Security Day 08
With yours truly…
Copy/Paste:
Security Day on Risks, Anonymity, Underground Economy and Abuse, the rhetorics and reality of control, Safer Visa etc.
Are you getting a queasy feeling while driving under highway-bridges with people standing on the bridge? Does it help to think about the odds of becoming a victim? Or is there a layer just below rationality in your brain that makes you look, worry etc. even when your brain says that the chances of becoming a victim are slim? Besides security technology we will talk about our "stone-age brain" and how it deals with risk. And we will learn how the attitude towards risk changes over time.
This security day takes us way beyond the classical view of security as a technological problem. Now we go after the core concepts like risks and how we deal with risks on a psychological and sociological level. And we ask what security really is: is it unilateral? Is it by necessity something bilateral or multi-lateral? How can we be tricked into accepting things "for our safety"? Dr. Michael Zwick (Social Sciences Faculty at the University of Stuttgart) will explain to us the "social construction of risk" and the evolution of the risk concept from the middle ages till today.
The question of risk awareness is core for IT security specialists as well. We - developers and security people - are not beyond making grave errors in risk assessment: "it won't happen to me" is the title of Dr. Volker Scheidemanns talk (he is a cryptography specialist and manager with apsec . What makes us so sure that we won't be next?
We will also learn new things about the underground economy and how to fight abuse of systems. Tobias Knecht will give us an upgrade on what is going on in the underground economy currently. I still remember his first talk here at HDM and it has been a highlight ever since. This will lead over to a short talk by Christian Fesser (Computer Science and Media Faculty): Electronic commerce has always been a target for the underground economy and its players. Christian Feser will explain "Verified by Visa" as a follow-up to SET.
These issues are closely tied to the question of anonymity: is anonymity necessary? evil? and what kind of tools and concepts exist for anonymity e.g. in peer-to-peer networks. Marc Seeger (Computer Science and Media Faculty) is currently finishing his thesis on anonymity and he will give us a short overview on the results. This is work in progress though.
The rhetorics of control will be explained by Sandro Gaycken, the author of 1984.exe . What makes new control measures necessary? Are the dangers real? Or do we see the expansion of security technology into every day life simply because it can be done? The video practices of Lidle and many (most?) of the other stores make this topic more important than ever.
Unconfirmed rumors have it that the Chaos Computer Club Stuttgart (CCCS) will be present to take your fingerprints (or why else would they bring 20 litres of gooey stuff?).
Fix iTunes Mail Sync After iLiberty+ Jailbreak
"iTunes could not sync mail accounts to the iPhone because the iPhone cancelled the sync.";
iPhone:/var/mobile/Library root# chmod -R 777 Mail/
Works like a charm :D
Typo "Related Posts"-plugin
As you may have noticed, I installed a plugin that displays related posts (according to tags) in the full article view.
It's based on the the related posts plugin by Frederic de Villamil but I translated it to english and patched it to work with the current trunk version of Typosphere.
Download it over here
GMail Virus Scanner Down
Wisdom
The 1st time you do something: it's science
The 2nd time you do something: it's engineering
The 3rd time you do something: you're a technician
a quote by Clifford Stoll
Mod_rails for Apache (Update)
After spending a lot of time painfully configuring mongrel + mod_proxy + apache + … there now is an official release of mod_rails aka passenger which works pretty well :)
The installer wasn't really that great (had to download the source and use the bundled installer because some ansi problems I think) and I had to copy a bunch of files to get the things where they should be, but now it works (as you can see).
According to the benchmarks it should be fast :)
EDIT:
Hm, seems as if the module needs a little bit more dev-time :)
[Sun Apr 13 11:03:48 2008] [error] [client XX.XX.XX.XX] * Unexpected error in Passenger: write() failed: Broken pipe (32)
Migration
ok, I migrated AGAIN.
This time to Mephisto :)
This is officially my first testpost…
Simplicity Sells
Conan Using iChat
Testing and Quality Day
Wie muss Software entwickelt werden, die kontinuierlichen Änderungen unterliegt? Wie ist zu programmieren, um spätere Anforderungen schnell und präzise umsetzen zu können? Eine Lösung bietet die testgetriebene Entwicklung.
Wie testet man am besten? Was kann getestet werden? Welche Möglichkeiten bietet die testgetriebene Entwicklung? Antworten darauf erhalten Interessenten beim „Testing and Quality Day“ an der Hochschule der Medien (HdM) in Stuttgart.
Er findet erstmals am 11. April 2008 ab 9.00 Uhr statt. Gäste sind herzlich willkommen.
Die Teilnahme ist kostenlos.
Studierende der Medieninformatik organisieren die Veranstaltung
im Rahmen der Vorlesung Rahmen „Aktuelle Themen der Internettechnologien“.
PROGRAMM
9:00 bis 9:15 Uhr
Begrüßung, Prof. Walter Kriha, Studiengang Medieninformatik der HdM
9:20 bis 10:00 Uhr
Model-Driven Testing Teil 1, Jürgen Jähnert, Rechenzentrum Universität Stuttgart
10:20 bis 11:30 Uhr
Model-Driven Testing Teil 2, Steffen Jung, eXept Software AG, Bönnigheim
12:30 bis 13:00 Uhr
Test-Driven Development, Christian Baranowski, SEITENBAU GmbH, Konstanz
13:20 bis 13:50 Uhr
Messen und Testen in Kommunikationsnetzen, Rolf Heider, JDSU Deutschland GmbH, Eningen
14:10 bis 14:40 Uhr
Automatisiertes Testen von Open Source Software, Christian Kaas, Ascom Holding AG, Bern (Schweiz)
14:40 Uhr
Diskussion und Wrap-Up
Wann?
Freitag, den 11. April 2008 , ab 9 Uhr
Wo?
HdM, Nobelstr. 10, 70569 Stuttgart, Raum 056