Passive Aggressive Defense

Presented at DerbyCon 3.0 All in the Family (2013), Sept. 28, 2013, 4 p.m. (25 minutes)

As an industry, we’re still fighting amongst ourselves about whether or not we should hack back when a zombie machine starts brute forcing our web server. As a group, we’re all in agreement that pwned servers need to be removed from the net immediately and the admins server license revoked. While the legalities of hackback are being fought out, we’re left with no real recourse outside of firewall rules and IPS filters.

I’m attempting something slightly different. Using open source tools, tiny shell scripts and peer pressure I’m attempting to shame server admins around the world into stepping up their game.


Presenters:

  • Jason Clark
    Jason is a security wonk from the middle of america. He spends his days on the blue team, his nights hacking embedded devices and most of the spring chasing tornadoes. You can follow his security ramblings on twitter at @ScratchHax and his DIY/Making and tornado chasing at @FearThePenguin

Links: