Here’s an interesting article: Foundstone is accused of piracy, being buttheads, and probably mopery on the high seas. Interestingly, the article also claims that Microsoft dropped Foundstone as a vendor shortly after the problems came to light.
Freak-a-zoid
When Charlie Stross, the most excellent SF writer, calls someone a freak, it bears investigation.
Comments Off on Freak-a-zoid
Filed under Uncategorized
Welcome, Denise!
Among all the other TechEd bloggers, I was delighted to see that Denise Smith has a blog. For those who don’t know her, Denise does an incredible job each year juggling the myriad demands of various speakers and track owners. If she posts enough juicy behind-the-scenes details, she’ll no doubt be the star of next year’s blogger meeting.
Comments Off on Welcome, Denise!
Filed under General Tech Stuff
Thomas goes to Rotary
In his own words:
I went to Rotary with Daddy today. It was fun. I met new people and new friends. And I had a great time. So, I had lunch at Rotary and also I got to listen to speeches and Daddy bought an Army pack of cards for free since he got an answer right.
I did buy a deck of cards at a charity auction, and they sure weren’t free, but other than that everything is as he describes it.
Comments Off on Thomas goes to Rotary
Filed under Friends & Family
MBSA 1.1.1 released
Version 1.1.1 of the Microsoft Baseline Security Analyzer has been released. Why do you care? Because this version adds scanning support for Windows 2003 Server, that’s why. Go get it.
Comments Off on MBSA 1.1.1 released
Filed under General Stuff
TechEd: the big day arrives
This morning, I woke up early, got dressed, checked out of the hotel, and hit the speaker lounge to get some work done. Of course, I ended up talkin to several MS folks, including some for whom we’re now doing work, so it wasn’t entirely productive in terms of the number of pages I wrote. I had a good visit with the folks from Solid Data, who make a cool solid-state disk for speeding up Exchange recoveries, and I got some cool swag for the kids– always a key objective at these events.
After a couple more vendor visits (including with the fine folks at Good Technologies, who had darn well better come out with a PalmOS device so I can buy one), it was time to deliver my session. Mark Mortimore of TechNet fame suggested some additional topics, which I totally forgot about once I got on stage. I was completely in the groove, even though I went about 15 minutes long; the whole session was pretty much a blur. People who’ve been to my presentations in prior years can testify that 15 minutes isn’t all that long; at least this time I wasn’t scheduled right before lunch. I got to see several friends (hi, Darcy, Kevin, Kim, and whoever else I couldn’t see while blinded by the stage lighting!)
The session seemed to go really well, but I guess my eval numbers will tell the tale. Jesper Johansson was telling me that he was surprised by the eval numbers– the high session got an 8.4/9.0, and even luminaries like Don Box were hovering around 8.2. My high session last year at the MEC was a 7.9, so I’ll be interested to see whether my numbers this year hold up. Of course, since I totally forgot to tell people to fill out their evaluations, I may get a big fat zero!
Comments Off on TechEd: the big day arrives
Filed under Uncategorized
Book? What book?
So, after I registered at TechEd yesterday I wandered over to the grandiosely-named “TechEd Mall”, a big plexiglas cube in the CommNet area. The book section was supposed to be substantially larger, and I was hoping to see Secure Messaging with Exchange 2000 substantially featured. After all, I reasoned, it’s from Microsoft Press, it’s about a Microsoft product, and this is the largest Microsoft-centric conference in the world– a natural fit. I slowly cruised by the display wall outside the door, where there were lots of MS Press books visible. Not mine, unfortunately. “Oh well,” I thought. “They must be inside.”
Nope. There were MS Press books in abundance (and a nice selection of other titles from O’Reilly, Wrox, and others), but no copies of my book. I spoke to the (very pleasant) bookstore manager; it turns out that two books didn’t make it here on time for the show– mine and one other. I was pretty unhappy until I learned that the other author’s book failed to arrive after they’d planned a big book signing because yesterday was the guy’s birthday. Ooops. Hopefully some copies of the book will appear before I leave today.
