# http://blog.abiss.gr/mgogoulos/feed/entries/atom 2009-01-10T06:53:15-08:00 Apache Roller (incubating) http://blog.abiss.gr/mgogoulos/entry/25th_chaos_communication_congress_nothing 25th Chaos Communication Congress - "Nothing to hide" markos 2009-01-01T06:53:32-08:00 2009-01-01T07:13:18-08:00 <p>&nbsp;</p><p>The <a title="CCC" href="http://www.ccc.de">Chaos Computer Club</a> (CCC) is a Germany based hacker organization, one of the biggest and most influential. Since its foundation on 1981 they have contributed to the evolution of computer security, freedom of information, development of the hacker ethics and hacker culture!<br /><br />I have always been fascinated by the diversity of the CCC activities, projects and achievements .</p><p><br /><img hspace="0" vspace="0" border="0" align="baseline" src="http://blog.abiss.gr/mgogoulos/resource/ccc25.png" /></p><p>The 25th annual conference organized by the Chaos Computer Club, <a title="Congress" href="http://events.ccc.de/congress/2008/">Chaos Communication Congress</a>&nbsp; took place from 27 to 30 Dec 2008 in Berlin, Germany. <br />As always, there was a great plethora of lectures and workshops on a multitude of topics, including <b><font color="#ffaa00">computer</font> <font color="#ffaa00">security</font></b>, <font color="#ffaa00"><b>hacking</b></font>, <font color="#ffaa00"><b>privacy</b></font>,<font color="#ffaa00"><b> science</b></font>,<font color="#ffaa00"><b> art</b></font>,<font color="#ffaa00"><b> society </b></font>and <font color="#ffaa00"><b>culture</b></font>. <br /><br />For all of us that couldn't make it to Berlin, there are the <a title="proceedings" href="http://events.ccc.de/congress/2008/Fahrplan/">online proceedings and papers</a> . Not all of the presentations can be found, but one can further search their author's blogs or project pages and make his way. <br /><br />Several presentations/workshops that I've found extremely interesting so far:<br /><br /><a href="http://events.ccc.de/congress/2008/Fahrplan/track/Hacking/3023.en.html">MD5 considered harmful today</a> Highly skilled and motivated team created their own legitimate and trusted Certificate Authority with which they can sign certificates! By exploiting MD5 vulnerabilities, they have made RapidSSL sign a certificate for them whose signature also verifies a CA=YES certificate. They have prooved a vulnerability in the PKI (Public key Infrastructure) that can be used to facilitate MITM (Man-in-the-Middle) attacks against SSL-ed communications. Explained in details in their well written&nbsp; paper on http://www.win.tue.nl/hashclash/rogue-ca/<br /></p><p><font color="#02ff00">This paper seems to attract more coverage than any other presented on the conference. </font><br /><br /><a href="http://events.ccc.de/congress/2008/Fahrplan/events/2995.en.html">Predictable RNG in the vulnerable Debian OpenSSL package </a><br /><br /><a href="http://events.ccc.de/congress/2008/Fahrplan/events/2977.en.html">Security and anonymity vulnerabilities in Tor </a><br /><a href="http://events.ccc.de/congress/2008/Fahrplan/events/3015.en.html"><br />Rapid Prototype Your Life</a>&nbsp; Ultra-geek must-read stuff!<br /><br /><a href="http://events.ccc.de/congress/2008/Fahrplan/events/2863.en.html">Climate Change - State of the Science</a><br /><br /></p> http://blog.abiss.gr/mgogoulos/entry/fosdem_2009_free_and_open1 FOSDEM 2009: Free and Open Source Developers' European Meeting markos 2008-11-10T01:25:57-08:00 2008-11-10T01:36:54-08:00 <p>&nbsp;</p><p><a href="http://fosdem.org/" title="Fosdem"><img hspace="0" vspace="0" border="0" align="baseline" src="http://blog.abiss.gr/mgogoulos/resource/fosdem_2009.jpg" alt="Fosdem 2009!" style="width: 463px; height: 97px;" /></a></p><p>&nbsp; <br /></p><p>Just received the call for participation for <a href="http://fosdem.org/" title="FOSDEM 2009!">FOSDEM 2009</a> from one of the organizers. <b>FOSDEM is THE event to visit</b>.</p><p><font color="#00ff54">&nbsp;If you're a developer</font>, you'll have the chance to attend some awesome presentations from the people that create major open source programs, such as GNOME, KDE, Firefox, plus meet these people, discuss and exchange opinions!</p><p> <font color="#02ff00">If you're not a developer</font>, but interested in open source software, trust me after two days in FOSDEM you'll make it your first priority to become a developer, or focus on another activity around open source software (like translations, graphics, system administration, propaganda, obviously coding isn't the only necessary in the open source software ecosystem)! </p><p><font color="#00ff54">Finally if you're not interested in open source</font>, and just want to get an idea what it is about, you'll be amazed to see a few thousands of people discussing passionately about it, and you will have the chance to see this software in action, as there is plenty of equipment and the teams behind the software willing to solve all your questions. And what a better way to get introduced to Firefox, or Fedora Linux, or OpenOffice, by talking to these project's communities, that will be there, with plenty of computers for demonstration reasons!</p><p> <font color="#ff0005">Entrance to FOSDEM is free of charge and help is provided to newcomers from the big organizing team, which is populated by volunteers.</font><br /><br />I'd dare to say FOSDEM is one of the ultimate computer related events, not only for people interested in open source, but also practically everyone that works with computers or studies computer science. <b>CS university classes should sponsor their students to attend this two days event</b>, happening every year at Brussels. Also, IT companies could do this, sponsor people to travel in Brussels for two days to attend the event. <br /><br />If you are involved on an open source project, maybe you should consider into presenting it at FOSDEM! <a href="http://fosdem.org/2009/call_for_lightningtalks" title="Lightning talks">Lightning talks</a> (15 minute talks) is the correct place for this. Not only your project will get some publicity, you might also <b>attract developers</b> to join the project, which is something more or less all open source projects are in continuous need of! And what a better place to brainstorm about your project, than a place were a few thousands of developers are hanging around for two days!<br /><br />If you've heard of FOSDEM and willing to pay a visit, just do it, this will be worth it 100%. It might be a little early to organize a trip at the moment (FOSDEM is taking place in Brussels, 7 and 8 February), but if you're willing to arrange a talk for your project, there are some deadlines, so better register now. <br /><br />At <a href="http://archive.fosdem.org/2008/" title="http://archive.fosdem.org/2008/">http://archive.fosdem.org/2008/</a> you can find the archives of FOSDEM 2008. Slides, presentations, videos, photos and all material from last year's FOSDEM!</p> <p>&nbsp;</p><p><a href="http://fosdem.org/" title="Fosdem"><img hspace="0" vspace="0" border="0" align="baseline" src="http://blog.abiss.gr/mgogoulos/resource/fosdem_2009.jpg" alt="Fosdem 2009!" style="width: 463px; height: 97px;" /></a></p><p>&nbsp; <br /></p><p>Just received the call for participation for <a href="http://fosdem.org/" title="FOSDEM 2009!">FOSDEM 2009</a> from one of the organizers. <b>FOSDEM is THE event to visit</b>.</p><p><font color="#00ff54">&nbsp;If you're a developer</font>, you'll have the chance to attend some awesome presentations from the people that create major open source programs, such as GNOME, KDE, Firefox, plus meet these people, discuss and exchange opinions!</p><p> <font color="#02ff00">If you're not a developer</font>, but interested in open source software, trust me after two days in FOSDEM you'll make it your first priority to become a developer, or focus on another activity around open source software (like translations, graphics, system administration, propaganda, obviously coding isn't the only necessary in the open source software ecosystem)! </p><p><font color="#00ff54">Finally if you're not interested in open source</font>, and just want to get an idea what it is about, you'll be amazed to see a few thousands of people discussing passionately about it, and you will have the chance to see this software in action, as there is plenty of equipment and the teams behind the software willing to solve all your questions. And what a better way to get introduced to Firefox, or Fedora Linux, or OpenOffice, by talking to these project's communities, that will be there, with plenty of computers for demonstration reasons!</p><p> <font color="#ff0005">Entrance to FOSDEM is free of charge and help is provided to newcomers from the big organizing team, which is populated by volunteers.</font><br /><br />I'd dare to say FOSDEM is one of the ultimate computer related events, not only for people interested in open source, but also practically everyone that works with computers or studies computer science. <b>CS university classes should sponsor their students to attend this two days event</b>, happening every year at Brussels. Also, IT companies could do this, sponsor people to travel in Brussels for two days to attend the event. <br /><br />If you are involved on an open source project, maybe you should consider into presenting it at FOSDEM! <a href="http://fosdem.org/2009/call_for_lightningtalks" title="Lightning talks">Lightning talks</a> (15 minute talks) is the correct place for this. Not only your project will get some publicity, you might also <b>attract developers</b> to join the project, which is something more or less all open source projects are in continuous need of! And what a better place to brainstorm about your project, than a place were a few thousands of developers are hanging around for two days!<br /><br />If you've heard of FOSDEM and willing to pay a visit, just do it, this will be worth it 100%. It might be a little early to organize a trip at the moment (FOSDEM is taking place in Brussels, 7 and 8 February), but if you're willing to arrange a talk for your project, there are some deadlines, so better register now. <br /><br />At <a href="http://archive.fosdem.org/2008/" title="http://archive.fosdem.org/2008/">http://archive.fosdem.org/2008/</a> you can find the archives of FOSDEM 2008. Slides, presentations, videos, photos and all material from last year's FOSDEM!