Vice-President
From Interlock Rochester Wiki
(→Officer Report 4/5/2011) |
(→Officer Report 5/7/2011) |
||
| Line 1: | Line 1: | ||
| - | = Officer Report | + | = Officer Report 6/7/2011= |
Group organization: | Group organization: | ||
* Addressed building manager issues | * Addressed building manager issues | ||
Revision as of 23:49, 7 June 2011
Officer Report 6/7/2011
Group organization:
- Addressed building manager issues
- Helped clean up
Community Work
- Ran BsidesROC - 150 attendees, 250 remote attendees, lots of fun and partying
- Ran Rochester2600
Member Projects
- Attended Defcon 19 Capture The Flag qualifiers
- Setup a low interaction internal and external honeypot on the warzone during hackathon
Officer Report 4/5/2011
Group organization:
- New mailing list setup (by Ben)
- Worked with Alex about setting up an Interlock table at BSidesROC. Volunteers?
Community Work
- Organized BSides Rochester on May 7th: 90% of my time
- Attended Notacon in Cleveland
Member Projects
- Not a lot of time this month: NFC research still in progress
Officer Report 4/5/2011
Group organization:
- coordinated Jason Scott screening of Get Lamp at RIT
- took SIG315 and NESIT hackerspace members on a tour of Rochester
- worked on troubleshooting website hack with Jason Ross
Community Work
- attended hackathon this month
- organizing Bsides Rochester
- planning on attending Notacon with members of SIG315
- attended RIT's ISTS as the Red Team
- organized Rochester 2600
Member Projects
- worked on arduino girl mannequin. Added project box from a linksys switch which connects the lights to the switch lights for diagnosing connection problems. Added a hole in her neck to directly power rather than running it into her skull. Tested connecting XBEE interface. Next step is to include an NFC reader inside of the girl that automatically performs a relay attack when in range.
- studying all that is NFC
Officer Report 3/1/2010
Group organization:
- requested a USRP group purchase
- started organizing a lock pick village with TOOOL
- Drafted two policies under the policies wiki category
- helped organize Lightning Talks
Community Work
- attended hackathon this month
- organizing Bsides Rochester
- attended Shmoocon
Member Projects
- worked on arduino girl mannequin. Successfully setup xbee controls. Next steps are to ad some network functionality and continue to model an arm.
- learned about Android hacking
- studying social engineering
Officer Report 2/1/2010
Group Organization:
- helped organize the Lightning talks this month
- helped along discussion on the mailing list
Community Work
- represented Interlock at the new hackerspace in Dulles, Reverse Space
- Talked to Sussuro about doing remote classes related to Metasploit
- talked to members from PS:One about things they're learning and design decisions
- Ran a 2600 meeting
- continued work on hacker community event BsidesROC
- invited 2 members from Buffalo to come out for Lightning Talks
- attended Shmoocon hacker conference in DC
Member Projects
- attended first official hackathon this month (23 hours total)
- recorded mad scientist stream of skull operation on the mannequin
- created plans for a new laser cut arm for the mannequin
- implanted a xbee controlled arduino brain into the mannequin
- acquired a mag stripe reader from Alvaro
Officer Report 1/2/2010
Group Organization
- Organized a trip to Regional Computer Recycling and Recovery. Subsequently figured how to recycle equipment for free.
- started sponsorship propaganda with Bryan; press kit, one page explanation
- Helped with yearly meeting
- Talked to accountant about taxes this year
Community Work
- Checked in with other hackerspaces. SIG, Buffalo Lab, PS:One
- continued working on a hacker community event BSidesROC
- Organized Rochester 2600 meeting
Web Admin Tasks
- created two blog posts on the website
- fixed the wiki page
- upgraded the wordpress version and mediawiki version
- added reCAPTCHA to wiki
Officer Report 12/7/2010
I took some time to work on administrative tasks like updating an induction checklist, improving the process for new members, and creating a "welcome to Interlock" document that covers a lot of details that are useful to new members. I've granted access to the other officers to make new email accounts. I attended the network infrastructure group meeting.
Officer Report 11/2/2010
Most of this month was in build up for Barcamp Rochester and Rochester Security Summit. I did a talk at Barcamp Rochester and ran a booth at RSS. I setup a connection to the ChaosVPN (with the help of the Syracuse Innovation Guild) which will leverage in some awesome services in the near future like the ChaosPhone, OpenCTF games, JabberCracking rainbow table web service, and more. I setup 3 lockpick stations for people to practice on and will be running a workshop on lock picking at the 2600 meeting this week. I have been attending the electronics class and making horribly functioning circuits on off hours. Bryan and I are still chasing down a projector for a multimedia project.
My goals for next month are to focus on more of the administrative side of Interlock, further enhance the security offerings at Interlock.
Officer Report 10/5/2010
Summary I spent most of last month at the Arduino class and brainstorming some geeky ideas with Bryan and Wayne related to a large scale multimedia project of sorts. I attended the Network Infrastucture group meeting. I've been working with JP Bourget and some of the organizers of the Rochester Security Summit to get Interlock a table in the CTF area and we will be supplying some alcohol for the after event networking event. I helped Brian provision the tool chest (from a nice Italian family) to compliment the workbench and I'm working on picking up some projector screens if they're still available from Craigslist.
RSS:
Rochester Security Summit is happening this month and Interlock has been given a table in the CTF area along with 2 tickets. We'll be coordinating the table, giving away drink tickets, and organizing an after event to showcase the space. I have to come up with an idea of giving away drink tickets in a simple way and will be looking for volunteers.
Officer Report 9/6/2010
Summary Finally finished negotiations with Frontier. They will be comping us a large amount of money for all the mess ups and even some extra for pain and suffering. We have yet to receive an updated bill though. We're still in between communication mechanisms between Facebook, Twitter, Meetup, and the website. Our plan is to get some members to help and form a unified system of communication.
Personal additions:
- I helped Wayne and Jeremy setup a door to start picking locks
- Talked to Jason about him putting on a lock picking class
- Purchased 10 door locks that don't have keys
- Provisioned a mannequin
- Made a duct tape Interlock logo outside of the space
Officer Report 8/3/2010
Summary I've spent this month on community outreach including attending a Buffalo Labs event, meeting with the Syracuse Hackerspace, coordinating the next bout of lightning talks, and meeting many of the other hackerspaces at Bsides and Defcon. The updated version of ChaosVPN has been ported to OpenWRT so we do not need a FON router anymore. Frontier and I have had scheduling conflicts but we expect that they will meet with us this week or the next. Website stuff has been updated to the latest version of Wordpress. The wiki has some issues that we could use help on. There was some talk about people upgrading the production network but nothing has happened.
Outreach
- Buffalo:Jeremy and I attended the Buffalo Hackerspaces BBQ event earlier in the month. We met a lot of the members there and discussed doing a co-event.
- Syracuse:Ben, Jeremy and I attended the Syracuse Hackerspace meeting in a Syracuse Bar. Attendees were interested in what we did from a business approach and we offerred to help out wherever we could.
- Defcon/Bsides:I attended Defcon and Bsides with Jeremy Ross. He introduced me to Mudge who is in charge of a DARPA project to get funding to a lof ot hackerspaces. I met some of the members from DenHack, AlphaLabs, Hacklab.To, DevNull, and PS:One. I met some people from Rochester that didn't know about the Rochester Hackerspace. My black Interlock shirt fit in well to the crowd.
- Lightning Talks: RIT/Remy Decausemaker, CoWorking Rochester/David Moffit, and I have been brainstorming about dates and setup for a Lightning Talk event at RIT's innovation center. When we have more details, we'll need volunteers to help out on the day of the event.
Frontier Our main Frontier rep had a family emergency leaving her out for a week so we have yet to sit down. I need to call back to confirm a time to meet with her and the regional General Manager to hash out the details of our bills.
ChaosVPN I attended the Defcon talk about the ChaosVPN and learned more about how it works. The OpenWRT version of the software was released a couple weeks ago at HOPE so we'll be implementing that as soon as I set some time aside for it, or another member feels like doing it.
Web Hosting Wordpress has been updated to the latest version. There were no updates for MediaWiki. We do have a problem with the MediaWiki installation instance because of the way we have updates setup. Some of the file attachments that we created are not working or are not linked properly. I could use some help on this.
Officer Report 7/6/2010
Summary We are working on linking up with the ChaosVPN/Agora Link as discussed previously. A Fon router with a custom firmware solution is going to be our best bet. I am still wrestling with Frontier to get the upgraded bandwidth and lower price. The plan is to upgrade this week.
Officer Report 6/1/2010
Summary The network update is that Bill has donated a new piece of equipment that will hopefully allow us to provide some basic services like LDAP authentication. Frontier has repeatedly been a problem and I have been leaving messages with our rep. With Alan and Ashley leaving, I'll be following up on more administrative tasks this month.
Tasks Complete (by members):
- setup a stable wireless solution
- provide production infrastructure
Next Steps:
- Provide a better technical documentation management system away from the discussion lists
- Draft policies
- Pursue issue with Frontier
- Support production network setup
Officer Report 5/4/2010
Summary: This month was follow up on existing goals. The network setup is functionally complete and we’ll be following up on proper documentation and labeling. Frontier is continuing to cause us problems that I’m spending a lot of time on. Next steps will be to establish some member services on the network (LDAP, file share, virtual machines) and establish the inter-hackerspace Agora link.
