Tip:
Highlight text to annotate it
X
wat group setting up an open VPN server with injury claims and connecting to
pre-configured wifi channels on your Android device
all that and more this time on hack 5 this segment up at five is brought to
you by
the Ben Heck show blow Act five my name is Darren kitchen and is your weekly
doesn't acknowledge and here we are back in studio
I'm hanging out with Greg hey don't brag and actions can be joining us later in
the program but
person for mouse I want to thank everybody that
emailed me and supported me through back across Europe that was so much fun
and one of the things that I talked about during across your part of
no best practices of hacker travel really you know you're interested
laptops you're committed following year
you know I VP and an SSH tunnels and all those things he should just be actually
doing anyway whether or not you're going to
crazy borders the I I got so much feedback about this and i cant believe
that week
we touched on like ice is like going back to season 1
seven years ago we set up point by telling protocol
I N VPN using cash Windows XP
and at the time it was Ms chap one was
totally broken cell use MS jab bhi toothed the authentication protocol
that makes PPTP so easy to use
and why used a virtual private server to do a little pop top action and get
a VPN setup very quick in easily which is great because then you can do your
and Krypton tunnel traffic
over your phone and mostly like PPTP for its simplicity
and ubiquity basically any device under the Sun is going to support
point by telling protocol however it's not without caveats thank you add to my
kind
everybody else they emailed me I cant believe I missed this a deaf con twenty
by just for that reason or just running around like crazy it up *** I am
how I missed this one but Moxie is no Moxie as well david houghton
both I demonstrated a awesome
kick *** addition to their cloud cracking service check this out
the the cloud cracker brought blog talking about cracking ms. chapman
version 2 with a 100 percent success rate
and this is really awesome because david alton
I you're not familiar with his company does budget like FPS stuff and using
his pick-up computing project basically able to
I like crack a on and must have the two
the handshake an
you know no time at all in fact they've published
the open source a chap crack
application it over here on get *** Max's get home so you can go ahead and
start using that today
or Stephen integrated with cloud cracker again played around cloud cracker dot
com
basically you can upload hash and have a broken here to support NTL and WPA Shah
and the five and now and this chapter is into
the exact authentication mechanism that I was using all my phones VPN
wonderful I feel horrible for not
having a been aware of this and for even recommending
such a thing other was very easy to set up by can't recommend it now because
it's broken
obviously a and one in the reasons in fact the only reason really that
a even prefer to use something as simple as PPTP
was up not simply the fact that its ubiquitous its you can find it on i OS
devices on Android devices
how he could play set up on a blackberry and that's nice
are previously I know that we've talked about setting up EP ends with the
my favorites is Open VPN I'll because it open source
and the only caveat there's at the time there was no meal easy way to set it up
on a mobile phone on like an Android device without rooting it
and while reading is awesome don't get me wrong rom's are cool and all that
I'm not always necessarily keen on installing
a bin file from Bob's wrong farm
atter Obama's go to a new cyanogen then again I'm sure he's a great guy
I at some point you have to trust your vendor and in this case I'm using
samsung
however I was looking for something where I wouldn't have to root and
turns out time to change especially since 4.1
I love Android and now you can do it up in the PN
I'll without meeting group so that is what we're going to do we're gonna set
it up today
we're going to be put together Open VPN which is a awesome awesome project
and we talked about ways to do it detail before
arm but now what we're going to do you set one up
with untangle and so here's the thing untangle is
awesome software one it's made in the Bay Area so representin
to their sponsoring Act five with open source ok just can't throw that out
there right now however if you go back to season 7 before they
ever you act 5 existed you'll know that
we were setting up home brew servers with their software so I'm
one stoked that they're supporting act right now and too stoked that I can use
this
in a way that is just in perfect contacts with the kinda stuff that we're
doing right now
focusing on you know making sure we're secure when crossing borders or even if
not to increase international travel you should be setting this up so
I run AR untangle server at home
as my gateway per pretty much I'm
and we're going to follow-through how to set this up because it and Burris and
I'm doing it all in a virtual machine cuz that
actually did this as well a we get into this later but
using like tails virtual machine and different virtual machine screen
internal network
on your machine awesome awesome well wouldn't do it now
and Nina VirtualBox cuz you guys know I love VirtualBox and yes
yes i know im in Windows I'm he using my Sony again because
I'm doing some artwork and such with the photoshops in the illustrators and stuff
so
anyway it the same thing will be Windows Mac or Linux because we just use an open
source stuff here
it's awesome its Oracle's VirtualBox and basically I've already got a
untangle server setup here but it's just like creating any other server in a
click noon choose the ice oh and all that
but that one thing that you're gonna wanna make sure that you set up when you
install
untangle as a virtual machine you gonna need
two network cards I mean obviously you know for any router you're going to need
you know your network card for the internal and the external interface
and so typically when he set up a VirtualBox machine it's only going to
have one of those necks
we are going to set up a second and that's going to allow us to have fun
traffic rowdy action on an internal virtual network couples at
so just head over to Settings and then under network
all your adapter one is already in there and I've I left at bridgett which means
it's going to go ahead and use my wireless card here and get an IP address
from the network that I'm currently on
and I will be our external network an adapter to
is internet or internal network and what you want to do is make sure your mindful
hereof the mac address as i've already
opened up advanced is where you can find Mac dress here and this one ends in to
see
that's my internal where's the other one and c0 so that my external
so all that is already setup so let's go ahead
and start the install now I've already gonna head
and %uh plugged in the mounted the
CD-rom the ISO file here and put it on the hard disk its it the next expand its
kinda thing but this is the setup it's really simple
or just gonna go next we're going to give it a password
something horrible and temporary
and we just need to make sure that we have the proper
network card selected said the external it wants to be
said that mac Address ending in c0 I can come back into settings and make sure
that my
bridged lawn network
and c0 so yes it is the cracked one
just that's the only real tricky part but as you see is enough to just look at
the Mac in know which one is which you can swap them if you need to
and we'll go next
and it's just gonna go ahead and figure out the internet connection in this case
I'm using DHCP
because it's really the the internet connection that it's getting is just
what my laptop has my laptop 6 connected to the wireless here at the Act five
studio
but it would probably be the same if you were say
you know connecting a straight up to a cable modem or DSL modem or whatever
have you and that's how it set up at my house
and now we get to choose what kind of network were running as this is what I
run at home is just as a router but you can also set it up as a transparent
bridge if you'd like if you already have a router and things of that nature he
can just kinda
pop this box in the middle and have it do its thang
and finally we can't specify how we want to do upgrades I'm going to tell this
not to I'm at the update for right now I normally would but i just want to do
this as a quick demo so we're not going to any play any updates
and world
goal and we can actually if we'd like to install some recommended applications
get ourselves a package
not as interested in that right now because I just wanna demo wanted the
free applications
but they do have those packages there I'm going to go under
I O N under contain you can change all the settings that you might already
imagine
as far as your networking and administration now the router you know
we can set up or forwards here and set up for interfaces and if we
are running a DNS server and host names and things of that nature
on pretty basic stuff that you would find in just about any router but what
makes
untangle really powerful is just the ability to have
a applications and very much like you know your Android and I O S and what now
we have an app store
so I can head over to that
and discuss scroll down here to the VPN you'll see that there's an IP sec VPN
know what I'd like to do is install the Open VPN
free app so I just click download free app and I already have an account
here
now is this install such a point out that way
yup Open VPN in the past we've used a detailed use different distributions
ovett but I really like hear about untangle
is if you're already going to use it as a router as a bridge
are it's really nice to have it just bright there near Saket they do really
great job on
setting up the clients in the distribution cell say that now so what
happens now that I've got this application
is it just shows up here in my more like like a DJ rack or something like a
like a 19-inch rackmount here's kinda stuff
and I just go into settings and by default
everything is is pretty easy to configure basically we set it up as a
VPN server here
not a client but we could set up as a client to go from you know one
odd branch office to another officer something like that
and we set up our certificates and in this case we just give it things like
your organization and where we are
I'm gonna say California San Francisco
choose which network we're going to give ourselves access to win we can set up a
really cool routes and we'd like to but basically what this is going to do is
give me
access to the internal network and that's most the time what you want when
you're setting up a VPN
so next and finish
so that's it as far as set up is concerned you can go through these tabs
and see you've got a air connection event log uva
you know what's common gone with you can go through
I and choose different networks a UN actually exports those hosts and see the
status of the who's connected and things of that nature
but we just want to go ahead and at our first client under the client stub
click Add
and getting a man
just gonna say der n or I'm gonna be more fish on tidy kitchen
that'll be fun and the default address pool which we've
already seen there we go
so the only thing left to do here is to distribute this client
so click Apply
and now we can distribute the client
here you can see we can download the installer for Windows or we can
configure it for other OS's and see
this is the really nice thing about old NDP and as opposed to the PPTP
or IP sac is that there are clients for you know Windows Mac Linux and Linux
a now in this case Android I'm sure there's one for I O S somewhere and
is really nice to be able to just take this file which has all the certificates
and everything and we've talked to a public key encryption before with SSH
same kinda principle we take these files we just put it on
that device now and we can connect in its not you know as simple as PPTP is
with the username password
so I'm going to go ahead and click download the configuration for
all OS's and I'm going to save this file
okay you're also going to notice here if you'd like you could
email this is a link to somebody I can enter and air attack by that or again
send the email over to myself but what I'd like to do is
very securely send myself a all of this
this package basically to my phone
so here's what we're gonna do now to come over to my phone
and set up and SSH server
so I just picked the first SSH server I found
and the marketplace I I've seen some others like drop bear so
your mileage may vary but basically any SSH server will do
and I've already said this one up just named a test
to run on port 4444 and it's pretty cool
I I forget the name love this one but there's heat if you just check out the a
Google Play Store for SSH server you can find it on
these but this was a free one that allows me to do a shell
SFTP and SEP so that's where this is going to come and play
and I've created a user and as you can see it
now it's as the SD card so such towards slash
SD card 0 so with my server setup all I have to do is head start
and yes now have an SSH server going
ever hit info you'll see my wifi IP addresses 1073 31 187 cell
here's what's really cool now about untangle see I'm in this
untangle interface join modding was a Ben Heck in france is the bill to modify
a host amazing community inspired creations
be sure to watch new episodes at the Ben Heck show each week right here
at revision3 doubt com slash tbh s in the latest episode of the Ben Heck show
then continues his work on the ultimate gaming system combining a ps3 Xbox 360
and Wii U into one amazing machine
don't forget to go to element14 dot com slash tbh us to find out how you can
enter to win Benz ultimate gaming system as well
other builds from the show