Comments Off on Book? What book?
Filed under Smackdown!
TechEd: T-1 and counting
The TechEd speaker support folks worked some magic over the weekend and found me a hotel room. This might not sound like a big deal, but when faced between the choice of sleeping on a park bench near the Dallas convention center or having a room, I vote for the latter. As I write this, I’m in the air; after I arrive, I have to hit the speaker’s lounge and make a few changes to my slides, then I’m free until rehersal at 7:30. After that, the magazine folks have scheduled a dinner at Landry’s, but it’ll be an early night– I have a challenging presentation tomorrow and I want to be fresh.
Update: the bloggers’ meeting was really cool. I only caught the first 20 minutes or so, thanks to one phone call from home and my session rehearsal, but I enjoyed what I saw. I was particularly aware of being one of the only non-developers there– I guess I’m the token systems/admin guy. This is a bit of a reversal for me, since my degree’s in CS and my first career was writing code. Perhaps I should get back into it.
Lots of cool stuff on the show floor, but nothing I can report on; I didn’t attend any sessions, either. You’ll have to get your meaningful news elsewhere. Though I did have a great dinner with Paul Thurrott, Michele Crockett, Kim Paulsen, and a bunch of other cool folks from the mag, it was all gossip and no news ๐
Comments Off on TechEd: T-1 and counting
Filed under General Tech Stuff
SEA-TOL on ATA
I promised to post a trip report for my return flight on ATA. To copy Julie’s five-word format: Noisy, crowded, cramped, and sleepless. I won’t say that I’d never fly ATA again, but I certainly will avoid their redeye ex SEA like the plague. It leaves an hour later than everyone else’s, yet it arrives earlier than DL’s flight to ATL or NW’s to DTW, and the chatter of all the folks who are too excited to sleep is maddening. By contrast, my TechEd flight from TOL-CVG-DFW on Delta was a delight: on time, uncrowded (thanks to a last-minute upgrade at the CVG departure gate), and full of the friendly, professional attention that I’ve always enjoyed about Delta.
Comments Off on SEA-TOL on ATA
Filed under Travel
A Hymn Before Battle (Ringo)
Tim recommended this book, and I heartily second his recommendation. Ringo paints a largely believable scenario (well, believable for people who regularly read SF): an alien confederation is embroiled in an ongoing interstellar battle, and they’re getting their butts kicked because the two major races are both cowards (think Niven’s puppeteers). They reluctantly partner with humans; the deal is that we get some advanced technology that we can use to defend Earth in return for providing infantry. Anyone who’s ever been in the military will appreciate Ringo’s characters and dialogue; he gets the small details right, which makes it a lot easier to suspend disbelief on the big things. I’m looking forward to later installments (in fact, the Borders at CVG had the third book, but I’m resolved to read them in order, so I had to pass it by. Pity.)
Comments Off on A Hymn Before Battle (Ringo)
Filed under Reviews
MSDN developer security center
MSDN now has a new security center. It’s billed as “a one-stop source to help developers write secure code”. Check it out. (hat tip: Michael Howard.)
Comments Off on MSDN developer security center
Filed under General Stuff
TechEd bloggers
This is pretty cool: an aggregated site (or wiki) of bloggers who are speaking at or attending TechEd. I just added myself, but my blog isn’t there yet. Dan Fernandez listed his session picks; I already listed mine over here. I arrive midday Monday and will hit the bloggers meeting, have dinner with the Windows & .NET Magazine folks, and speak on Tuesday afternoon. In between, I may actually get to go to a session, but more likely I’ll catch up with various vendors, friends, customers, and potential customers.
Comments Off on TechEd bloggers
Filed under General Tech Stuff
New denial-of-service attacks
This is fascinating. Two folks at Rice’s computer science department have written a paper about algorithmic complexity attacks. The basic idea is that an attacker who knows how a program processes input can overwhelm it by choosing patterns of data, or data with specific contents– not the typical DoS caused by flooding. Here’s the abstract:
We present a new class of low-bandwidth denial of service attacks that exploit algorithmic deficiencies in many common applications’ data structures. Frequently used data structures have “average-case” expected running time that’s far more efficient than the worst case. For example, both binary trees and hash tables can degenerate to linked lists with carefully chosen input. We show how an attacker can effectively compute such input, and we demonstrate attacks against the hash table implementations in two versions of Perl, the Squid web proxy, and the Bro intrusion detection system. Using bandwidth less than a typical dialup modem, we can bring a dedicated Bro server to its knees; after six minutes of carefully chosen packets, our Bro server was dropping as much as 71% of its traffic and consuming all of its CPU. We show how modern universal hashing techniques can yield performance comparable to commonplace hash functions while being provably secure against these attacks.
Comments Off on New denial-of-service attacks
Filed under General Stuff, Musings
Periodic table, revisited
Devin, John, and I had a discussion about Avogadro’s number yesterday, so naturally I was pleased to see this: the Periodic Table of Dessert. (Hat tip: Dori).
Comments Off on Periodic table, revisited
Filed under Musings
Trip report: TOL-SEA on ATA
I normally fly Delta or Northwest, the former out of habit and the latter because they (generally) offer the least obtrusive way to get from home to SEA, my most frequent destination. However, I recently had to take a short overnight to SEA. NW wanted $1927 for their nonstop ex DTW, and DL couldn’t meet my departure or arrival time requirements. I went out on a limb and tried American Trans Air to see how it works.
Leg 1: TOL-MDW on a Saab 340. I don’t mind turboprops for short hops; the 340 is noisier than a CRJ, but no less comfortable. I used ATA’s web check-in; apart from a minor security surprise, I was able to print boarding passes and use them to get through TOL security, just like on Big Air (although ATA’s app is less sophisticated and can’t do wireless checkins yet). The TOL gate staff was friendly; the FA on my flight to MDW was OK, although her English was heavily accented and she could have benefited from either a good bath or a better grade of deodorant… but I digress. We arrived on time, but there were ominous thunderheads off to the west, and I counted 8 ATA and Southwest 737s lined up awaiting departure as the shuttle took us from one side of the field to the main terminal.
Leg 2: MDW-SEA on a 737-800. I hadn’t flown through Midway in at least 10 years, so I wasn’t sure what to expect. The A, B, and C concourses are arranged like spokes radiating from a central food court, where I had a not-awful turkey sandwich. No wireless or wired Internet connectivity, and few power plugs, meant that I had to forego getting any work done; I was saving my battery for the plane ride. ATA doesn’t seem to handle irregular ops very well; there was a constant flow of conflicting PA announcements about arrival and departure times for various flights, and our flight was gate-changed four times. Boarding was by row and proceeded pretty smoothly. I’d estimate that the flight was 80% full, maybe more. Unsurprisingly, I didn’t see a lot of road-warrior types– there were lots of retirees, plus many toddlers with one or both parents.There were a few of the uptight-looking middle-aged white guys that I’m used to seeing in the F cabin on DL and NW, but none sat near me ๐
We eventually departed about 70 minutes after our scheduled time. The flight itself was uneventful. I sat in 2D, the right-hand bulkhead aisle seat. Legroom on the bulkhead row is less than on the corresponding row (10) on DL or NW iron. Cabin service was briskly professional; of course, there was no food, but I’d laid in a supply of Fig Newtons ahead of time. Unlike NW’s DTW-SEA flights, this aircraft had an in-flight entertainment (IFE) system, but it only showed music videos, and that for only about 90 minutes. Given how awful DL’s movies normally are, this is probably not a bad thing. Given our late start, and the fact that we were traveling westbound, I expected a late arrival, but we actually got in 10 minutes late– not too shabby. I’ll write about the return flight tomorrow, after I get back.
Comments Off on Trip report: TOL-SEA on ATA
Filed under Travel
Paul's Down-Home Page 