About speaker: Mr. Alessio L.R. Pennasilico, a.k.a. mayhem, 30 years, lives and works in Verona (Italy) as a Security Evangelist for Alba S.T. s.r.l. (http://www.alba.st)
His personal and working interests are into Information Technology, focusing on security issues, OpenSource and Digital Rights. That’s why he soon became a member of many independent organizations, such as AIPSI(ISSA Italian chapter), AIP, CLUSIT, Italian Linux Society, OpenBeer, VoIPSA, Metro Olografix, Sikurezza.org, ISAC-IT, Recursiva.org, Thawte, ISECOM’s Hacker’s Profiling Project (HPP), Critical Infrastructures Security Test and Analysis Lab (CrISTAL) and many LUGs.
He is usually invited as a speaker at most of the national events such as IT Underground, Hack in the Box, CCC, Confidence, SMAU, Infosecurity, E-privacy, Linux Day, OpenCon, OpenEXP, ESC and the italian HackMeeting. Alessio also holds workshops in secondary schools and italian universities, with the aim of spreading the culture for an aware use of nowaday’s technology.
His main areas of competence are related to firewalling, High Availability, penetration testing, SCADA security, criptography, Critical Infrastructures security, VoIP, privacy, MacOSX, Linux, OpenBSD and OpenSource philosophy.
Talk: MacOS hacX
Abstrakt: It is not opensource. Community have no control at all on it. But it is still a very used product, always present in a massive way at any hacker’s event.
Let’s try to analyze the main security features of Tiger and of the new Leopard, to understand if you are allowed to feel secure, or what you need to know. Some real cases will be presented to demonstrate the limits of some security feature like filevault, if not used with the proper paranoia.