eNBeWe.de – Coding, Life and more …

33C3 Watchlist

Okay, the 33C3 is over for quite some time and I didn’t write about it. Short form: I was there, it was amazing, I was sick afterwards.

I havn’t seen lots of talks yet, but here is my watchlist:

3 Years After Snowden: Is Germany fighting State Surveillance?
33C3 Closing Ceremony
33C3 Infrastructure Review
33C3 Opening Ceremony
A Data Point Walks Into a Bar
A look into the Mobile Messaging Black Box
A world without blockchain
An Elevator to the Moon (and back)
Anthropology for kids – What is privacy?
ATMs how to break them to stop the fraud
Berechnete Welt
Beyond Virtual and Augmented Reality
Bonsai Kitten waren mir lieber – Rechte Falschmeldungen in sozialen Netzwerken
Bootstraping a slightly more secure laptop
Build your own NSA
Building Custom Pinball Machines
CCC-Jahresrückblick 2016
Check Your Police Record!
Console Hacking 2016
Copywrongs 2.0
Corporate surveillance, digital tracking, big data & privacy
Datenschutzgrundverordnung: Rechte für Menschen, Pflichten für Firmen & Chancen für uns
Deploying TLS 1.3: the great, the good and the bad
Der 33 Jahrerückblick
DIE NSU-MONOLOGE / NSU-MONOLOGLARI
Die Sprache der Populisten
Dieselgate – A year later
Dissecting HDMI
Dissecting modern (3G/4G) cellular modems
Do as I Say not as I Do: Stealth Modification of Programmable Logic Controllers I/O by Pin Control Attack
Downgrading iOS: From past to present
Eavesdropping on the Dark Cosmos
Eine kleine Geschichte der Parlamentsschlägerei
Einführung zu Blockchains
Es sind die kleinen Dinge im Leben
Everything you always wanted to know about Certificate Transparency
Exploiting PHP7 unserialize
Fnord-Jahresrückblick
Freakshow
From Server Farm to Data Table
Genetic Codes and what they tell us – and everyone else
Geolocation methods in mobile networks
Gone in 60 Milliseconds
Hacking the World
Haft für Whistleblower?
Hebocon
Hochsicherheits-Generalschlüssel Marke Eigenbau
How Do I Crack Satellite and Cable Pay TV?
How do we know our PRNGs work properly?
How physicists analyze massive data: LHC + brain + ROOT = Higgs
Intercoms Hacking
Interplanetary Colonization
Irren ist staatlich
Kampf dem Abmahnunwesen
Lasers in the sky (with asteroids)
Law Enforcement Are Hacking the Planet
Lockpicking in the IoT
Make the Internet Neutral Again
Make Wi-Fi fast again
Memory Deduplication: The Curse that Keeps on Giving
Methodisch inkorrekt!
Million Dollar Dissidents and the Rest of Us
Nicht öffentlich.
Nintendo Hacking 2016
No Love for the US Gov.
No USB? No problem.
On Smart Cities, Smart Energy, And Dumb Security
On the Security and Privacy of Modern Single Sign-On in the Web
Pegasus internals
Predicting and Abusing WPA2/802.11 Group Keys
Privatisierung der Rechtsdurchsetzung
PUFs, protection, privacy, PRNGs
Realitätsabgleich
Recount 2016: An Uninvited Security Audit of the U.S. Presidential Election
Retail Surveillance / Retail Countersurveillance
Routerzwang und Funkabschottung
Searchwing – Mit Drohnen leben retten
Security Nightmares 0x11
Shining some light on the Amazon Dash button
Shut Up and Take My Money!
Software Defined Emissions
Space making/space shaping
SpiegelMining – Reverse Engineering von Spiegel-Online
SpinalHDL : An alternative hardware description language
State of Internet Censorship 2016
Stopping law enforcement hacking
Surveilling the surveillers
Talking Behind Your Back
Tapping into the core
Technische Aufklärung live
Technologien für und wider Digitale Souveränität
The DROWN Attack
The Economic Consequences of Internet Censorship
The Fight for Encryption in 2016
The Global Assassination Grid
The High Priests of the Digital Age
The Moon and European Space Exploration
The Ultimate Game Boy Talk
The Universe Is, Like, Seriously Huge
The Untold Story of Edward Snowden’s Escape from Hong Kong
The woman behind your WiFi
Understanding the Snooper’s Charter
Untrusting the CPU
Virtual Secure Boot
Warum in die Ferne schweifen, wenn das Ausland liegt so nah?
Welcome to the Anthropocene?
What could possibly go wrong with <insert x86 instruction here>?
What’s It Doing Now?
Wheel of Fortune
Where in the World Is Carmen Sandiego?
You can -j REJECT but you can not hide: Global scanning of the IPv6 Internet
Zwischen Technikbegeisterung und kritischer Reflexion: Chaos macht Schule

My Take on DNSSEC – Part 3: How to configure it in BIND (cancelled)

Just as a quick note here:
I originally planned to do my third part on DNSSEC with configuration hints using the popular DNS server BIND. At the moment I also use BIND for my setup.

Now I discovered the „Advanced Secuity Notifications“ at ISC, which sells prior warnings about security issues in BIND. Personally, I don’t want to support this model.

Instead I am currently migrating to another DNS server implemenation, YADIFA, which I will then write about. But first I need to check my setup using this server.

Update: Maybe I will switch to Knot DNS instead of YADIFA. They seem to be both fairly equal in features. To the outside spectator YADIFA seems to be a dead project, even though they published a release in mid-december. The development is done by EUnic, the guys behind maintaining the .eu-domain. They seem to have some internal development/issue tracking/etc. and they only send the releases to GitHub.
In contrast, Knot DNS, being maintained by cz.nic, is more open in their development.

My Take on DNSSEC – Part 2: How does it work?

As I already explained in Part 1, the current state of DNS is pretty insecure. The goal of DNSSEC is to improve this situation. Here is how that (should) work. I won’t go into cryptographic details here, but just show the general behaviour.

Lets have a look at the domain testmichhartundwild.de. There is a DNS server responsible which provides some general records.

There is no DNSSEC here and every record could be manipulated by an attacker.

Now we activate DNSSEC. To do so, we generate cryptographic keys and use these keys to sign the records in the zone. Let’s not talk about why we use multiple keys here. It would work with just one key, but we have reasons to use more than that. (The small green arrows in the images show existing signatures)

Now this zone is signed by the DNSKEYs and every user could verifiy the signatures against the key. There is still a problem though. How can we trust the keys? The attacker could simply replace the keys and create his own „valid“ signatures.

To overcome this problem we need the cooperation of the „upstream“ domain, in this case „.de“. We publish the fingerprint of the first DNSKEY as a DS record in the TLD. The TLD uses its own key to sign this fingerprint. This leads to a trustworthy DNSKEY in our zone. But that only works if we have a way to trust the keys of the TLD.

Basically we are in the same situation as before, needing a way to verify the keys of the TLD. So we do the same as before and the TLD publishes the fingerprint in the parent root domain.

And again we are in the situation of needing to trust the root key. But now we don’t have any parent zone to publish the key fingerprint. The solution is pretty simple. We give everybody the fingerprint of the root key. Every piece of software that wants to verify the dnssec signatures is just preloaded with the root key. For example the bind DNS server has this part in the configuration:

        # ROOT KEY: See 
        # https://data.iana.org/root-anchors/root-anchors.xml
        # for current trust anchor information.
        # NOTE: This key is activated by setting 
        # "dnssec-validation auto;" in named.conf.
        . initial-key 257 3 8 "AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjFFVQUTf6v58fLjwBd0YI0EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoXbfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/QZxkjf5/Efucp2gaDX6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpzW5hOA2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relSQageu+ipAdTTJ25AsRTAoub8ONGcLmqrAmRLKBP1dfwhYB4N7knNnulqQxA+Uk1ihz0=";

Now we are able to verify all the records by following the signatures until we reach the root key.

This concludes the general mechanism of DNSSEC. In the next part we are going to have a more technical look on how to configure a DNS server to properly generate DNSSEC signatures and secure their zone.

My take on DNSSEC – Part 1: Why do I need that?

DNS [1] is probably one of the most important protocols on the internet. Everybody uses it countless times each day, usually without even noticing it. Every time somebody visits any website, every time somebody sends a mail, every time somebody wants to do literallly ANYTHING on the internet, a DNS server is involved.

What it does is fairly straightforward: It is a dictionary of domain names (like enbewe.de or example.com) and the associated IP address (like 203.0.113.17 or 2001:DB8::12). If a user wants to access a website at a certain domain, the browser first queries a DNS server for the IP address of the domain and then connects to the server with that address. Essentially it is a phonebook [2] for the internet.

Sadly the protocol is about as ancient as it can be in the internet, being developed in 1983. During these early days, nobody designed protocols to be protected against malicious attacks. For this reason DNS is horribly insecure and a largs-scale attack on the internet could probably render the entire internet unusable (for some time) [3]. But it can also be compromised in more subtle ways, i.e. directing users to wrong servers for phishing attacks.

To improve the situation, the DNSSEC protocol has been developed. It could be argued that DNSSEC is far from perfect [4] but at least it is a step in the right direction. For this reason I want to talk a bit about DNSSEC, what it does, how I use it on my server and how it can be used in clients.

But that will start in part 2 …

Installing pyLoad on a Raspberry Pi with Raspbian Jessie

If you are anything like me [1], you like to have dedicated Services which do stuff for you. One of the Services I like in particular is pyLoad [2]. This program you be used to automatically load files from OneClick Hosters. This is esspecially useful if you run this on a small computer like the Raspberry Pi [3] and dump the downloaded data to a central Storage like a NAS.

There are lots of blogposts out there which detail how to install pyLoad on a RaspberryPi [4][5][6]. For most parts I don’t really want to say anything against these, but there was one point in particular that I dislike about all of these. This is the reason why I am now writing my own guide. So let’s get started.

„Installing pyLoad on a Raspberry Pi with Raspbian Jessie“ weiterlesen

32C3 – My personal video list

Hi there,

After quite a long time of silence (*cough* Sorry about that) I think I can write a new post.

At the end of last year I was at the 32C3. That is the 32nd Chaos Communication Congress. This year about 12000 nice people got together and captured the Congress Center in Hamburg for four days. Apart from the giant program of talks (which I will talk about in a second) the ‚main‘ part of the congress is the opportunity to meet other peopel and have a blast of a time. I managed to meet a lot of nice people and I learned soo much during the time that I will need some time to fully sort that in my mind.

But back to the talks. This year I (again) volunteered as an Angel. These angels are the helpers that take shifts and do all the various jobs that need to be done to get the congress running. That starts at manning the bars or the cashier desk, controlling the access to the congress area at the entries, sorting empty bottles in the storage area but also range to announcing the speakers at the talks or operating the cameras which film the talks. This last one is a task which I did for the first time this year. I had lots of fun and learned some basic stuff about image composition and tracking speakers on stage. The talks I helped filming are also annotated in the list below.

All the talks are available at media.ccc.de and the following list just shows my personal favorites. There are still some vidoes which I didn’t get to watching these are still missing from my list.

Opening Event
Keynote – Keynote … Surprising speaker and nice message.
„Fluxus cannot save the world“ – I filmed the close-up on this one. The guest speaker surprised me here and jumped from stage into the audience. I didn’t know about the fluxus movement beforeheand and am still not sure whether I fully understand what they are doing.
(In)Security of Embedded Devices‘ Firmware – Didn’t get to wathcing this (yet) but heard good things about it. Definitely on my watchlist.
(Un)Sicherheit von App-basierten TAN-Verfahren im Onlinebanking – The next proof why it is stupid to bundle the two-factor authentication app on the same device as the controlled app.
32C3 Infrastructure Review – A standard talk about the congress. Some nice data about the network and other infrastructure on congress.
3D printing on the moon – Sending a 3D-printing roboter to the moon … Do I need to say more?
A Dozen Years of Shellphish – Quite a disturbing talk about automated exploiting. I am not sure what I think (ethically) about this one.
Beyond Anti Evil Maid – How to protect your computer and detect malicious software in the boot process. Made me want to try coreboot but sadly not working with my devices yet. Also I filmed one camera on this one, but that was quite easy.
Beyond your cable modem – This talks leaves some barren wasteland where there used to be the believe in network security in cable internet networks.
Breaking Honeypots for Fun and Profit – A nice talk about honeypots. I wanted to install a honeypot for some time and I am not sure I still want that now.
Buffering sucks! – Calculating the price of buffering on global economy.
Compileroptimierungen für Forth im Microcontroller – I filmed this one but didn’t really get the point on this one. Didn’t get into Forth before this one, but seems like a nice language.
Crypto ist Abwehr, IFG ist Angriff! – Summing the experience with freedom of information. Nice talk.
Ein Abgrund von Landesverrat – The blog netzpolitik.org was charged with treason. This is the summary of their experience.
Fnord-Jahresrückblick – A standard talk. I think it looses its appeal over time but still nice.
Grundrechte gelten nicht im Weltall! – A grat reading of protocols from investigations against our intelligence agencies. A must view.
Hardware-Trojaner in Security-Chips – Trojans in software a nothing new, here is the talk about the same thing in hardware.
How hackers grind an MMORPG: by taking it apart! – After two years of WoW I was interested in this one. A nice talk about some general reverse engineering of network protocols.
Intelexit – Making intelligence officers leave thir jobs. A great and funny talk. I filmed the close-up on this one and was exausted after the talk because the speaker walked around stage A LOT. But the camera was great and it was really fun doing this.
Jahresrückblick des CCC – Summing up the activites of CCC in 2015. Nothing more, nothing less.
Let’s Encrypt — What launching a free CA looks like – Free encryption for everyone. Fuck yeah!
Logjam: Diffie-Hellman, discrete logs, the NSA, and you – Not viewed yet but definitely going to.
Methodisch inkorrekt! – Watch this! Watch this! Watch this!
NSA-Untersuchungsausschuss: Zwischen Aufklärungswillen und Mauern aus Schweigen – Another talk about the intelligence agencies and the surrounding scandals.
Neither Snow Nor Rain Nor MITM… The State of Email Security in 2015 – Secure your eMail more. This talk has no real suggestions how to do it but shows what is available.
QRtistry – Making art with QR codes. Also gives some nice explanations about QR codes and where to put data in them.
Security Nightmares 0x10 – Having nightmares about security? This talk won’t make it better.
Shopshifting – Since watching this talk I don’t want to use my debit card for payment anymore. Huge holes in the security of payment terminals.
Wie man einen Blackout verursacht – How to break the power distribution network. It is not that easy.
Closing Event

As I said there are still lots of talks to be watched. I will probably post a second list then.

The Company Strikes Back & Return of the Notebook

For some time now, I haven’t been writing here. But since I was asked how the story about my notebook ended, I thought I should post an update here.

Yes, I got my notebook back. It’s been three month now, that I have been using it, and everything seems to be fine. I wasn’t sure about that, when I received the package, so I documented every step of unboxing. 😉

I reinstalled my Linux after that and I was glad that the problem with the display was gone and that everything worked fine. I have a small problem with standby under Linux but I believe that problem is on the software side.

About two weeks after I received the package, I got a letter from DHL, regarding a lost package. They wanted to know if I could shed some light on the missing package with a notebook inside. In the letter was a list of the contents of the package and my notebook was declared with a value of 150€. I was a bit sad when I saw that.

A new hope

It looks like the DHL managed to pull my notebook back out of the lava pit it fell into. I received a mail from Lenovo that my notebook was returned to them, due to a wrong address. I phoned them and they sent it again.

Currently all I have is a tracking number, but it is not known to the DHL at the moment. I am beginning to hope that I might get my notebook back, but I’m not convinced until I have it in my hands again.

Whatever happened to my Notebook?

Last year, around the end of March, I bought my new Laptop. I wanted a small device with a 11inch screen but with still a bit of punch so I was looking for a 4th generation i5 or i7 and 8GB of ram at least. I was searching for some time and all I came up with was the Apple MacBook Air 11. Ethically I can’t support buying Apple devices, so this was no real option, though I was damn near buying one nonthetless.

That was when I found the Lenovo Yoga 11. It came as a 11inch touchscreen device with a good i5 and 8GB of ram … so almost the perfect fit. The 360° display was no real thing for me, as I was looking for a laptop, but I didn’t object too much. The WiFi is only 2.4 GHz but I only discovered that some time later. I came across a cheap deal for the device, so I bought it.

For about 9 months I was really happy with the device. I even came to use the device in tablet mode sometimes.

Then a defect started to show. The display started to show ghost images on the edges. This was obviously a faulty display and should be fixed by warranty. I wasn’t able to send it to repair at that moment, as I needed the device to write my master thesis. Then, after my thesis was done and I could spare the notebook for some time, I sent it in for repair.

That was the last time I saw that device.

After not receiving any word from the support I phoned them about 3 weeks after sending it in. That must have been on about the 4th of May. The support told me „It’s already fixed and on the way. It should be at your place in the next days.“ – Yay. But nothing arrived.

About a week later I phoned them again. This time I got a tracking number from them. You can check the status here. At the time of writing, this says „Instruction data for this shipment have been received“ … since the 30th of April. About two phone calls later, I got the support to start an inquiry on my shipment.

The inquiry came up with „Should be delivered until end of the week. Otherwise it will come back to us and be sent again.“ – Okay, there is still hope that I will get my laptop back.

My last phone was on monday, when the support employee mentioned the word „replacement“ for the first time. I wasn’t really happy about that.

Today I received an email from Lenovo, stating that the parcel is lost by DHL. Unfortunately, they couldn’t provide me with an adequate replacement. For this reason, they want to give me my money back.

So the magic question is: Where the damned fucking fuck is my notebook? Somebody needs a high five … in the face … with a chair. And I would really like to know who that is.

Damn it, I am pissed!

tldr:

Don’t ever rely on Lenovo support, they will leave you stranded without your hardware.

Why I like my students

This morning I was sitting at the Klausureinsicht for last terms course on operating systems. This is where students can get their results off the final exam and have a look at the corrections of the exam.

One of the students, that I advised throughout the last term, came up to me and presented me with a small present.

The student was even happier when (s)he was presented with a passing grade for the course.

And that is why I like my students and why I love teaching.