From odonnell at cs.uchicago.edu Tue Sep 3 10:35:37 2002 From: odonnell at cs.uchicago.edu (Mike O'Donnell) Date: Thu May 18 12:41:34 2006 Subject: [Cs22800] Welcome to the Free Software Practicum mailing list Message-ID: <20020903153542.4B96E8080A1@surya.cs.uchicago.edu> I took the liberty of entering all of you on the cs22800@cs.uchicago.edu mailing list, for discussion related to Com Sci 22800, Free Software Practicum. You should have already received an automatic welcome message with URLs and an initial password. Some of you are enrolled in the course, some of you are considering enrolling, and some are interested. If you are not enrolled, and I overstepped, please let me know and I'll remove you from the list. I set up everyone to receive messages immediately (instead of daily digests). You can change your personal parameters at http://mailman.cs.uchicago.edu/mailman/options/cs22800/odonnell%40cs.uchicago.edu In the spirit of the course topic, I made the list open for subscription and posting by the world, but I did not advertise our individual email addresses, to discourage SPAM. The volunteer mailing-list-meister who takes over from me can adjust the parameters if I didn't get them just right. Please post an initial message introducing yourself, and your type of interest and participation in the course. One quarter is *very* tight for doing a serious software project. We need to hit the deck running. *Everything* that I can control is negotiable. That's pretty much everything except the registrar's deadlines. Propose whatever changes in the course organization and requirements you would like. If you prefer to sign up and take credit in a later quarter, with a later deadline, that's fine. But at each quarter's deadline for filing grades I will file something for each person on my grade list, based on what I've seen up to that date. I don't do incompletes except for unusual private disasters---not for difficulties in class. The creation of this mailing list should be the last item of class organization for which I take initiative. A class member should take over as mailing list owner, and other volunteers should arrange whatever other support you want: CVS repository, Wikki, BBS, MUD room, IRC channel, Web-based discussion in the HyperNews vein. I will instruct techstaff@cs.uchicago.edu to co-operate, but you should discuss solutions with them directly. I will take all such work into account in the final assignment of credit and grades with the registrar. Part of hitting the deck running is for everyone enrolled or thinking of enrolling to attend the first meeting on Monday, 30 September, at 1:30 PM in Ryerson 257. Please don't schedule any conflicting meetings on Mondays before 4:30 PM. The use of meetings, like everything else, is negotiable. But I expect that we will have some open discussion, some presentations of people's projects, some appeals for help solving particular project problems. All project work is completely open. Get help from wherever help is available. The point of the course is co-operating effectively to accomplish a real software goal---not testing what you can do in isolation. I will be in China 9-25 September. I will check email when possible, but don't count on quick response during that time. 30 September will come just about when I get over the jet lag. Mike O'D. From bsjohnso at midway.uchicago.edu Fri Sep 6 20:25:57 2002 From: bsjohnso at midway.uchicago.edu (Benjamin Johnson) Date: Thu May 18 12:41:34 2006 Subject: [Cs22800] Thoughts Message-ID: <3D7955A5.3050305@midway.uchicago.edu> Has anyone started giving serious thought as to what they're going to do? Personally I am biased towards doing something security related, and professor O'Donnell has some ideas towards a more secure DNS protocol. Other projects I have considered doing include the suggestions of kde and gnome, as well as the honeynet project and snort, an open source IDS system. I spoke with professor and he hoped I could spark some early discussion on this mailing list. I'm in Chicago now and have some free time so I am going to begin giving serious thought as to what project I want to do. I guess that's it. Let me know if any of you have any thoughts / ideas / cool projects to consider. Thanks, Ben Johnson From donour at uchicago.edu Sat Sep 7 10:40:50 2002 From: donour at uchicago.edu (Donour Sizemore) Date: Thu May 18 12:41:34 2006 Subject: [Cs22800] Thoughts In-Reply-To: <3D7955A5.3050305@midway.uchicago.edu> References: <3D7955A5.3050305@midway.uchicago.edu> Message-ID: <1031413250.3d7a1e023c33a@webmail.uchicago.edu> What do you mean by more secure dns? DyDNS + Kerberos is pretty much accepted as the safe way to do name resolution (as far as I can tell). I'm not sure about the utility of working a new protocol spec w/o the full support of the IETF. What did you have in mind? If you really want to work with networking protocols, the Ethereal project always has lots to. The framework is already there to do sophisticated network analysis. If you want analyze some new protocol, all you have to do write a new plugin. There's lots of work to be done with RPC handling, Kerberos, SSL, and so on. The project is very visible and it should be easy to define a nice box to work in for your ten weeks. Check out the website [http://www.ethereal.com/] , donour Quoting Benjamin Johnson : > Has anyone started giving serious thought as to what they're going to > do? Personally I am biased towards doing something security related, > and professor O'Donnell has some ideas towards a more secure DNS > protocol. Other projects I have considered doing include the > suggestions of kde and gnome, as well as the honeynet project and snort, > an open source IDS system. > > > I spoke with professor and he hoped I could spark some early discussion > on this mailing list. I'm in Chicago now and have some free time so I > am going to begin giving serious thought as to what project I want to do. > > I guess that's it. Let me know if any of you have any thoughts / ideas > / cool projects to consider. > > Thanks, > > Ben Johnson > > _______________________________________________ > CS22800 mailing list > CS22800@cs.uchicago.edu > http://mailman.cs.uchicago.edu/mailman/listinfo/cs22800 > -- From odonnell at cs.uchicago.edu Sat Sep 7 10:49:22 2002 From: odonnell at cs.uchicago.edu (Mike O'Donnell) Date: Thu May 18 12:41:34 2006 Subject: [Cs22800] Hacking DNS In-Reply-To: Your message of "Sat, 07 Sep 2002 10:40:50 CDT." <1031413250.3d7a1e023c33a@webmail.uchicago.edu> Message-ID: <20020907154927.67C5E8080A1@surya.cs.uchicago.edu> Actually, I don't have an idea for making DNS more secure. Rather, I have an idea about using the security extensions to DNS to implement self-assigned permanent handles. Handles are domain names without the name part. They are meaningless codes owned permanently by a particular agent and assignable, just like domain names, to a sequence of different IP numbers as the agent moves around over his lifetime. The point is to avoid the huge and increasing fights about rights to meaningful domain names. My idea may not be mature enough to provide a good project for this fall, although an experimental demonstration prototype is worth considering. The main work will be hacking BIND configuration, plus a tiny bit of extra programming for the part that BIND won't do. If you're interested, look at http://people.cs.uchicago.edu/~odonnell/Citizen/Network_Identifiers/ The stuff is pretty diffuse, since I'm still fumbling around for the right things to say to the right audiences. Item #6, "Open Network Handles Implemented in DNS," is the most mature and also the closest to potential project work. I intend to submit it as an Internet Draft this weekend. Mike O'D.