From The Floor At Defcon 8 75
It appears that ZDtv is doing some fairly major co verage of Defcon. They've got the works - some text reporting, as well as streaming video from the floor and speakers, from what I can see. It's not being there, but heck, you're at least one less degree separated.
Re:One of these days.. (Score:1)
Computer enthusiasts/hobbyists/programmers should really buy a clue on this one and give it up. To the masses, "hacker" == "cracker", and that's the end of it.
Oh, and worms/trojans are "viruses", too. When science and technology come to the masses, "the field" and the "real world" are going to come into conflict. Many people still think a quantum leap is REALLY BIG...
Great briefings to watch... (Score:1)
Mr. DiCenso's topic should also be great. He's a former law instructor (and a lawyer), and taught one of the first-ever CyberLaw courses. If you are in the least bit interested in security/hacking/cracking and the social/legal/ethical implications of them, you should check his section out.
And yes, I do feel pretty damn cool that I have been able to work with these cool people... I guess I'm human after all!
Re:[OT, but curious] (Score:1)
looks like slashcode always puts in a space after 90 continuous characters whether it's in the middle of a link or not.
attempts to give a better example set off the "lameness filter". (thanks, rob!)
Re:Doh! (Score:1)
Re:[OT, but curious] (Score:1)
Ruining Conferences (Score:1)
Re:Ruining Conferences (Score:2)
Spot the Hacker? (Score:2)
Re:Sit back and enjoy the ride? (Score:3)
In this case the media and the general public are no better informed as your toddler. To them there is no objective difference between hackers and crackers. And there never will be. The differece is only useful to "technical types".
"Cracker" may retain use in the technical community, but it has no meaning in the outside world. To the media, they (hackers/crackers, we, you, whatever) are hackers. Period.
Uhh (Score:1)
Re:Defcon location (Score:1)
Re:more coverage at MSNBC (Score:1)
Re:Wired Article :) (Score:1)
If you think education is expensive, try ignornace
DEFCON PICTURES!!! (Score:1)
Re:underground- not bloody likely (Score:1)
corporations and government have tried to quantify and manipulate the underground, only to find that this is impossible because it changes so rapidly
Well that's all fine and dandy for you, but what about those of us who define ourselves by how we're perceived by others?
its already old hat to us, and we've tired with it and are moving on to something else...
True to an extent: I would like to see some more discussion on something other than stack smashing and DoS studies. Since I know practically zero about networks (which means that to me most of the Phrack/2600 discussions are complete gibberish!) I'm sort of bummed because it seems to be the majority of the content out there. Personally, I purposefully avoid studying networks for same reason I don't own a gun...
---
Re:underground- not bloody likely (Score:1)
Some DNS problems, sorry, try now (Score:1)
Vegas. (Score:3)
"One hotel ice bucket, three two liter bottles of Dew, a pound of mashed potatoes from room service, gaffers tape, and thirteen paperclips. Sounds like we have all the parts for world domination, boys! Let's get to work!"
Sit back and enjoy the ride? (Score:3)
My 18 month-old knows the word "chip", but doesn't realize that flaked cereals aren't chips. So shen he wants some raisin bran, he asks for "chips". What if we all started saying "chip" when we meant either chips OR flaked cereals? We would lose a useful shade of meaning. Point: Words are not just labels, they are differentiators.
There is an objective difference between hackers and crackers. Calling both by the same name destroys the ability to talk about them easily. This ability is not much prized (or even noticed) by the general public (including the mainstream media), but it IS useful to technical types. That's why I, as a technical type, resist this change.
--
Re:I wish (Score:2)
--
Defcon location (Score:1)
No, what happens, happens. (Score:3)
The post you are responding to was not a defense of the usage of "hacker" vs "cracker"; it was an exposition of the way langauge works. It is pretty common for technical terms to enter common usage. Often, the common definition is incorrect from a technical perspective. It works the other way to, with terms going from common to technical usage. "Hacker" is a perfect example of this phenomenon. Every old definition I can find suggests doing something poorly. A bad writer is a hack. A bad cough is a hack. Hacking at meat or wood or golf balls indicates the hacker's inability to do any better.
My own pet peeve is "imaginary," as in "imaginary number." There is nothing imaginary about them. They are just as real, and just as abstract, as the so-called real numbers. Yet the term, despite its incorrect connotations, persists.
Anyway, like it or not, "hacker" in its mainstream usage, means someone who cracks computer systems. Don't try to enforce technical definitions on people who have no need for them, and don't try to reengineer the language. Feel free to ignore me (I know you do anyway
Re:Sit back and enjoy the ride? (Score:1)
I agree that there is and should be a distinction between the two, but it is time to admit defeat on this on and come up with some new terms.
We can resist this change all we want, but that isn't going to keep it from happening.
Re:[OT, but curious] (Score:2)
It's a bu g.
--
Re:Fear and Loathing (Score:1)
I agree. (Score:1)
mparcens
One could interpret the growing popularity of DefCon and other cons as not beneficial but a dilution of the serious hacking community. More people come to the cons now, and so they are catering to the lowest common denominator..
There were certainly more people there who don't have as much of a clue. There was also a trend that I disliked...The really bright people who were very visible @ black hat were basically abscent from defcon. They were still in town. They may even have been hanging out will friends at the Alexis, but it would be in a suite, not out where they interacted with the little people. (the obvious exception to this trend were the ones who were giving talks in the "Uber-haxor" track). A lot fewer hard-core hackers were involved with defcon than in previous years
by Mark A. Rhowe
It's unbelieveable how much they have grown and the audience that they have gained. It's now, as one would say "taken seriously."
Defcon is certainly being taken seriously. There were more attempts by feds to recruit (though not as bloody obvious as the recruiting happening at black hat). There were also a lot of middle aged folks, largely conservative in dress and manner, who had come to learn. I suppose that is valid, because some of the talks (like the ones by Greg Hoglund, ghandi or Phil King) were *VERY* technical. This new class of defcon attendee moderated the recent influx of script kiddies, but they also dampened some of the party atmosphere
Not this again. (Score:2)
No, the were doctors who killed. They were still doctors (aside - I am not anti-Kevorkian.)
The trouble with the hacker/cracker distinction as made by hackers is that it is too self-serving, and relies on a simplistic good-vs-bad dichotamy.
For most people, including many technical people, a hacker is anyone with a high level of technical understanding, whether or not they are a programmer. People who break into computer systems, *if they understand what they are doing* (and more do than the vanities of some would like to admit) are hackers-who-crack. What makes the press identify them as hackers is that they know more about systems and security than the media or the public at large.
Arguably, there are also many programmers who aren't hackers - programmers who rely on pre-canned libraries and hand-holding IDE's to develop what they want, without the intellectual curiousity to look under the hood or cultivate an understanding of the principles beneath the program.
I will endorse a distinction between possibly-miscreant-but-knowledgeable/curious hacker-who-cracks and miscreant-and-nasty non-hacker script-kiddy who uses canned exploits to annoy people and impress the ignorant, but I can't endorse a naive effort to simply say 'hacker good, cracker bad.'
Re:Sit back and enjoy the ride? (Score:2)
True.
"And there never will be. The differece is only useful to "technical types"."
False.
What if I went to my son and said "Look this *holding up a Ruffle* is a chip--but this *holding up a bran flake* is cereal". After several repetitions he would start using the words although he still wouldn't understand the difference. But there is an immediate gain: *I* know what he means when he asks for "chips". He means chips. If he wanted raisin bran he'd ask for "cereal". Eventually there will be another gain--he'll understand the difference. This will give him power of thought/expression previously unavailable to him. He will know that Special K is cereal while Fritos are chips without having to be told.