</p><p>&nbsp;</p><p>(the call for participation as can be found at http://fosdem.org)<br /></p><p>FOSDEM is probably the most developer-oriented Free and Opensource<br />conference, taking place in Brussels, Belgium on Saturday 7 and Sunday 8<br />February 2009. Apart from having many invited speakers, the conference<br />offers developer rooms, stands and lightning talks to projects from the<br />Free and Opensource community.<br />We hereby welcome proposals from projects to participate in organizing a<br />devroom, manning a stand or holding a lightning talk.<br /><br />As every year, we have only a limited number of rooms, space for stands<br />and lightning talk slots. Since we always receive more requests than we<br />can host, a committee within the FOSDEM organizing team will review all<br />proposals. Selection will be based on possible impact, our experience of<br />previous editions and diversity in the offerings.<br /><br />*** Devrooms<br />We offer large projects a devroom during the conference. A devroom is a<br />room in which projects can organize their own schedule made of<br />presentations, brainstorming and hacking sessions. Our goal is to<br />stimulate developer collaboration and cross-pollination between<br />projects, and as such we strongly favor projects with similar goals and<br />domains to host a devroom together.<br /><br />See http://fosdem.org/2009/call_for_devrooms_and_stands<br /><br />*** Stands<br />We offer stands to projects that want to present themselves to the<br />visitors in a more personal fashion. Stands can be used to share<br />information, demo software, sell merchandizing or give away goodies.<br /><br />See http://fosdem.org/2009/call_for_devrooms_and_stands<br /><br />*** Lightning talks<br />We offer lightning talks to all other projects that want to present<br />themselves. A lightning talk is a short talk in which a project can<br />introduce itself, talk about recent developments, or share exciting new<br />directions.<br /><br />See http://fosdem.org/2009/call_for_lightningtalks<br /><br />FOSDEM 2009 will be the 9th edition of the event, which has been<br />steadily growing every year in importance and in the number of visitors.<br />Our goal is to provide a platform to Free and Opensource projects to<br />meet, discuss, present their current and future developments, both to<br />their own developer&nbsp; and user community as to other projects that are<br />present. Given the large amount of active contributors from many<br />different projects present during the conference, it is an exceptionally<br />well suited occasion to share goals and ideas with people from other<br />communities, which is something we strongly encourage and do our best to<br />support. Of course, the event only lives through the projects that take<br />part in it, and through the many FOSS contributors who attend. We merely<br />do our best to provide the best possible service to the FOSS community<br />at large.<br /><br />*** Key dates:<br />* 2008-11-22: Deadline for devroom &amp; stand requests<br />* 2008-11-30: Devroom &amp; stand acceptance notification<br />* 2008-12-26: Deadline for lightning talk requests<br />* 2008-12-29: Lightning talk acceptance notification<br />* 2009-01-09: Deadline for final devroom &amp; lightning talk schedules<br />* 2009-02-07 to 2009-02-08: FOSDEM 2009<br /><br />For more information, visit http://fosdem.org/ </p><p>&nbsp;</p><p> </p> http://blog.abiss.gr/mgogoulos/entry/security_event_athens_digital_week Security event @ Athens Digital Week markos 2008-10-16T13:35:16-07:00 2008-10-16T13:41:52-07:00 <p> </p><p><img hspace="0" vspace="0" border="0" align="baseline" src="http://blog.abiss.gr/mgogoulos/resource/logo-core.gif" alt="Athens Digital Week logo" /></p> <p>As part of <a href="http://www.athensdigitalweek.gr" title="Athens Digital Week">Athens digital week</a> , a security session is going to take place on Saturday 18, from 18:00 to 20:00! <br /></p><p>Athens digital week is a six days technology event (13 to 18 october) that happens in Gazi, Athens. Many talks and happenings will take place these days, across different disciplines and areas, such as space, visual arts, open source and robotics to name a few. If you live in Athens, definitely have a look at the <a href="http://www.athensdigitalweek.gr/files/talkzone_program-1.pdf" title="Athens Digital Week program">program</a> . </p><p>At the security session I am going to give a <b>20 minute talk on web security</b>, the title of the presentation is <font color="#00ff54">&quot;Web security, past &amp; future&quot;</font> and in case you are interested you can <a href="http://istlab.dmst.aueb.gr/~markos/athens_digital_week.pdf" title="Web security, past and future">find it here</a> . This talk will focus on several issues that are important to IT security, at least in my opinion. I tried hard to include content that not so security savvy people can follow, while those keen on the field will find interesting as well. Hope you'll enjoy the slides and/or presentation and will be happy to see you there! </p><p><img hspace="0" vspace="0" border="0" align="baseline" alt="Web security, past and future" src="http://blog.abiss.gr/mgogoulos/resource/athensdigitalweek.png" /><br /></p>