From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from jazzband.ncsc.mil (jazzband.ncsc.mil [144.51.5.4]) by tycho.ncsc.mil (8.9.3/8.9.3) with ESMTP id VAA22750 for ; Thu, 8 Feb 2001 21:32:55 -0500 (EST) Received: from jazzband.ncsc.mil (localhost [127.0.0.1]) by jazzband.ncsc.mil with ESMTP id CAA22689 for ; Fri, 9 Feb 2001 02:32:53 GMT Received: from mail.storm.ca (storm.ca [209.87.239.69]) by jazzband.ncsc.mil with ESMTP id CAA22685 for ; Fri, 9 Feb 2001 02:32:52 GMT Received: from storm.ca (ppp-209-87-255-2.ottawa.storm.ca [209.87.255.2]) by mail.storm.ca (8.9.3+Sun/8.9.3) with ESMTP id VAA05871 for ; Thu, 8 Feb 2001 21:32:49 -0500 (EST) Message-ID: <3A8356AB.43BB95EC@storm.ca> Date: Thu, 08 Feb 2001 21:32:11 -0500 From: Sandy Harris MIME-Version: 1.0 To: selinux@tycho.nsa.gov Subject: Cature the flag (was Re: Selinux kernel patches) References: <200102062028.PAA03888@coalstack.epoch.ncsc.mil> <20010208184118.G13451@vnl.com> Content-Type: text/plain; charset=us-ascii Sender: owner-selinux@tycho.nsa.gov List-ID: Dale Amon wrote: > > On Tue, Feb 06, 2001 at 03:28:44PM -0500, Pete Loscocco wrote: > > We think that we have a good architecture and that it warrants > > consideration. ... > > Just a wild suggestion. When things are well along and > everyone thinks the system is ready, why not put a box > out on a public network for a game of "capture the flag"? The annual Defcon conference (http://www.defcon.org/) has run such a contest, on a LAN at the conference, for several years now. Some firewall vendors bring machines for use as targets. > Offer a free T-shirt "I cracked the NSA" to anyone who > succeeds *and* tells precisely how it was done. Set up > tests for system cracks both from fully external or from > various shell access levels. In addition to attackers' machines and target machiness, they have other machines doing packet logging so attacks can be analysed later. A web search on "defcon capture the flag" will turn up the rules, last year's logs and some discussion. -- You have received this message because you are subscribed to the selinux list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.