Lair is Dead, long Live Lair
After what seems like an eternity, I can blog again. The delay was caused by a combination of flaky Hard disk on lair (resulting in a read-only mount), and a lack of time between InfoSec Africa, the National Arts Festival and the Departmental Honours Industry visit, and starting my major stretch of teaching for the year to actually get the problem solved.
After rummaging around in one of my boxes at home I found a suitable replacement drive, and have taken the opportunity to do the OS upgrade — re-install — from 5.0 to 5.4. Other than the usual fun of making sure the same packages are installed, and minor tweeks in configuration files due to version upgrades, things went very smoothly, with the only real hiccups, being wet ware problems as I mounted partitions in the wrong place and had finger trouble copying things to the right directories.
In other news, progress is being made on a number of fronts
- Thanks to Jacot, Guy, David and Jock, Ive now got a proper Darknet running and collecting some very interesting backscatter data. The next coupe of weeks will focus on actually working out what exactly to do with the data, but for now everything is being logged to good old pcap files. As an aside, anyone seeing massive numbers of probes to 1434/udp (MS-sql-M) ??. What this means is that I am actually making some kind of progress on what up until now has been a rather elusive PhD
- My first batch of Masters Students Russell, Dominic and Yusuf have also started on the final slog to actually get their research and ideas down onto paper. Somewhat nervous times for me since they are my first batch, but I have full confidence in you all!
- Two weeks to go untill my op to remove the broken bits of bone in my foot. I cant wait. Weather is starting to improve ,and its getting light earlier, and I’d love to be out and about on my bike, o hopefully three weeks and I can start getting back into action.
I’ve also been working on some other bits and pieces I’ll post in due course, fornow its good to be back
PS - For those of you that were following Planet Rhodes or Planet Security, they are now updating correctly, and regularly. I notice a couple of dead links on both, and I’ll weed them out in due course.
Tags: Network Telescope