7 interesting videos online :)) Re: 23C3 27.-30.12. 2006 Berlin -- Chaos Computer Club conference with interesting program ; )

Robert Michel openmoko at robertmichel.de
Fri Jan 19 18:06:42 CET 2007


Some of the presentations at the 23C3 I mentioned on this list
which would be interesting for our OpenMoko/Neo1973 project have
now videos online. Probably the others will follow....
I couldn't join the 23C3 but not the videos are a good chance
to see it ;)

Big thanks to the organizer, video team, speaker and supporter of the 23C3.

Use http://events.ccc.de/congress/2006/Streams to find out a mirror
near by you.

Hav' fun and happy hacking :)

small script to downlod this videos:
# download interesting stuff from the 23C3 converence 2006
# for the OpenMoko/Neo1973 project
# 2007.01.18 openmoko at robertmichel.de

#The m4v encoded files are playing well with
#vlc.org ;) apt-get install vlc


#more mirros, RSYNC, BitTorrent see:


#download the presentations html pages
# localfilename like 23C3-1459.en.html
for i in $(echo $videos); do
    remotefile=$(echo $i | cut -b 6-12 | sed s/-/./g )".html"
    curl -R $webpage1$remotefile > $localfile
# get also the attachments
# $ra = remote attachment $la = local attachment
# localfilename like 23C3-1459.en.attached-SIPsecurity_JanSeedorf.pdf
   for l in $(lynx --localhost 1 -dump "$localfile" |\ 
   grep /congress/2006/Fahrplan/attachments/ | awk '{print $2}'); do
        ra=$(echo $l | sed "s/[[:print:]]*[/]//g")
        la1=$(echo $localfile | cut -b 1-13 )
        la=$(echo $la1 attached- $ra | sed "s/ //g")
        curl -R  $webpage2$ra  > $la

#download the videos
#local filename like 23C3-1459-en-sip_security.m4v
for i in $(echo $videos); do
   echo "Download now the video $i"
   curl -RO  $mirror$i

#download the md5 files of the videos
for i in $(echo $videos); do
   curl -RO $(echo $mirror$i | sed s/m4v$/md5/g)


Anybody an idea how to motivate curl and to continous
with downloading to avoid multiple downloading when
running the skript multiple times?

Robert Michel schrieb am Donnerstag, den 30. November 2006 um 19:48h:
> Today the CCC.de published the "Fahrplan" the program for their
> 23. conference, called 23C3:
> https://events.ccc.de/congress/2006/Fahrplan/

> Melanie Rieback -
>    A Hacker's Toolkit for RFID Emulation and Jamming
> Radio Frequency Identification (RFID) tags are remotely-powered data
> carriers, that are often touted as a "computer of the future", bringing
> intelligence to our homes and offices, optimizing our supply chains, and 
> keeping a watchful eye on our pets, livestock, and kids.  
> However, many RFID systems rely upon the integrity of RFID tag data
> for their correct functioning. It has never been so easy to interfere
> with RFID systems; we have built a handheld device that performs RFID 
> tag emulation and selective RFID tag jamming (sortof like a personal
> RFID firewall). Our device is compatible with the ISO 15693/14443A 
> (13.56 MHz) standards, and fits into a shirt pocket.
> This presentation will explain the "nuts and bolts" of how tag spoofing
> and selective RFID jamming work, and will conclude by demonstrating this 
> functionality. 
> [...]
> https://events.ccc.de/congress/2006/Fahrplan/events/1597.en.html 