The same for the media. Just because they don't currently differentiate between hackers and crackers doesn't mean they wouldn't benefit from doing so. Imagine if we didn't have the distinction between "inventor" and "mad scientist". Edison and Frankenstein would have been lumped together in the "tech news" section of the newspaper with the confused readers not knowing that "lightbulbs are good, rampaging monsters are bad".
Yes, language evolves. But language evolution is only useful when it conserves (or extends) granularity of meaning. We can drop the difference between the terms "rock-to-hit-enemy-on-head-with" and "rock-to-sharpen-with" because we don't need those meanings. We can't drop the difference between "hacker" and "cracker" just when network security is becoming a life and death matter.
--
Re:Spot the Hacker? (Score:1)
Re:underground- not bloody likely (Score:1)
I think if a hacker society wanted to call themselves 'undergound', we wouldn't see in-depth coverage about them in every major news publication. Of course, one could argue that the media is just good at covering these secret groups, but judging by the (a) size of DEFCON and (b) how cool it is to be perceived as a hacker... you get my point...
---
Cracking the blood supply (Score:1)
Re:Quick! Everyone Hide! (Score:1)
Re:Spot the Hacker? (Score:2)
They have more space, it just is paying for it I'd imagine.
Random drunk guy pic (Score:2)
Re:Not this again. (Score:2)
If I was to look for a distinction to be made it'd be between hackers (people who know what they're doing) and script-kiddies (people who use canned programs without understanding them). But even still, I realize it's not a useful distinction to most people, you'd only specify when the difference was important, for instance if your computer had been compromised, or you were looking to compromise a computer... If you wanted to close out an attacker it'd be different if you thought they had no technical knowledge, in which case you'd simply block whatever root-kit they used and then clean up later. To block out a master hacker you'd have to consider that they may have written many back doors, all new, and that they may have told the system to play 'clean' for a while then connect to another invaded computer to download a new set of backdoors... It'd be a completely different battle depending on who you faced.
DEFCON (Score:2)
Some interesting lectures this year... (Score:2)
Thad
Defcon report (Score:2)
It's available here [www.xsta.cc].
"Overseas, our job is to violate people's rights, break things and kill.
Domestically, it's different...
DoD official at Defcon 8
Re:Defcon-- Playground of the 313373 5cr1p7 |1dd13 (Score:1)
more coverage at MSNBC (Score:4)
noah
I disagree - (Score:2)
high and low of DC8 (Score:1)
Defcon 8 was lamer and cooler than previous years. Of course, a lame Defcon is still a kick ass event to goto, so shame on the list members that missed out because of some prissy excuse like "my job wouldnt give me time off". Pshaw.
High points: - noise's nervously delivered speech on anon remailers turned out to be pretty informative, and spurred a whole bunch of people to at least think about setting up their own remailers (and enlightened people on topics such as MixMaster). ... which was topped off by gandhi's lecture aftwards (yay to 505!), in which he actually demonstrates on his solaris laptop dropping into arootshell after coding up a relatively simple script to overflow a random unix utility that the audience picked. Can we say "no system is safe"? ... Which was spent on having a blast on the Las Vegas strip - More diverse crowd! It looks like female and minority hackers are finally starting to pop up.
- An incredibly well put together lecture on buffer overflows, which IMHO was useful for just about everyone at the 'Con, even people who look for such things, just because of his preparedness.
-
- Copious amounts of mind-alterers
-
- Best content yet for defcon!
Low Points:
- Diversity in the wrong way. This year, Defcon should have been called "Invasion of the SuitKiddies". The suitkiddiez make script kiddiez look like Gods. I'm guessing now that the majority of the jockboyz were left over from BlackHat (which their companies sent them too). Worse thanthe Feds, they were like the annoying greasy teenagers you see, but fit into society enough that people have never told them to fuck off. As many on the list can attest to, not only were these people annoying in that they would insult you to your face, in that unknowing pink way that they dont even realize, but they also get really drunk and start accosting and really badly picking up on the women hackers that were with me in that way that frat boys do. On top of that, they weren't really friendly at all, and made the 'con really boring to goto, as the flooded all the cool people out of the hotel. On top of that, they have *bad* fashion sense- the goth/punk/raver/hippie/geek/freak/anything goes show of Defcon got replaced with lots of people in Polo Shirts and Corporate logos. Ugh. Did I mention that they knew far less and were stupider than script kiddiez?
I suppose I should qualify this by saying that a lot of them were admin's from their workplace, and Defcon/Blackhat is probably the place to go if you are going to go learn about security, but can't they suck less?
- The con was way overcrowded, almost impossible to get into what you wanted to go to see due to the suit kiddiez.
- A lot of the Vendors seemed to have dropped out this year. Only a couple of booths, mostly from Loompanics, and a couple of major t-shirt vendors. Nothing particuarly interesting.
- Vegas heat was way high this year...
- My biggest beef: Spirit of togetherness seemed to be replaced with a spirit of antagonism- no one was talking to anyone outside of their cliques this year, with the exception of desperate jock lamers who were neither intelligent, fun, or amusing.
All in all, this year's Con was waaaay mellower than the previous ones I have attended. But also way more informative.
Anybody else have any similar experiences.
I wish (Score:1)
In his speech, he estimated that the DoD sees seven to eight attacks per day, many transnational, he claimed. He also put last year's bill of investigating these intrusion attempts (whether sucessful or not) at $25 billion -- roughly 10 percent of the fiscal year 1999 DoD budget, which was publicized as being $257.3 billion.
I wonder how many of these 'attacks' are just script kiddies running scripts or if they're actaully full fledged 'intelligent' crackers (I use intelligent loosely)
Well atleast after DEFCON maybe 2600 will fianlly get their website back online.. supposedly they were down because the server when kablooey and nobody had the key. Oh well, time for another cup of coffee.
Wired Article :) (Score:2)
http://www.wired.com/news/culture/0,1284,37896,00
It goes into a little more detail and has a bit of a different perspective thant he ZDNet stuff
OT: ZDNet and linuxcare share the same building
If you think education is expensive, try ignornace
Re:I disagree - (Score:1)
One could interpret the growing popularity of DefCon and other cons as not beneficial but a dilution of the serious hacking community. More people come to the cons now, and so they are catering to the lowest common denominator..
_________________
JavaScript Error: http://www.windows2000test.com/default.htm, line 91:
BOTCON 2000 Report! (Score:1)
The exclusive toys this year were a repaint of transmetal Optimus, named Apelinq. Colors were cool, but kinda pricey($50). The 2nd toy was a repaint of the giant crab Rampge. Named Shokaract this toy($56) is awesome. There was a limit of one of eack toy per attendee, but yours truly managed to get 2 sets!
The biggest event was entitled:10 things you didnt know about the Transformers". The mentioned some awesome secrets about the Transformmers movie. Namely Red Alert was killed by a constructicon, and Ultra Magnus was quartered by the sweeps during the scene when galvatron wanted the matrix. These scenes were never showed in the movie but the proof was slides of the movie that the animators got queed from.
The autograph line sucked. It was too long and they limited the numebr of items signed to 1 per actor. Present were Blackarachnia, Cheetor, and Tarantulas. I told Cheetor his character was a pussy mam, and then I kicked him in the stomach. Best thing was: Blackarachnia(Venus Terzo) was REALLY HOT! and yours trult got his picture taken with her.
I would say the highlight of botcon 2000 was the fact that I now have A COMPLETE PREDAKING!!!!!(minus a right fist) I had 2 pieces when I was a child and always wanted the full version, and now I have it.
Defcon Pics (Score:3)
opencola (Score:1)
Does anyone know a place where I could buy one of those OpenColas? I just want to put one in my collection of nerd paraphenalia.
Re:Ruining Conferences (Score:1)
Chic to be Geek (Score:1)
Re:No, what happens, happens. (Score:1)
This right here is the entire key. CNN is in desperate need to understand the difference between "hacker" and "cracker". So is Congress and the general public. The importance of network security is at an all-time high and is rising every day. Rights are being eroded away because there are people who don't understand that "messing with the insides" doesn't mean "trying to break it". Affording them a means to think about that difference (making them understand "hacker" vs "cracker") benefits us (immediately) AND them (eventually).
--
Re:Ruining Conferences (Score:2)
Comdex is there to make a good impression on the public NOT the techs. Nearly all of the booths were to look good, and hype products, not to teach or inform. Crud.. Intel was throwing around their marketing BS about how their new processor (Pentium Pro at the time) improved internet aceess. The 3D graphics they were doing we did on a 486 (actually ours looked better).
Motorola had some content about the design of their processor. I did manage to get a evaluation kit of a dongle for copy protection, but all the good info came from the small booths tucked away in the show.
I have to say it was fun to hang out with my coworkers, but the show was a waste of my time. And that was 5 years ago. I hate to wonder what its like today.
Who is Andy Rooney? (Score:1)
Whatever happened to the TCP/IP drinking game?
Oh, and Uber Haxor wasn't really.
Re:So Hemos and Kadtz, time to deliver. (Score:1)
It just doesn't make sense to claim that songs/software/ad infinitum should be distributed for free and not do the same with books. Kind of a double-standard if you ask me.
"'Why should software be free?' Edward J. Zander, chief operating officer of Sun Microsystems, asked New York Times reporter Amy Harmon in a story on OSS. 'Why should I give away what I pay millions of dollars to develop? Why doesn't General Motors give its cars away for free? Why don't you give me your newspaper for free?'
Good questions, and exactly the ones the chief operating officer of a giant computer software company should be asking, and the country should be talking about. The values of the rapidly ascending Internet suggest that companies may need a more nuanced response when it comes to existing online - such as perhaps giving some things away free some of the time, or charging less for the things they do sell, or selling them in different ways: giving consumers more power in terms of customization -- choice, design, price and quantity. "
-JonKatz [slashdot.org], "World without walls" [slashdot.org]
So, based on this small quote from the article, I think it would make sense if Katz at least had the first chapter or two of his books up on the web. (Are they up anywhere?) If this sounds impossible due to licensing restrictions, just look at "The Hacker Crackdown" by Bruce Sterling. You can download the whole thing as a text file (or 4, in my case).
One last thing: To the AC who posted this, next time, if you have an account, use it. Do not fear the "bitchslap." (Which, while rumored at, I've never seen it happen.)
Re:One of these days.. (Score:2)
A cracker can be a script kiddie who knows nothing, or he can be a creative person who uses his skills, knowledge and intuition to gain illicit security access, Rather than a crufty old UNIX hacker, who uses his skills knowledge and intuition to keep a mail server running.
The only thing the press gets correct is the byline, and even then...
Dates. (Score:3)
From the text of this post it looks like all this stuff is live.
<Drunken Undershirt Speech>Maybe if Slashdot wasn't owned by the damn multinational media and was still a small site like it used to be back when it sucked, then now it wouldn't suck as much as my pet pig on this here tree bark.</DUS>
Nice.
Hotnutz.com [hotnutz.com] - Funny
big conventions (Score:1)
Re:One of these days.. (Score:5)
It's the same with hackers. The media calls them hackers, the general public calls them hackers; no one but the hackers themselves uses the term crackers. If this continues long enough (and I argue that it has) the word for people that do that sort of thing will become "hacker" whether or not they call themselves hackers. That's the way language evolves. Get over it.
Ruining Conferences (Score:3)
Quick! Everyone Hide! (Score:1)
Fear and Loathing (Score:2)
This is the way to go to defcon.
Re:One of these days.. (Score:1)
Doh! (Score:1)
Some thoughts from someone who was there =) (Score:4)
I'll try to be somewhat breif on my experiance there.
Pros:
Informative Lectures, speakers who knew what they were talking about
Plenty of neat stuff to buy.
Plenty of people that are well known in the "hacking" scene.
Fed spotting!
Free beer provided by the people at dis.org
From Thursday evening to Sunday morning (when I left) there were constantly people around all 3 pools drinking, talking. People at the LAN (wireless too this year!) to mingle with. It never got boring.
Cons:
Speaker room isn't big enough! You had to get a seat and keep it for hours at a time if you even wanted to be able to sit down.
Immature people doing random acts of lameness. For example: Cement down the toilet, Super smoke bombs in the pool, DoS over the LAN, and other lame things.
Luckily our favorite Hawaiian shirted enforcer Priest was there to take care of some of the kids.
Overall, I had a wonderful time. The Defcon site is usually very quick with bringing tons of information from the con within a couple weeks of it ending, so be sure to check back there.
On a side note, anyone willing to contribute to the "Air condition all of Las Vegas" fund? That place is so damn hot. 114 degrees (F) one day.
Good conf DT and the Goon crew, keep em coming!
Re:Fear and Loathing (Score:1)
=)
Re:No, what happens, happens. (Score:1)
This is EXACTLY the problem I'm talking about. You've got "hacker" and "cracker" so mixed up in your mind, you thinking "hacking" requires a network connection. Get this through your head: Hacking per se has nothing to do with gaining access to a remote system. Hacking is about understanding how things work and making them do other things. Cracking is about entering places you are not allowed to be (and possibly doing damage while there). Note that the only connection between these two things is that they rhyme.
Unfortunately, the general public is being led to believe the follow series of steps:
1) People who break into computer systems are called "hackers".
2) Therefore, hackers are bad.
3) The people who figured out how their DVD players worked called themselves "hackers".
4) Therefore, figuring out how your DVD player works is bad.
--
Re:underground- not bloody likely (Score:1)
Its not as simple as that... (Score:1)
Re:Sit back and enjoy the ride? (Score:1)
I'm marketing a new product: saltines for black-hat hackers. I'm going to mostly market to white trash from the south.
I'm going to call this product Cracker Cracker Crackers(tm). How's that for an objective difference?
If you want the media to use a word other than "hacker" they need a better alternative than "cracker". As many others here have stated (in this thread and others) the word cracker is lame.
Re:wow! (Score:1)
I remember one year at the Defcon, Al Jolson ran amok downtown and had to be arrested by the National Guard. After that he couldn't get arrested in this town. Ahh, memories.
For All Your DefCon Needs (Score:2)
http://www.defcon.org/
None of this filtered ZD Net Crap....
Re:One of these days.. (Score:2)
Well, in that case people would start calling auto mechanics "blacksmiths". It might take a generation or two for auto mechanics and blacksmiths to learn to like it, and a century or two for prescriptive grammarians to learn to like it, but all in all the world would keep turning and autos would keep getting fixed.
Language is malleable like that. "Marshall" used to mean "horse groom". "Geek" used to mean a person who swallowed goldfish and other live animals whole. "Gerbiling" used to mean hunting for gerbils. Think how much the meaning of "the geek and the marshall are off gerbiling right now" has changed!
I think it's time we came to terms with it: outside the jargon of a narrow technical elite, "hacker" means a person that breaks in to computers, and "cracker" means a Good Ole Boy from the Old South.
--
Re:One of these days.. (Score:1)
Okay, I've sat through "Hacker" and "Cracker" semantical arguments for five years now, and I've just about had it. I'm sorry, but guess what, you don't always get to pick what label is put on you, or what that label is associated with. You want "Hacker" to retain its "classical" meaning, then put more high-profile examples of it out there in the media, but don't just sit back and bitch and moan every time something gets defined in a way you don't like.
Re:One of these days.. (Score:2)
Eventually every time the common populace hears the word "locksmith", they associate it with somebody who has performed illegal entry. This is what has happened to the words hacker and cracker.
Re:Some interesting lectures this year... (Score:1)
A