RantMedia/RantRadio/RantTV Community > RantAudio > NewsReal > Decoy servers
Pages: [1]
« previous next »
  Print  
Author Topic: Decoy servers  (Read 685 times)
mation
Ranter Level 2
**

Karma: 2
Posts: 52


View Profile
« on: September 22, 2008, 04:19:39 PM »
I wanted to play with Sean's idea from the Newsreal 9/22 show of throwing an encrypted server in an inaccessible place and leaving a 'blinking light' box out as a decoy in the event that a wog should be raided.  Some random thoughts on the subject:

Would it be enough to setup an encrypted fileserver using something like CryptoNAS or FreeNAS or would it be necessary to augment the crypto further using an ssh or OpenVPN tunnel?

My current network already uses a central gateway machine that is naturally the blinking light/decoy machine.  Logging can be turned off, sent to the NAS or put on an encrypted filesystem of its own just to add another layer of obfuscation. 

How would be the best way to hide the physical location of the NAS?  CAT cable is obvious and needs to be physically hooked to the rest of the network.  Anyone paying attention will notice a red light on the switch.  Wireless is not secure.

What kind of discipline needs to be practiced to make sure that all this effort isn't compromised by a random CD or USB drive?  If more people practice the discipline on mundane information then it becomes harder to insinuate that a particular piece of encrypted information is incriminating.  And the look on the investigator's face when they realize there are only pictures of cute kittens...
Logged
INT03h
Ranter Level 1
*

Karma: 1
Posts: 5


View Profile
« Reply #1 on: September 25, 2008, 11:46:00 AM »
I think the idea he put forward was more of a "dumb terminal" approach, where you would use VNC or ssh to connect to the other box and use it as the actual computer, not just storage. If storage is all you are looking for, CryptoNAS looks good.

I would say that wireless, although not as secure and not as fast as cables, makes the box much harder to notice unless the people who are raiding your house know what they are doing, and normal cops usually don't have network analyzer tools. WPA is still a strong encryption standard, just set up all the security option on the wireless router.

I'm slightly confused by the random CD or USB question, no one should have physical access to the box, and autorun should definitely not be enabled in windows, same goes with auto-mounting in *nix. If the computer doesn't access the device, then it can't harm the network.
Logged
mation
Ranter Level 2
**

Karma: 2
Posts: 52


View Profile
« Reply #2 on: September 25, 2008, 06:35:00 PM »
Thanks for your thoughts, INT03h.  Had to figure out what that was in the interrupt table... I'll answer in a bass ackwards way, working from the bottom up.

If we are going to all the trouble to keep our data private, what about removable media?  I've looked at how to create encrypted iso images under Linux and it isn't straightforward.  Windows probably has some program that handles the task but unless it is dead easy, how often will it be used?  Seems a little shortsighted to not include removable media in a secure protocol.

I still don't like wireless but I see your point.  It seems a little pat to say that opposing interests (LEOs, private security, hackers) won't be running kismet and notice traffic.  We should expect sophistication from those who intend to breach our privacy.  Still, turning off beacons, cranking down power levels on the radio and using WPA would be a good start.

Hadn't looked at the issue as a remote desktop type setup before but immediately I see possibilities.  Would setting up virtual machines help improve privacy?

Edit:  Just found out that AcetoneISO has an option to encrypt iso images but I'm not sure what method it uses
« Last Edit: September 25, 2008, 06:47:39 PM by mation » Logged
101011
Ranter Level 4
****

Karma: 20
Posts: 275



View Profile WWW
« Reply #3 on: September 29, 2008, 11:50:43 PM »
http://smf.rantradio.com/patrolling-with-sean-kennedy/idea-for-a-diy-offsite-data-storage-server/0/
Logged
the-anarchist.net
public key
d/\t/\m/\gg0+
Ranter Level 3
***

Karma: 13
Posts: 154


spreading the virus ...one AudioCD at a time.


View Profile
« Reply #4 on: October 28, 2008, 01:45:33 AM »
Just finished the season of 24 where the bad guys were sneaking a data connection out of the hide out via the power lines.  Remember those janky network adapters you could get that act as an ethernet bridge between 2 pcs?  that's a sweet idea. 

I guess it's called Powerline Networking http://www.newegg.com/Store/SubCategory.aspx?SubCategory=294&name=Powerline-Networking

Using this method, you could network to anything else plugged in. =)
Logged
mation
Ranter Level 2
**

Karma: 2
Posts: 52


View Profile
« Reply #5 on: October 29, 2008, 06:23:01 AM »
I was just looking at those power line adaptors in a store, wondering how badly they would leak data outside of the house.  Broadband over powerlines has had significant resistance from amateur radio operators who claim that it would interfere with radio signals.

According to Wikipedia, the signal can be received outside the home but you can use the built in encryption to secure that data.  As long as there is more than two machines using the powerline network you could hide a machine without drawing suspicion. 
Logged
Pages: [1]
  Print  
« previous next »
 
Jump to: