I had the pleasure of speaking at the 2008 Pittsburgh Perl Workshop. Due to some rather depressing news on the home front, I was only able to attend Saturday’s track and the Event Dinner. Everything was awesome as usual. I was even surprised to learn new things in the Advanced Pattern Matching talk.
My talk was titled Network Introspection with Open Source Tools and was an overhaul of the presentation that I did at LinuxWorld earlier this year. I took the feedback of the audience and tuned the talk to a Perl centric audience. I wasn’t heckled badly on IRC, which is the ultimate gauge of success.
I’d like to thank the organizers, CMU, sponsors, and The Perl Foundation for another successful year of the Work Shop. Next year, Pittsburgh is hosting YAPC::NA, and will not be hosting the Pittsburgh Perl Workshop. I look forward to being able to drive to YAPC!
If you saw the talk and want to rant about it, feel free to do so here.
Domestic Security
Just a little comic to remind ourselves what we’re giving away for “Security.” This is not what our founding fathers had in mind. I’m disappointed in the US Government and it’s people.
I had the privilege of speaking at LinuxWorld 2008 in San Francisco this year. It was a lot of fun and I certainly enjoyed the discussions with folks after my talk. My talk was on “Network Introspection with Open Source Tools” and I threatened to post updates on my progress here.
I’ve been working on packaging the code that I have into something that might be useful to the general public. I’ll post another blog entry when I have a rough cut version of the package available for testing/breaking.
I saw a posting recently by someone who described the books that changed their life. In an era of complete and total connection to TV, Internet, and Radio I thought the idea was excellent. If you haven’t been reading books, I highly recommend that you take some time and head down to your local library to check them out.
Keep in mind, I rarely read books in school. After 5th Grade, I preferred to spend my time playing sports, building Legos, and screwing around. I could “get by” on Cliff’s Notes, classroom dialog, and other 3rd party accounts of books. I’ve finally taken a liking to reading, so this is a good time to share my list of books that changed my life in chronological order of my first reading them.
- Night by Elie Wiesel
- The Stranger by Albert Camus
- The Myth of Sanity by Martha Stout, PhD
- The God Delusion by Richard Dawkins
- The Demon Haunted World by Carl Sagan
- 1984 by George Orwell
Continue Reading »
If you’ve noticed (probably not), recently the server has been unreachable. A few weeks back this was due to a bad hard drive. I finally transferred everything over to the new hard drive and got the sites back up and running thanks to a few friends and The Planet.
Then this weekend, the data center that hosts this server exploded. The site is back up and running now, but there should be a few more hours of downtime on the horizon as they install and integrate a permanent electrical infrastructure to the data center.
Also, I’ve been selected to speak at the Linux World Expo in San Fransisco this year! My talk is “Network Introspection with Open Source Tools.” If you’re going, please stop by and heckle me!
I may start updating this blog at some point.
I’ve attended 4 Perl Conferences in the past 2 years. This year’s Pittsburgh Perl Workshop is the first that I’ve presented at. My talk was titled Security through Detection, Prevention, and Introspection. I have slides available.
I originally wanted to present a bunch of code, but I couldn’t really find a way to make the code very interesting. I wanted to teach people that security is part of all of their jobs. I made it a point to reveal some of the idiocy of the Federal Government Mandates in relation to IT Security. I also gave an overview of the security system I’m building with Perl at work.
There were laughs, smiles, and a lot of people woke up. All in all, I’d say it went very well. I’d like to refine the presentation and possibly resubmit for YAPC::NA this year. Bigger audience, and an opportunity for me to conquer a large slice of my stage fright.
If anyone out there reading this saw the presentation and has feedback, please comment on this post!
UPDATE: If you enjoyed the content of my talk on security, please check out these articles I’ve written:
In our first installment, we looked at some solutions to provide a hospitable environment for proxy evasion. Today, we’ll dig deep into how to do this with my favorite protocol of all time, SSH.
OpenSSH is a glorious implementation of a critical network protocol. Most networks have disabled and banned the use of telnet, rsh, and ftp in favor of the more “secure” SSH protocol. OpenSSH runs on every platform I’ve encountered (using CygWin on Windows). SSH provides an encrypted channel for data transfer. Usually that’s Keyboard Interactive Sessions or Files (using SCP), however SSH is capable of setting up multiple channels and acting as a SOCKS4 or SOCKS5 Proxy.
Continue Reading »
I love cfengine. There are tons of resources out there for managing all kinds of common and uncommon system administration tasks. Rather than regurgitate all that information I wanted to share how I worked around what has been noted as a short coming of cfengine, clients copying information back to the master server.
Continue Reading »
Gizmodo is stepping up to declare March, Boycott the RIAA Month.
This needs to happen. Justice must be swift and unrelenting. Back when the RIAA conned Metallica to lead the charge against Napster, they killed a significant portion of the internet. I’d go as far as to blame them for being the catalyst of the dotCom Bust.
Both the RIAA and MPAA need to shut the hell up and embrace new technologies.
(I promise I’ll post the Proxy Evasion Article as soon as I can get my Virtual Machine running!)
The holidays are always a lot of fun. I ran out of time to do some things like keeping this blog updated. There’s been a ton of stuff in the news relevant to IT security. I’m not going to recap.
I’ll be continuing my Proxy Evasion series as soon as I get a chance to put together some screen shots for the tutorial part of the article.
Hopefully that article will be completed relatively soon.
Hope everyone had a great holiday season.
Pick up a copy of this book:
