open source tools help (contract) in DC area?
I need to get some short-term contract help on setting up a lab dealing with SP security issues, in the Washington DC area. Please contact me offline if interested. I am the technoid and will pass you on for the mercenary aspects. ccitraining.net is developing a complex set of network security lab exercises involving Cisco routers and switches, Slackware 10.0 LINUX servers and workstations, and Windows workstations, the latter to be infected with worms as part of running the lab. We need a *NIX administrator to help us get the appropriate, primarily open-source tools installed, running, and documented. Since we do not intend to teach the full tool command set, we will need shell scripts and/or command files to be piped to a telnet/SSH client to let the students access useful tool functions without being fully trained in the device. For that reason, we expect the primary interface to the tools will be command line, so that the tool control can be scripted. Students will use GUI functions only to display output from tools, or to access graphic functions in the tools. Since there are multiple people working on the project in a virtual team, at different locations, it is absolutely essential that documentation be generated at the start of working with a tool, and then to be polished with final parameterization and use documentation. Documentation can be at the level of a couple of man pages, but it is essential that other team members can quickly find out how to parameterize and invoke the tools. Project managers also need to be able to track the status of tool implementation -- we do not consider an undocumented tool as installed. Identified tools include: syslogd RRD (successor to MRTG) MIB objects to be accessed Flowscan/Flowtools (successors to cflowd) Ethereal In addition, we will need a number of scripting tools to make incremental changes to router, switch and host configurations, as well as loading complete executables and images. We will also need Windows control to infect hosts with specific viruses and possibly bots, and to restore infected hosts to a stable environment. Understanding, from the Windows and protocol standpoint, of worms, other DDoS, and BOTNETs will be very helpful. Knowledge of packet crafting tools for *NIX, which let us build arbitrary protocol packets to be used in attacking hosts and routers, will also be a big help.
At 1:12 PM -0400 2005-07-25, Howard C. Berkowitz wrote:
I need to get some short-term contract help on setting up a lab dealing with SP security issues, in the Washington DC area. Please contact me offline if interested. I am the technoid and will pass you on for the mercenary aspects.
I'm not convinced that this is an appropriate on-topic posting for NANOG. It seems to me that you would be much better off going through SANS or SAGE to find local groups in the area that could be helpful to you. For example, I believe that if you contact the folks at dc.sage (see www.dc-sage.org), they are more likely to be able to help. I know there are several security and network-knowledgeable system administrators in dc.sage. I imagine that at least one or two of them should be consultants/contractors who can help you. But it does seem to me that a more targeted search for assistance would have been appropriate. -- Brad Knowles, <brad@stop.mail-abuse.org> "Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety." -- Benjamin Franklin (1706-1790), reply of the Pennsylvania Assembly to the Governor, November 11, 1755 SAGE member since 1995. See <http://www.sage.org/> for more info.
At 8:27 PM +0200 7/25/05, Brad Knowles wrote:
At 1:12 PM -0400 2005-07-25, Howard C. Berkowitz wrote:
I need to get some short-term contract help on setting up a lab dealing with SP security issues, in the Washington DC area. Please contact me offline if interested. I am the technoid and will pass you on for the mercenary aspects.
I'm not convinced that this is an appropriate on-topic posting for NANOG. It seems to me that you would be much better off going through SANS or SAGE to find local groups in the area that could be helpful to you.
Actually, the interest is in open-source ISP tools.
For example, I believe that if you contact the folks at dc.sage (see www.dc-sage.org), they are more likely to be able to help. I know there are several security and network-knowledgeable system administrators in dc.sage. I imagine that at least one or two of them should be consultants/contractors who can help you.
But it does seem to me that a more targeted search for assistance would have been appropriate.
-- Brad Knowles, <brad@stop.mail-abuse.org>
"Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety."
-- Benjamin Franklin (1706-1790), reply of the Pennsylvania Assembly to the Governor, November 11, 1755
SAGE member since 1995. See <http://www.sage.org/> for more info.
At 8:41 PM -0400 2005-07-25, Howard C. Berkowitz wrote:
I'm not convinced that this is an appropriate on-topic posting for NANOG. It seems to me that you would be much better off going through SANS or SAGE to find local groups in the area that could be helpful to you.
Actually, the interest is in open-source ISP tools.
Syslog is a standard *nix administration tool, useful for system administrators but also used by network administrators and anyone else doing any kind of administration on a *nix box. RRD, MRTG, and Ethereal are standard *nix network and system administration tools. Flowscan and Flowtools are standard *nix network administration tools. I see nothing here that is unique to the ISP environment. Moreover, in the role of system administrator (not network administrator), I have personally used all but one of these toolsets -- flowscan/flowtools. As a system administrator, I've written syslog processing tools or hacked on syslog processing tools originally developed by others, and in some cases I've even taken over maintenance of those tools. I see nothing here that is unique to the ISP environment. At Tue, 26 Jul 2005 00:50:23 GMT, Fergie (Paul Ferguson) wrote:
Don't sweat it, Howard -- some people would rather slam you for what you post to the list than help out. Shame, that.
I don't see anything in the original request that seems to make this post more suitable for NANOG than anywhere else. And I see nothing here that makes this post unique to an ISP environment, or even just more ISP-oriented than plain general network-oriented. Moreover, Howard was talking about a virtual training group setting up shop that needed some help with what seemed to me to be some very basic stuff -- the sort of thing that I would hope any training group would have the in-house expertise to deal with, otherwise they wouldn't be qualified to be providing training on those topics. However, I wanted to give him the benefit of the doubt, and assume that he just went to the wrong place to ask his question as opposed to asking the wrong question in the first place. Part of the reason for my original response on this thread is that I have been chastised a couple of times by the new-generation moderators for being off-topic, and I recalled that we're trying to be more self-policing about these sorts of things. I'm honestly trying to understand what is an on-topic post and what is not, and it seems to me that this is pretty clearly off-topic. So what is on-topic? I've got a question that I've been thinking about for a while regarding SIP/VOIP white/yellow pages directory services and aggregation, and I've been afraid to ask here because I felt it might be too basic and non on-topic. -- Brad Knowles, <brad@stop.mail-abuse.org> "Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety." -- Benjamin Franklin (1706-1790), reply of the Pennsylvania Assembly to the Governor, November 11, 1755 SAGE member since 1995. See <http://www.sage.org/> for more info.
On Tue, Jul 26, 2005 at 04:30:14PM +0200, Brad Knowles wrote: ...
I'm honestly trying to understand what is an on-topic post and what is not, and it seems to me that this is pretty clearly off-topic.
So what is on-topic? I've got a question that I've been thinking about for a while regarding SIP/VOIP white/yellow pages directory services and aggregation, and I've been afraid to ask here because I felt it might be too basic and non on-topic. ...
Brad, Since you convinced me to finally get on this mailing list, I've received this more recently than you. ;-) Admittedly, not a completely definitive description. Perhaps more to the point, the initial poster is more likely to get a helpful response from the dc-sage jobs mailing list, or the sg-dc (security group) mailing list. ======================================================================= Charter ------- The NANOG mailing list is established to provide a forum for the exchange of technical information and the discussion of specific implementation issues that require cooperation among network service providers. In order to continue to provide a useful forum for discussion of relevant technical issues, the list will now be governed by the following guidelines: Acceptable Use Policy --------------------- 1. Discussion will focus on Internet operational and technical issues as described in the charter of NANOG. 2. Postings of issues inconsistent with the charter are prohibited. 3. Postings to multiple mailing lists are discouraged. 4. Postings that include foul language, character assassination, and lack of respect for other participants are prohibited. 5. Blatant product marketing is unacceptable. 6. Postings of political, philosophical, and legal nature are discouraged. Individuals who violate these guidelines will be contacted personally and asked to adhere to the guidelines. If an individual persists in violating the guidelines, the convenor of NANOG, Merit Network, Inc., will take action to filter the offender's messages to the list. If groups of individuals persist in introducing topics that are outside the charter of NANOG, the convenor will send a request to the entire mailing list requesting adherence to the guidelines. If the discussion continues unabated, the convenor will take action to filter all postings on the topic. ======================================================================= -- Joe Yao ----------------------------------------------------------------------- This message is not an official statement of OSIS Center policies.
participants (3)
-
Brad Knowles -
Howard C. Berkowitz -
Joseph S D Yao