki even if it's not a fit in the security section. I
will do another report for Fedora 14 against more Linux distributions if
there is interest.

These links are just small things I've been working on, but I
hope someone in the Fedora project may find them useful. I should also note
that this work is all rather preliminary for now.

Please CC me on responses and if there is a more active or appropriate forum
to raise these types of discussions then please advise.

--
Silvio Cesare
Deakin University