Network: Infrastructure is just about complete at which time we’ll move on to providing services on the network. We received a donation of 9 blade server but none of them have hard drives. One of the future needs will be hard drives that fit into the bays of the systems.
Tasks Complete:
- Physical network drops
- Switch/router configuration
- Physical cable organization
Tasks Incomplete:
- Employ labeling system for jacks
- Replace pfsense with a lower power device
- Setup a more stable wireless solution
Internet: Frontier has not followed up on their promises to discount our bill and provide double the service. I have been actively nagging our Frontier rep until they do.
Policies: One of the tasks of the VP role is to draft policies of the corporation. The induction and deduction checklist is drafted on the wiki as well as an acceptable use policy. More policies will be drafted and eventually evaluated for approval by the general members.
Items Completed from last month:
-
Add technical steps to induction and deduction checklist
• Finish installing network drops and configuring the switches on the network
Next Steps
- Provide a better technical documentation management system away from the discussion lists
- Pursue issue with Frontier and come to a conclusion
- Support final infrastructure changes
Officer Report 4/6/2010
Summary: The big items this month are related to networking and Internet. The physical and logical portions of the network are close to complete. We’ve received a lot of very important donations from members and non-members. Internet has been an issue trying to get the service that we’ve purchased. Overall, there are no major problems and we’re progressing quickly towards a great network setup.
Network: This month, members of the group have laid out the physical network, punched down jacks all around the space, helped coordinate purchasing of necessary parts, and started to lay out the framework for the network infrastructure. We received a lot of important donations related to the core networking. The current documentation for networking is on the wiki including subnet schemes and logical setup. [See Figure 1 and Figure 2]. There is private documentation that we’ll be storing in a yet to be determined location.
Network consists currently of a project, warzone, and production network. Project network is unmanaged but is connected to our main firewall to keep track of bandwidth and provide QoS if necessary. Warzone network is a dedicated info sec sandbox area. Production network supports the main services that Interlock provides to its members and guests. It’s sub-divided into servers, member wireless, member wired, and guest. Firewall rules are set up appropriately to restrict guest access.
Wireless access is provided to guests, members, and to the Warzone network. The member access point only supports 10 or 15 clients at one time so we’ll be replacing it with something that doesn’t have that restriction.
There is a new server donated to us that has ESXi on it. The hardware is good enough that we may be able to virtualize all necessary servers on it (ex. LDAP) without having to setup individual hardware. This will minimize power consumption. Web Site
Website is hosted under Dreamhost donated by Mark Manning. Interlock.org has the latest version of Wordpress as of 4/5/2010 as well as the latest plugins. The wiki is also hosted on Dreamhost (MediaWiki) and is the latest version. The wiki and Wordpress blog have had a few issues of spam but they’ve been easy to manage.
Mailing Lists We are using Google Groups to manage our 3 mailing lists: Interlock Rochester, Interlock Rochester Announce, and InterlockRocPrivate which is a director only mailing list. There have been only a few instances of spam on the mailing lists but not anything that’s a problem. There is some discussion about re-organizing the lists or going with a different software in the future but at this time, nothing has been officially planned.
Email Accounts Each user should have an email account hosted with Google Apps. We have 32 accounts and are allowed to have up to 50 accounts. This isn’t up to date so we’ll be updating the induction checklist to include this as new members join.
Internet We have functioning Internet access in the space provided by Frontier. The available download speed is only half of what our contract says we should have. Mark has had phone conversations every business day since 3/14 at 10:00am with the account rep to rectify the issue. Frontier has also had a billing mistake and over charged us. We have received quotes from Timewarner Cable to also provide service but continue to work with Frontier to either get the speed we requested or a cheaper rate.
Security We’ve installed an IP based webcam this month that has a dedicated line run back to the network rack. It hasn’t been configured at this point. The plan is to setup a closed circuit security system that monitors the door. No specific details of the software or configuration have been set yet.
Next Steps:
- Add technical steps to induction and deduction checklist
- Provide a better technical documentation management system away from the discussion lists (GIT)
- Pursue issue with Frontier and come to a conclusion
- Finish installing network drops and configuring the switches on the network
Long Term:
- Establish connection with Agora network
- Decide and setup member services (LDAP, file storage, VPN)
- Install better battery backups for the equipment
- Implement a security system
(omitted)
Figure 1. Physical network setup (omitted)
Figure 1. Logical network setup. NOTE: This is the proposed network setup and not necessarily the current one.
See full report: media:VP_Report_04062010.docx