> Paul Wouters, Leigh Honeywell -
>    Mobile phone call encryption 
> Encrypting (GSM) mobile phone calls over VPN with an Asterisk PBX  
> To encrypt all your mobile phones to protect it from overzealous
> eavesdroppers, you are currently limited to using special hardware such
> as the Cryptophone. The disadvantage of cryptophone is that it only works 
> with other cryptophones. To work around this, we turn mobile phones from 
> "voice" phones into VOIP phones. Using the SIP protocol for VOIP and 
> IPsec/L2TP or Openvpn as our VPN, Leigh Honeywell and Paul Wouters connect 
> their mobile phones fully encrypted to an Asterisk PBX server.
> The presentation, given by Asterisk expert Leigh Honeywell and VPN
> expert Paul Wouters will start with a description of the demise of the
> "old" telecom sector and the end of "voice" conversations. The replacement, 
> Voice Over IP promises a lot of good things, but it comes at a price. Hacking 
> VOIP calls on the internet is much easier. We can no longer trust the security 
> of the telecom infrastructure. Forged caller-ID, charging someone else for your 
> calls, breaking through firewalled networks, or abuse via VOIP services like 
> Google, Jajah, Skype or others. We will demonstrate some of these attacks.   
> To address these problems, we need to be able to both authenticate
> and encrypt our calls. The solution presented is build with using Freely
> available (mostly open source) software and we will explain various aspects 
> and ideas behind our setup and why we choose the various protocols and software 
> packages. 
> We are currently working with various phones, such as the Linux based
> GreenPhone, the XDA's and other phones running either Linux or Microsoft
> Windows PDA phones. 
> Leigh and Paul will also hold a workshop, where they can go into the
> deep technical details on how to build your phones and your servers, and
> where people can try out our phones and secure PBX. 
> https://events.ccc.de/congress/2006/Fahrplan/events/1495.en.html 
> http://www.trolltech.com/products/qtopia/phone_edition/greenphone 
> http://www.openswan.org/ 
> http://www.asterisk.org/


> fh -
>    Jabber-Showcase 
> XMPP ist viel mehr als nur Instant Messaging
> [...]
> https://events.ccc.de/congress/2006/Fahrplan/events/1667.en.html 


> Kevin Finistere, Thierry Zoller
>    Bluetooth Hacking Revisited 
> Hacking Bluetooth revisited - This talks goes into the depth of
> Bluetooth security, we'll show attacks on every possible bluetooth layer
> including Application Layer, lower layers. We'll break the drivers, the 
> implementation, the applications and the _protocol itself_. At the end of 
> this talk we hope we have achieved a Prardigm shift with regards on how you 
> perceive Bluetooth Security in General. It's not only for toys.
> [...]
> https://events.ccc.de/congress/2006/Fahrplan/events/1733.en.html  


> Jan Seedorf -
>    SIP Security
> [...]
> https://events.ccc.de/congress/2006/Fahrplan/events/1459.en.html 
> https://events.ccc.de/congress/2006/Fahrplan/attachments/1116-22c3_SIPsecurity_JanSeedorf.pdf
> http://www.informatik.uni-hamburg.de/SVS/research/projects/voip/index.php 
> http://www.p2psip.org/ 


> Milosch Meriac, Harald Welte -
>    OpenPCD / OpenPICC 
> Free RFID reader and emulator  
> This presentation will introduce and demonstrate OpenPCD and
> OpenPICC. The purpose of those projects is to develop free hardware
> designs and software for 13.56MHz RFID reader and transponder simulator.
> OpenPICC can be used to e.g. simulate ISO 14443 or ISO 15693 transponders, 
> such as those being used in biometric passports and FIFA worldcup tickets. 
> The OpenPCD project is a 100% Free Licensed RFID reader hardware and
> software design. It has first been released on September 13, 2006. Using
> OpenPCD, interested hackers can directly access the lowest layers of 13.56MHz 
> based RFID protocols. The hardware offers a number of digital and analog
> interfaces, and the firmware source code is available and can be modified and
> compiled using arm-gcc.
> The OpenPICC project is the counterpart to OpenPCD. It is a device
> that emulates 13.56MHz based RFID transponders / smartcards. Like
> OpenPCD, the hardware design and software are available under Free Licenses. It has not been
> released yet, but the first prototypes are working and it is expected to
> be released before 23C3.  
> The presentation will introduce and explain the OpenPCD and OpenPICC
> hardware as well as software design.
> https://events.ccc.de/congress/2006/Fahrplan/events/1566.en.html
> http://www.openpcd.org/
> http://wiki.openpcd.org/ 


> Michael Steil -
>    Inside VMware   
> How VMware, VirtualPC and Parallels actually work  
> Virtualization is rocket science. In cooperation with the host
> operating system, VMware takes over complete control of the machine
> hundreds of times a second, handles pagetables completely manually, 
> and may chose to wire (make-non-pageable) as much memory as it chooses. 
> This talk explains why it still works. [...] 
> https://events.ccc.de/congress/2006/Fahrplan/events/1592.en.html   
> https://events.ccc.de/congress/2006/Fahrplan/attachments/1132-InsideVMware.pdf 


> http://lists.openmoko.org/cgi-bin/mailman/listinfo/community

More information about the community mailing list