INSECURE Magazine Issue 17 has been released for July 2008 and contains an article written by yours truly. I want to first give credit where credit is due to Charlie Vedda from the Packet Protector project, who was instrumental in putting some firmware together in order to make this project a reality. This is a project I have been tinkering with for quite some time and am excited to finally have it in print. Also, special thanks to Larry who helped me with some early versions of the project as well.

So, how do you build a "secure" wireless network on the cheap? (Note "secure" is in quotes, and I do the double finger quote thing when I say it too). Well, you'll just have to read the article I guess, but here's an excerpt:

"Many organizations are faced with the challenge of providing a “guest” wireless network. This network is intended to provide your guests, such as contractors, visiting faculty, patients, or training rooms, consultants, with wireless access to the network. In most cases guests will require access to the Internet, with little or no need to connect to your organizations private network. There are many ways to solve this problem, with the best being to purchase a separate Internet service and completely separate it from the rest of your network."

The article then goes on to tell how to build the network and various other security tips. This is based on many experiences I've had both attacking wireless networks and having to defend them, so I hope you can put it to good use!

Enjoy!

PaulDotCom

All:

Thank you all for your positive feedback and corrections for our new web site. There is still some clean-up that needs to happen, but for the most part its well under control and moving forward. I made some updates recently that reflect some of the new/updated content that we were planning on:

• About - Now contains pictures, bios, and information about PaulDotCom and how we got started, including mission statement.


• Papers - Contains a complete listing of articles and papers published over the years, including the latest edition of INSECURE Magazine, including abstracts.


• Presentations - Up-to-date listing of all presentations, including the Late-Breaking Computer Attack Vectors webcast, with June 2008 being the latest


• Forum - In other news, Larry has updated our Forum to prevent SPAM using a shiny new CAPTCHA. Say what you will about CAPTCHA, if it prevents bots from posting pr0n and male enhancement links in our Forums, I'm all for it!

Larry is in the process of sending me a list of all his papers and presentations, so look for those updates coming soon! Oh, and seems security is being embedded into everything these days:

Cheers,
PaulDotCom

Live from the PaulDotCom studios, with a soopa secret special guest!

• Want to register for any SANS conference? Please visit http://www.pauldotcom.com/sans/ for our referral program and sign up for SEC535 - Network Security Projects Using Hacked Wireless Routers Today!
• Sponsored by Core Security, listen for the new customer discount code at the end of the show
• Sponsored by Tenable Network Security, creators of Nessus and makers of the Tenable Security Center, software that extends the power of Nessus through sophisticated reporting, remediation workflow, IDS event correlation and much more.
• Want some cool PaulDotCom Gear? Do you hack naked? Check out our Cafepress Store!
• Full Show Notes

Hosts: Larry "Uncle Larry" Pesce, Paul "PaulDotCom" Asadoorian

Email: psw@pauldotcom.com

Direct Audio Download

Audio Feeds:

So, due to circumstances beyond our control we had to cut over to the new web site before it was completed. So, please bear with us while we work to get the site back up and running. Until then, get adjusted to the new look and feel and please report broken links, errors, and problems to psw /at/ pauldotcom.com.

Thank You,

The PaulDotCom Team

Live from the PaulDotCom studios, with the Backtrack CD developers via Skype, Backtrack 3 is released live, right here on the PaulCotCom show!

• Want to register for any SANS conference? Please visit http://www.pauldotcom.com/sans/ for our referral program and sign up for SEC535 - Network Security Projects Using Hacked Wireless Routers Today!
• Sponsored by Core Security, listen for the new customer discount code at the end of the show
• Sponsored by Tenable Network Security, creators of Nessus and makers of the Tenable Security Center, software that extends the power of Nessus through sophisticated reporting, remediation workflow, IDS event correlation and much more.
• Want some cool PaulDotCom Gear? Do you hack naked? Check out our Cafepress Store!
• Full Show Notes

Hosts: Larry "Uncle Larry" Pesce, Paul "PaulDotCom" Asadoorian

Email: psw@pauldotcom.com

Direct Audio Download

Audio Feeds:

Live from the PaulDotCom studios via Skype featuring JMS!... :)

• Want to register for any SANS conference? Please visit http://www.pauldotcom.com/sans/ for our referral program and sign up for SEC535 - Network Security Projects Using Hacked Wireless Routers Today!
• Sponsored by Core Security, listen for the new customer discount code at the end of the show
• Sponsored by Tenable Network Security, creators of Nessus and makers of the Tenable Security Center, software that extends the power of Nessus through sophisticated reporting, remediation workflow, IDS event correlation and much more.
• Want some cool PaulDotCom Gear? Do you hack naked? Check out our Cafepress Store!
• Full Show Notes

Hosts: Larry "Uncle Larry" Pesce, Paul "PaulDotCom" Asadoorian

Email: psw@pauldotcom.com

Direct Audio Download

Audio Feeds:

All:

We are proud to announce that we've created our own Forums (http://forum.pauldotcom.com) for your enjoyment. Come there, register, post stuff, and be merry. Its a nice compliment to our Mailing List, and IRC Channel (#pauldotcom | irc.freenode.net), where you can come and be a part of the PaulDotCom community and talk security/geek/nerd stuff.

Cheers,

PaulDotCom

Live from the PaulDotCom studios featuring guest host Lenny Zeltser!...

• Want to register for any SANS conference? Please visit http://www.pauldotcom.com/sans/ for our referral program and sign up for SEC535 - Network Security Projects Using Hacked Wireless Routers Today!
• Sponsored by Core Security, listen for the new customer discount code at the end of the show
• Sponsored by Tenable Network Security, creators of Nessus and makers of the Tenable Security Center, software that extends the power of Nessus through sophisticated reporting, remediation workflow, IDS event correlation and much more.
• Want some cool PaulDotCom Gear? Do you hack naked? Check out our Cafepress Store!
• Full Show Notes

Hosts: Larry "Uncle Larry" Pesce, Paul "PaulDotCom" Asadoorian

Email: psw@pauldotcom.com

Direct Audio Download

Audio Feeds:

Procrastination. Say it with me now, P r o c r a s t i n a t i o n. We've all done it, been there in that situation where you know you've put something off for far too long. Maybe its mowing the grass. Maybe its your TPS reports. Maybe its that oil change 4,000 miles overdue. In our case, its our web site and mail server migration. Guess what turns out to be a great cure for procrastination?..... When your hosting provider takes a nose dive straight off the Internet and into the deep end of the pool (too bad there was no water).

Lets start with email. Sometimes we're slow with email (I already gave the procrastination speech, so I will spare you this time). However, if you tried to send us email lately (since the weekend), its not our fault. We can't get to our email at the moment. This has given me the chance to get a lot of other work done on our web and mail server migration. Sometimes you have to look at the glass as half full. My alternate email address is kungfuhacker -at- gmail.com. Email me there if you have any pressing issues or questions for the time being. Today or tomorrow, I make the big cutover and we move to Google hosted email. Say what you will about privacy and security, its a great service and I've got many more interesting things I would rather be doing than maintaining Postfix and SpamAssasin. We also picked up another VPS and will be hosting our web sites and DNS. You could say we are masters of our own domain now...

In the way of good news, I've got the wiki moved over to the new web site and its been upgraded to the latest version of MediWiki. The ever so kind wiki ninjas (byte_bucket and mmiller) have helped me with some of the formatting issues that cropped up. A thousand thanks guys.

The new web site is half installed, and our web guru is going to very quickly fix the stylesheets so you can all enjoy a much better web site design and color scheme. I am working on some of the content, which is horribly out of date. Simple things are a big win, like actually having a page that tells visitors where our IRC channel is and how to get there, and posting all of our articles, presentations, and papers in one easy to find place.

So, if we drop offline for a bit, don't worry, I'm working on "unclogging the tubes" and bringing PaulDotCom to a happy, stable, state so I can focus on all those wonderful security projects I keep meaning to get around to, when I get to them, not that I am procrastinating or anything....

PaulDotCom