Related link: http://www.sockpuppet.org/tqbf/log/2005/05/its-that-time-again-time-for-usenet.h…
A lot of fun debate is quoted on the site (some dating back to early 90s); the conclusion seem to be that “vulnerability research … have drastically improved the security of popular software.”
A colleague and I spent the day in Cisco’s Irvine Office (Also the Linksys HQ) taking a peak at the Airespace product line that now carries the very familiar Cisco logo on it.
The goal for the day was to see how the initial setup and configuration of the Airespace product line was. At one of my current contracts we have been looking at moving away from a fat access point based network to a switch based network using thin access points. Deploying the network across the country at dozens of regional offices and centrally managing from our primary data center where all of the WAN links terminate was a primary goal.
We were looking at pre-release firmware that hasn’t changed too drastically from what is on the market today, but does have a lot of enhancements to the location tracking technology.
The software was still in QA on Cisco’s side I believe, but it looked good, was very easy to use, and gave us no problems.
We setup a small lab with a Cisco 4100 Wireless LAN Controller, 4x Cisco 1000 Series Lightweight Access Points, and utilized Vmware to setup a Windows 2003 server with IAS for radius, DNS, and DHCP. We also had a Windows 2000 server for Cisco’s Wireless Control System Software.
While it seems like a lot.. the main piece to concentrate on is the Controller. You don’t need WCS really unless you’re going to have multiple controllers or want some of the more enterprise oriented features. You can get by with just a controller and some AP’s for small to medium sized businesses.
The controller setup was pretty amazing, it took about 5 minutes to do the initial console config of giving it a name, IP, subnet, and general purpose in life. Reboot, and head to the web interface of the controller. Very easy interface, not too much clutter, options are very easy to understand (Even for non-wifi engineers), and the feature set was pretty good.
The real power seems to come from the WCS software at an enterprise level, letting you maintain the entire network, watch the units, deploy new networks, trending, rogue detection, etc. Their location tracking is very accurate as well. I took a glance at the Cisco HQ WCS box and was amazed to see how well it worked and looking at their rfid asset tracking tags moving around the office, etc.
The overall trip was good, and there are far too many details to log here. I’ll bullet some key product points I really like:
The couple of down sides that I have off of the top of my head are:
The bottom line is that the industry is moving toward switch based wireless solutions, and Airespace is the best way I’ve seen to go. Aruba has a nice product offering, but it’s still not quite mature enough. Symbol still seems to be geared toward warehouses and not really servicing the end user. Their product was extremely lacking.
Related link: http://www.freebsd.org
I missed the WIP sessions at BSDCan 2005 as I instead attended Bob Beck’s talk on spamd. However, I had a chance to followup with George Neville-Neil who gave the WIP introducing the FreeBSD Marketing effort. Here is what George had to say:
“The marketing@freebsd.org folks are trying to drum up white papers so that we can get our software into more places. One of the basic issues around getting FreeBSD into more locations is the lack of less technical, but nevertheless well written, information on our system. There are lots of people who want to use FreeBSD in their projects but they know that handing over a large book, or a dense technical paper, is going to make peoples’ eyes glaze over.
Right know we’re trying to find authors to write about applying FreeBSD for use in a set of white papers to be published by us and to provide ammunition to those who want to use FreeBSD at work. As I said in the WIP today you do NOT need to be a technical writer to get this stuff out there. There is a volunteer collector/editor/publisher of this material (published at the very least through freebsd.org) and that would be me.
Some ideas that a few of us have had are:
Using BSD in Data Centers
There are several companies that use FreeBSD to run their datacenters. How do they do this? What are the high level things to know before doing this? What are the problems? What are the solutions?
Switching from Solaris
Solaris is an expensive solution to many problems due to the cost of hardware, at the very least. There are probably other costs as well with respect to managing the systems. If someone wants to sell FreeBSD as a replacement for Solaris then they have to be able to say how that transition would work, and what pieces need to be found or built and how to build a system that completely replaces the Solaris system.
Switching from Linux
Switching from Windows
Building products with Netgraph
People have already built products out of Netgraph, not the least of which were the original authors of netgraph itself. We need to explain how to use this technology well enough for others to at least see how they could build products with it.
Building embedded networking devices
While the Netgraph white paper focusses very tightly on a specific sub-system there are plenty of groups/companies that would like to build an embedded networking device with FreeBSD. An example of this is monowall, the firewall product. This paper will show the pieces that are there and that are not there for building an embedded network device, such as an edge router, DSL box, wireles router etc.
Understanding Performance
Many people run benchmarks but few understand what they’re running or the results. This would be a base paper on which to build other discussions of benchmarking with respect to FreeBSD and other systems.”
If you have any experience in the above scenarios or can think of other scenarios that should be written up, drop either George or myself an email. Again, you don’t have to be a good writer; we can take your ideas and work with you to create a publishable white paper.
Send ideas to either “gnn at freebsd dot org” or to “dru at isecom dot org”.
Related link: http://electrum.sraapowergres.com/en/newsletter/issue_03/index.php?article=bsdca…
As promised, here’s the link to some pictures, audio and movies of BSDCan 2005.
I’ve labelled who’s who in the pictures. (Don’t you hate it when you see a bunch of conference pictures and have no idea who you’re looking at?) There’s an embarrassingly large amount of pics of myself as I know the cameraman.
You’ll also find audio links for the SEBSD and jail tutorials. The BSD Certification BOF was also recorded, as well as the closing ceremony.
There are also some miscellaneous movies of registration day, the Author Extravaganza, the disappointed authors visit Chapters and the closing ceremony.
Enjoy.
Related link: http://www.bsdcan.org/2005/
If you’re like me, you’ve been patiently waiting to hear more reports on this year’s BSDCan. I was there, but I still like to read the first-hand accounts of the talks that I missed and hear the perspectives of the other attendees.
Richard Bejtlich was the first to report in. He’s been busy travelling the country since, but I look forward to seeing his Part 2 when he gets a chance to pen it.
Ike Levy posted his report as a series of emails to his local BSD Users group’s mailing list. You can follow the thread here.
If you’re aware of any other blogs or threads, post a comment or drop me a line.
Related link: http://www.digital-copyright.ca/petition/press20050508.shtml
Today I finally had a chance to wade my way through 2 weeks of email. One message contained the URL to a press release containing information about the proposed changes to the Canadian Copyright Act. While of specific interest to Canadians, it is also well worth a read by anyone concerned with technology and their rights. Similar actions have already occured or are occuring elsewhere on the globe.
The same page also provides useful links, a glossary of copyright jargon and a link to a search engine to find your local member of parliament.
Russell McOrmond was involved in the creation of the petition. His site contains a wealth of information regarding FOSS and copyright legislation.
I also discovered today that the transcripts for the proceedings for the Canadian Senate and House of Commons are available online.
That’s it for now. Back to my inbox.
Related link: http://www.csoonline.com/read/050105/extortion.html?action=print
Please, tell me I am not dumb :-) This fun article covers a recent DDoS extortion story again a betting company. They were asked for $40k ransom, they decided not to pay and spent several months and “a million dollars in lost revenue and IT investments to win this war.” How is that a victory? I think this story will give many folks exactly the opposite of the intended impression. Namely, “just pay up”.
When I read it first, I thought “what a great DoS fighting story”, but later I realized that it promotes the DoS business a lot more than anti-DoS business…
And, they did track the guy down, which is pretty cool. But I suspect that it is more of an exception than a rule, unfortunately.
Related link: http://www.eeye.com/~data/publish/whitepapers/research/OT20050512.FILE.pdf
I would not call something a “treatise” just because it sounds cool :-) It is really a comprehensive paper on modern vulnerability discovery and disclosure landscape. It even mentions ‘vulnerability sharing clubs’ and other recent developments in the space.
I especially like this quote that should be read and reread by those who incessantly blabber about “staying ahead of the hackers”: “Zero day vulnerabilities are in frequent use among the hacker community. After being used for a period of time, zero days are either sold to security research organisations, who ‘ethically disclose’ them to the vendor, or simply shared with a wider and wider circle until they become public.”
Related link: http://www.bsdcan.org/2005/
The Sunday after BSDCan, those that are still in town head off for yet another massive feast at a local breakfast establishment.
After some more goodbyes, Dan Langille took some of the conference attendees to the Museum of Science and Technology. When I was last in New York City, one of the NYCBug members took myself and Robert for a walking tour of Manhatten so we had promised to return the favour with a walking tour of Ottawa. We also found that Beth Lynn’s flight was around the same time as his so we packed up everyone’s luggage and started our tour.
After stopping at a local tourist store to stock up on maple syrup, Inuit carvings and maple sugar candy, we headed over to Parliament Hill. The previously rainy weekend transformed itself into a clear blue sky, some sunshine and a light breeze which complemented the buildings, green grass and thousands of tulips. (BSDCan coincides with Ottawa’s yearly tulip festival) A leisurely stroll took us to Parliament’s cat house, the path along the Rideau Canal, up to the National gallery and we had just enough time to step onto the Alexandria Bridge and gaze towards Quebec.
The concensus? If you’re planning on attending BSDCan next year, book an extra day off to tour this beautiful town. Both agreed that it was a very peaceful end to a very good weekend. And it looks like next year’s guided tour will include a trip to Quebec and a drive through Gatineau Parc. Hope to see you there.
Related link: http://www.bsdcan.org/2005/
The first talk I attended today was Chris Vance of the TrustedBSD project on the port of SELinux to FreeBSD. Chris works for Sparta Inc., an R&D lab which most of you will probably recognize by one of its earlier names: NAI labs or McAfee Research. Until the talk I was unaware that the same lab that produces SELinux is also responsible for the FreeBSD MAC framework and the SEDarwin Policy Module. In a nutshell, these 3 projects have the same goal of augmenting the traditional Unix DAC-style permissions with MAC/RBAC policy modules. Chris covered the reasoning for providing a modular framework, some of the cleanup work that was required to introduce the framework and the future goals of the project. He also gave insight on how the experience gained from implementing the Linux version benefited the FreeBSD version which in turn is benefiting the Darwin version. He also described some of the extra modifications required for Darwin because of the Mach kernel. Being used to the FreeBSD MAC terminology, I gained some knowledge of the equivalent Linux terminology which will help when I administer Linux systems.
During the next talk, I learned that the entertaining speaker with the hearty laugh that can be heard across a crowded noisy bar was Bob Beck, author of OpenBSD’s spamd. His talk was also very practical and demonstrated how minimalistic code which provides whitelisting, greylisting and blacklisting can provide an effective defense against spam without resorting to the delaying effects of DNS lookups. Now that pf is available in FreeBSD and spamd is a port, this is something I’ll definitely be trying out for myself. Watch the FreeBSD Basics Column to see how things went.
On break, Michael Lucas had mentioned that he would go insane if he had to eat yet another meal at a pub. We also discovered that Greg Lehey had always wanted to try shwarma. Since downtown Ottawa has a minimum of 3 shwarma shops on every block we decided that lunch would be when we’d introduce Greg to this tasty treat. Greg wasn’t disappointed.
Afterwards, we decided to walk a block to the nearest Chapters to see whose books would be on display. (yes, authors are weird when they get together) It is sorta sad to watch 3 technical authors scour the shelves of a shrinking technical section in search of a BSD book. We’re sad to report that not even one such book was present and took pictures to commemorate the event. We were surprised to instead discover 2 HP-UX books. We then wandered to the networking section where we found one copy of Cisco Routers for the Desperate and watched Michael Lucas do his happy dance. After escalating jokes on which sections probably did contain our books (which I won’t repeat here), we headed back to take in the afternoon talks.
Ike Levy’s talk on jailing with FreeBSD did not disappoint. (For the curious, Ike created the logo for that site and it represents Beastie dreaming of root while in jail) Ike is one of those rare souls who is equally talented in the artistic and technical sides of his brain. This quickly became apparent when he used a mandlebrot Julia set to help the audience visualize the virtualization provided by a jail.
Ike then went on to explain the reasons for using a jail, when not to use a jail and provided a walk through of creating and maintaining a jail. He also provided some useful been-there-done-that caveats to watch out for when working with jails.
Poul-Henning Kamp, the author of jail, was also in the audience and provided some useful input regarding the development and future goals of jail.
The final talk of the day was by FreeBSD’s Security Officer, Jacques Vidrine. He described VuXML an XML-based document format for describing security issues that effect a software collection. He described the reasoning for creating the format and how it compares to existing formats.
If you follow FreshPorts, you’ve already seen VuXML in action. Ports which have security issues are marked with a warning skull icon.
The format itself is easy to learn and documented here.
The conference ended with an all conference assembly. Again, I have a recording of this and will give the URL once it is online. It started with a random draw for several different tshirts and books. Dan also made note that the random draw was accomplished using misc/shuffle in the ports collection.
Chris Coleman of BSDMall donated a painting by his talented wife for auction. It was a picture of an “Apache Daemon” entitled “We Were Here First”. For a visual, envision Beastie in a headdress looking majestically over an escarpment. George Rosamond of NYCBug was the auctioneer. After a slow start, NetBSD’s security officer David Maxwell and FreeBSD’s Scott Long started some intense bidding around the $100 mark. With some humourous egging on from the crowd and some exciting moments, the painting was sold for $150 to David Maxwell.
Afterwards, Matthew Wilcox held a key-signing session. An interesting turn of events occurred when we discovered the Real Tom Rhodes.
Before meeting the rest of the gang at Paddy Bolands (yet another Ottawa pub), we agreed to take Greg Lehey to an amazing Indian restaurant down the street for supper. Apparently Thai food is very good down under, but one is hard pressed to find a good Indian restaurant. So Greg, Murray Stokely, Brad Davis, Michael Lucas, Robert Bernier and my boss headed off to Haveli for some good conversation over an Indian feast.
We then headed off to Paddy Boland’s to say our goodbyes to those that would be leaving town before Sunday’s breakfast get-together.
Related link: http://www.bsdcan.org/2005/
Being on the registration desk, I met up with Dan Langille early and loaded up my vehicle with wireless equipment, a printer, books, and registration stuff. There was barely room left for the driver, so Dan and I took off on foot after giving instructions to the driver.
9:00 came and went and still the stuff hadn’t arrived. After waiting a few minutes, we determined the vehicle was lost somewhere else on campus. Several geeks exchanged cell phone numbers and set off on foot. Within moments, the vehicle was spotted on the other side of campus, a new set of directions was given, and the vehicle was unloaded in record time so registration could proceed.
As with any conference, the hardest part is deciding which talk to attend. This year was particularly difficult as there were so many good talks to chose from.
The first talk I attended was Colin Percival’s Hyper-Threading Considered Harmful. While a highly technical talk in nature, Colin did a good job explaining what hyper-threading is and how the L1 and L2 cache can permit a side channel attack. Using OpenSSL and RSA as an example he walked through some of the mathematics and how exploit code could predict enough bits to factor a private key. He also discussed which systems are affected and some solutions to the problem. One quick fix is to disable hyper-threading which is the default FreeBSD approach.
During the break after the talk was the first author signing. Myself, Greg Lehey, Michael Lucas, Richard Bejtlich, Marshall Kirk McKusick and George Neville-Neil sat shoulder to shoulder to sign books. Proving the adage that writers are readers, there was a lot of book passing amongst the authors themselves as we signed copies of each others books. There is also a movie and several pictures of the autographing session and I’ll post the URL once they’re online.
BTW, this is the first time that Michael Lucas and I had met in person. If you enjoy his light-hearted writing style but haven’t met him yet, yes, he’s even wilder and crazier in person.
After break, I followed Richard Bejtlich to take in his talk which is also available on-line. Richard offers the clearest explanation I’ve seen on cvsup tags and when it is appropriate to use each. He walked through when and how to use binary updates. He then compared this method to manual patching (which sometimes requires a buildworld) and tracking the security branch. He compared the uname ouptuts of these three methods, making it easy to determine if and how a FreeBSD system has been kept up-to-date. He also demonstrated how to tunnel cvsup through ssh for scenarios where a firewall restricts outgoing TCP 5999.
At lunch, I had a chance to meet up with the other members of the BSD Certification group which were also attending BSDCan. While we spend a lot of time exchanging emails and working together using IRC, this is the first chance that several of us had met in person.
After lunch, I took in Sam Leffler’s talk on FreeBSD Wireless Networking Support. This was another highly technical talk but Sam started it out by getting everyone up to speed on the various 802.11 technologies and the various wireless acronyms. He went through the goals of the project, what work has been done so far and what work is planned for the future.
The final talk of the day was der Mouse’s live network backup. This started out as some code he created to provide realtime image backups of his own systems. The current implementation provides some crypto (though an ssh tunnel would be more secure), works through NAT and supports partition sizes up to 2 TB in size. It currently runs on NetBSD 1.x and 2.0 but should be trivial to port. He described his future goals. The audience also suggested some improvements and alternate implementations. It will be interesting to watch as this code matures and is ported to other systems.
The day ended with several BOFs. I led the BSD Certification Group BOF and was joined by Dan Langille, Richard Bejtlich, George Rosamond, Jim Brown and Marc Spitzer. After introducing ourselves and the goals of the group, the floor was opened to audience questions and feedback. There was a very good discussion on how to make the certification credible to employers. It was clear that a testing process that requires experience and the ability to troubleshoot is important. We also discussed the ongoing survey and encouraged everyone to start discussing certification within their own projects and communities. This BOF was recorded and I’ll post the URL once the recording is online.
