How not to get pwned at Defcon

[crvallance at gmail.com (Colin Vallance)]

Starting the thread.

First year going to Defcon for me so I'm just assuming everyone is out to
get me.  Here are the precautions I'm taking but please feel free to point
out flaws or additional items.


   - Laptop running Linux w/ up to date patches
      - Full drive encryption using Truecrypt
      - Firewalled using iptables
      - Laptop will be wiped clean upon departure
   -  Net connectivity
   - Wireless only to be used through ssh socks proxy on preconfigured
      server
         - Key and password required
         - Local machine set to deny connection if key changes
         - server to be wiped upon departure
      - Tether through iPhone
         - This will depend on if there is a patch before defcon for the SMS
         vuln
      - $$$$$
      - Credit Card with fraud protection
         - Card is not normally used so any transactions in Vegas or after
         will be easily seen
         - No RFID chip in this specific card
      - Cash.
   - Phone
      - Considering a prepaid number for the weekend to be tossed afterward.
         - This one could just be abject paranoia.


On Tue, Jul 14, 2009 at 11:15 AM, Paul Asadoorian <paul at pauldotcom.com>wrote:

> Hi All,
>
> I love the feedback, but lets break it up into a few different threads
> (Defcon: Room Crashing, How not to get pwned at Defcon, Defcon: Meetups,
> etc..).
>
> Keep up the great work and discussions on the list!
>
> Thank You!
>
> Cheers,
> Paul
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20090714/af3fd94b/attachment.htm