Kerberos talk in Orange County, CA U.S.A.

leganii@surfree.com leganii at surfree.com
Sun Jan 12 05:54:55 EST 2003


I'm forwarding the below to several forums where I think it is 
appropriate.  If you disagree, I appologize.

Mark was originally scheduled to speak at the UUASC Los Angeles chapter
in October in last year, but had to miss out due to illness.

Anyone who wants to attend the meeting is welcome.

Below Brian's announcement is some references/comments I posted
to UUASC's list for the originally scheduled talk.

> *=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-*
> Message:  B0000682646.MSG                      # in packet :#20.
> Date:     Thu, 9 Jan 2003 10:49:32 -0800
> From:     BMann at chainc.com
> Reply-To: UUASC at uuasc.org
> To:       UUASC-announce at uuasc.org
> Subject:  UUASC Orange County January Meeting
> --------------------------------------------------------------------
> 
>                                  UUASC OC
>                 Unix Users Association of Southern California
>                            Orange County Chapter
>                               January Meeting
> 
>                 ---------------------------------------------
>                               ... Kerberos ...
>                 ---------------------------------------------
> 
>                          Monday, January 13, 7-9 PM
>                                     ICTP    
>                          731 E Ball Rd #100, Anaheim
> 
> Come join us for the first Orange County meeting of the New Year!
> We're starting things off with an overview of Kerberos.
> 
> Kerberos is an open source system that provides true cross platform 
> enterprise-wide (and consortium-wide) Single Sign On. Rooted in Unix, 
> Kerberos is also the core of Microsoft's authentication service. It is 
> supported on most Unix, Linux, Macintosh, and Windows systems and is 
> deployed at thousands of sites world wide. Come and find out if the 
> three headed dog has a place in your network.
> 
> Mark Mellis will present a practical survey of Kerberos today, 
> discussing its capabilities, strengths, and weaknesses. He'll include 
> sample configurations from working systems. The presentation will be 
> focused on how and when to use Kerberos rather than on its theoretical 
> underpinnings.
> 
> Mark is a consultant with SystemExperts Corporation and is based in 
> Southern California. His consulting practice focuses on network 
> security and architecture for clients in the financial services, 
> manufacturing, and government sectors. Mark is a frequent speaker at 
> Internet World, Usenix, and Networld+InterOp, and with his colleague 
> Phil Cox of SystemExperts he teaches a popular tutorial on Intrusion 
> Detection.
> 
> Prior to his current job, Mark dug ditches, sold RVs, operated nuclear 
> power plants, programmed industrial washing machines, ported Unix, 
> administered Unix systems, pulled network cable, and built networks.
> 
> Mark attended the University of Washington, where he studied Physics.
> 
> ---------------------------------------------------------------------
> 
> The UUASC is for all persons using Unix either personally or professionally,
> or interested in learning more about Unix. We recognize all varieties
> of Unix, including (without prejudice) HP/UX, Linux, SVr4, Solaris, AIX,
> and BSD. This is a good place to meet others with similar interests and
> broaden your skills and knowledge. Generally, meetings include a technical
> presentation on a hardware or software topic of current interest to the
> Unix community and a round-table discussion of current topics of interest
> to the group. We are always looking for interesting presentations and
> your suggestions are most welcome.
> 
> Please join us this month and bring along your friends or co-workers.  Also,
> please forward this announcement to others who may be interested and feel
> free to post it on BBSs, both electronic and physical. If you receive
> more than one announcement by email, please let us know so we can keep
> our lists current. Thanks for listening.
> 
>   \   |     ICTP             /     ICTP, 731 Ball Road #100, Anaheim
>  --\--+---------------------X--
>     \ |         Ball Rd    /      Exit Santa Ana Freeway (I-5) at
>      \                    /       Harbor, go north to Ball Road, right to
>       X I-5            SR-57      ICTP. Or exit Orange Freeway (SR-57) at
>       |\                /         Ball Road, west to ICTP.
>    Harbor                         Phone +1 866 225 4287.
> ------------------------------------------------------------------------
> This list is for announcements only. Send all discussion to the regular
> UUASC list. For details, send message "info UUASC" to Majordomo at UUASC.org.
> To unsubscribe, send "unsubscribe UUASC-announce" to Majordomo at UUASC.org.
> 
> 

Sep 25, 2002:
--

The other week at the Italian cuisine meeting,
the topic of weaknesses of ssh came up.

What I could dredge up on the topic:

'A Rough Year for SSH'
http://www.linuxjournal.com/article.php?sid=5672
(This is a www only article, not in the printed 
edition of LJ)

'Software Developement' magazine article
'Risk Analysis: Attack Trees & Other Tricks'
by John Viega and Gary McGraw
August 2002 issue, p. 30-36
Which has a largely theoretical analysis using
Bruce Schnier's attack tree methodology,
of some of the possible ways to subvert ssh.
http://www.sdmagazine.com/documents/s=7468/sdm0208a/0208a.htm
I said largly theoretical, but one of them,
the last I think, has actually been carried out.
(Any other economics buffs out there?
Anyone of you noticed that 'Attack Trees'
correspond to what economists refer to as
'marginal analysis'?
How to most efficiently spend money to get results,
given non-linear return on investment and multiple
choices on how to spend it.)

And off course (from me :-)  ):
http://www.columbia.edu/kermit/security80.html
(Jeff Altman has also (co)authored several RFCs on this topic.
search on 'telnet encrypt' at www.rfc-editor.org, he was involved 
in about half of the results.)

Anyway, get ready for Mark Mellis's talk in Oct..

Regards,
Dallas E. Legan II  /  leganii at surfree.com  /  dallasii at kincyb.com

Powered by......Lynx, the Internet at hyperkinetic speed.



More information about the Kerberos mailing list