That evening we went enmasse to the Hard Rock Cafe for some eats and suds. I sat with Robert Bernier, Shawn from Drummondville and Beth Lynn from Pittsburgh. We had an interesting discussion on women in IT and what it is like to work in a male dominated environment. After sharing an ice cream sundae large enough to feed a family of 4, we waddled our way home to get ready for another conference day.
Related link: http://www.bsdcan.org/2005/
On Thursday afternoon, I trotted down to a local pub to join those who were already in town for the developer’s conference for lunch. I again met Greg Lehey who was taking a break from his tutorial on Debugging Kernel Problems.
Bill Moran was the first registrant to arrive. As we caught up on life since BSDCan 2004, he helped my daughter and myself prepare the registration packs. We were soon joined by Shawn from Drummondville who also pitched in.
Around suppertime, the pub started to get livelier as those attending the developer’s summit returned for supper and registrants started to filter in. It was nice to see faces I had met last year return for another BSDCan.
Over supper I had a chance to meet three fellows from Poland, including Pawel, the author of gmirror, a software RAID 1 solution introduced with FreeBSD 5.3. I had a chance to implement gmirror earlier this year and an article on it will appear later on this year in the FreeBSD Basics column. Pawel will also be speaking at MeetBSD in June. The other 2 fellows will be attending as well so it’s nice to know that I’ll recognize some faces when I visit the beautiful city of Cracow.
Being an early-bird and knowing that the first day of BSDCan would be long and exciting, I headed back home around 9 for a good night’s sleep.
Related link: http://loop.interop.com/comments.php?id=269_0_1_0_C
This piece looks at the following curious security issue: is patch management simple or complicated. I’ve seen people say its very simple (’just set Windows Update to On’) or horribly complicated (’we have a staff of 10 and they are overworked just doing patches’). Why is that? This article affirms that patching Windows in Windows-only environment is actually pretty simple. Patching Unix is not too hard also. However, the author claims that when people aim for an ambitious multi-platform patch solution to patch everything, all hell breaks loose and complexity reigns supreme…
Related link: http://blog.ncircle.com/archives/2005/05/is_your_primary.htm
This smart guy (no surprises that he is a CTO) finally clears a long-standing confusion about ‘proactive security’ vs ‘reactive security’. Oh my, so many marketing dollars spend convincing consumers that solution X is so totally proactive, unlike the shabby solution Y which is only reactive :-)
But what does it mean, really? This: “If your product or service’s primary value proposition is independent of incident or loss, you are proactive. If the primary value is at time of incident or post-incident, you are reactive.” It seems that there is no better way of saying it!
Related link: http://www.infoworld.com/article/05/05/13/HNmssecuritytoolsbundle_1.html
This fun article introduces an upcoming Microsoft consumer security bundle, called OneCare. It will reportedly contain anti-virus, anti-spyware, a better firewall and other stuff, such as better backup and restore. Looks like one of the design goals of this thingy was to make it “kind of drop-dead simple” since that is “what consumers need.”. A noble goal, as long as its not drop-dead simple to 0wn…
Another fun item in there is a discussion on why consumers will trust MS to protect them from MS :-)
Related link: http://blog.ncircle.com/archives/2005/05/trafficking_in.htm
I love to read every single debate about vulnerability disclosure, since they can get soooo fierce so that it becomes funny. Here is one latest shot: “People who traffic in non-public exploits are morally reprehensible.”. Are they, really? What is they are just making a living?
I don’t want to take sides in this one (may be hazardous to one’s health), but read up this argument written by an employee of a vulnerability scanner vendor. I can see how it can lead him to refer to people who profit from their legitimate technical skills as “pimping knowledge” …
Related link: http://www.nycbug.org/index.php?NAV=BSDTracker
Does your company use BSD or provide BSD related services?
If so, you may be interested in the announcement that was sent to the NYC*BUG mailing list this morning:
NYC*BUG Announces BSDTracker Database
The New York City *BSD User Group (NYC*BUG) is pleased to announce the BSDTracker Database. The BSDTracker includes both a database of Users and *BSD Resources. The Resources database is for firms that provide technical services or support for the *BSD operating systems. This is a great resource for people in need of BSD consulting and services. The online application can be found on the NYC*BUG website.
The goal of the database is to help promote the use and awareness of the *BSDs, giving those who use, promote or develop the BSDs, another opportunity to get their name out as supporters. Compiling a list of businesses that use BSD will bring more credibility to the BSDs and help support decisions to switch by companies that may be considering
it.
If your business supports or makes use of *BSD in some way, please take a moment to submit your information.
Related link: http://www.infoworld.com/article/05/05/09/19FEipsids_1.html
For those in the security industry watching the IDS vs IPS debate (and, I guess, that is pretty much everybody), this article will be a very fun and insightful read. Marc Willebeek-LeMair (3Com/TippingPoint) and Martin Roesch (Snort/Sourcefire) debate the role and value of a modern network IPS.
The presented debate gets emotional at times :-) and it is very tempting to choose a side. I will side with Mr Snort on this one: IPS is a great thing, but overselling it as a comprehensive security solution to prevent all threats in a proactive manner (especially at a cost of security-minded infrastructure design) is a bit too much for me…
Related link: http://project.honeynet.org/papers/individual/index.html
If you feel like doing some reading on honeypots, from lightweight and fun to heavy-duty academic, check out this site put together by the Honeynet Project. This serves as great additon to Project’s own collection of research papers. And, as a disclosure, my papers are there as well, of course.
Related link: http://www.bsdcertification.org/media.htm
Interested in providing input regarding the BSD certification process? The BSD Certification Group has launched a Task Analysis Survey to help determine which BSD system administration tasks are important to both administrators and employers. The English version of the survey is available til May 22; at the moment, the survey is also available in Dutch, Spanish and Simplified Chinese. You can find the links for each version at the News section of the website.
The survey itself is divided into 3 sections. It starts with 8 demographics questions, followed by 212 tasks to be rated, and ending with 9 questions geared towards the surveyee’s view on how many certification exams, what they should cover and how they should be delivered.
Yes, this is a very comprehensive survey which takes about an hour to complete. We’re looking for feedback from anyone interested in BSD certification, whether as an administrator, student, instructor, employer, manager or developer. If you know anyone who might be interested, feel free to send them to the BSD Certification website. If they are new to the project, they may be interested in poking about the website first and viewing the archives of the discussion mailing list.
Preliminary results will be discussed at the BSDCan BOF. Once the survey has ended, the results will be correlated and published for public review. The results will also greatly assist the development of the certification roadmap, exam objectives, and testing methodology. I’ll have an opportunity to discuss the survey in detail in Krakow, Poland in June at meetBSD.
Related link: http://www.bsdcan.org/2005/
…and I’m starting to get excited.
Dan Langille has posted the latest announcement on the News section of the BSDCan site. Get the details on how to register and where to stay while you’re in beautiful downtown Ottawa.
Besides seeing people I haven’t seen in person since last year and having the chance to meet new faces, I’m looking forward to many of the events. I’m carting my book collection in for the Author Extravaganza so they can be signed by Lucas, Bejtlich and Lehey. My author copy of the German edition of BSD Hacks arrived yesterday so I’ll bring it in for display.
I just learned that NYCBUG’s own Isaac “Ike” Levy will be teaching the jail tutorial. I understand that Ike also has an announcement of his own he’ll be revealing at BSDCan. I’ve seen Ike in action before so this promises to be a very good tutorial.
Have you heard about the secret new feature yet? der Mouse will be demonstrating on Friday. Friday is the same day that Colin Percival of Daemonology will be discussing a new security issue.
Finally, I’ve had a chance to check out the SITE where the conference will be held. Internet won’t be a problem. There are plenty of power outlets, Ethernet jacks and several wireless networks. I’m picking up my first wireless NIC this afternoon so I won’t have to rely solely on Ethernet.
Between manning the registration booth and attending the talks, I hope to have a live daily blog from the conference starting Tuesday night when most of the speakers arrive. See you then!
Related link: http://news.com.com/Research+Spyware+industry+worth+billions/2100-1029_3-5693730…
Is spyware really installed on 88% of all systems? That sounds a bit too high to me, but that is what this article mentions. I sincerely hope these folks didn’t count cookies as spyware, since in this case the number is way too low (100% is more reasonable).
Contact Us | Advertise with Us | Privacy Policy | Press Center | Jobs
Weblog authors are solely responsible for the content and accuracy of their weblogs, including opinions they express,
and O’Reilly Media, Inc., disclaims any and all liability for that content, its accuracy, and opinions it may contain.
This work is licensed under a Creative Commons License.
For problems or assistance with this site, email help@oreillynet.com | (707) 827-7000 / (800) 998-9938
