Clerical Rigor

Category: work

  • NIST::NVD CWE development – follow along

    I’m in the process of getting the tests passing for the 0.03 release of NIST::NVD::Store::SQLite3 wherein our hero imports the CWE data and cross-indexes it with CVEs and CPEs. Follow along and suggest some patches. I’m developing on Debian Wheezy, but I would very much like input from devs on other platforms. http://git.colliertech.org/?p=NIST-NVD-Store-SQLite3.git;a=summary cjac@foxtrot:/tmp$ time…

  • NIST::NVD::Store::SQLite3

    I published an SQLite3 storage back-end to NIST::NVD on the CPAN. It’s pretty quick. About as fast as the DB_File one, but without the down side of being tied to DB_File. It shouldn’t be too difficult to re-factor this code to any DBI-based database. MariaDB anyone? I know it works on Debian. The nightly CPAN…

  • SELinux on Wheezy

    So, Collier Technologies LLC needs to pass annual audits to operate a certification authority recognized by the SoS. To this end, I’m working with the fine group of developers who maintain SELinux. It seems that the configuration of Xorg that I’m using while typing this here blog post does not have a policy set up…

  • Power blip in Tukwila – everything’s okay.

    There’s been a lot of weather here in Seattle this week. It looks like the Tukwila DC’s power blipped this morning. It gave me an excuse to update some configs on a few of the OpenVPN endpoints, re-configure some of the shorewall6 stuff, and enter a bunch of hosts and IPs into the BIG-IP’s node…

  • Perl interface to processing / querying NIST’s NVD feed

    For a work project, I wrote a library in perl that can be used to query the NVD feed that NIST publishes here: http://nvd.nist.gov/download.cfm Here’s a snippit from the perldoc: use NIST::NVD::Query; # use convert_nvdcve to generate these files from the XML dumps at # http://nvd.nist.gov/download.cfm my( $path_to_db, $path_to_idx_cpe ) = @ARGV; my $q =…

  • Business Birthday

    Today is Collier Technologies, LLC’s second birthday. The company’s been around under one name or another since about 2002 or so, initially as a sole proprietorship. Woot, and all that.

  • F5 opens second International Technology Center in London

    Very cool. Presided over by my friend and the VP of our group, Erik Giesa. Notably lacking is the inclusion of a picture of Steve Mitchell’s smiling face. The first of our ITCs is here in Seattle. We’ve got some space on our internet site dedicated to them: http://www.f5.com/solutions/resources/technology-center/

  • Load balancing SIP across Asterisk with BIG-IP

    Topology Participating hosts * 1x BIG-IP VE * 1x Debian Squeeze “Provisioning Server” serving DHCP, TFTP & DNS * 3x Nortel/Avaya 1120E hard phones flashed to SIP1120e04.01.13.00 * 2x Debian Squeeze + digium asterisk packages: $ grep asterisk /etc/apt/sources.list deb http://packages.asterisk.org/deb squeeze main deb-src http://packages.asterisk.org/deb squeeze main DUNDi *CLI> module reload pbx_dundi.so *CLI> dundi show…

  • Taking a position at F5

    Hello readers, I recently finished a contract with Liquid Web helping them to build their cloud computing system. The next adventure will be with F5 as a Product Management Engineer. I’ve been hearing good things about F5 hardware since 2000 when Matt Fisher talked up the Big IP he had been using. My friends in…

  • blog optimizations

    Thanks to some recommendations from Jeremy, Pierre and Jeff, this blog should be running a lot less slowly. I’ve installed memcached, set up wordpress plugins, tuned apache MPM parameters, tweaked iptables and tc rules and beaten on the blog with load testing scripts. It seems that it will now reliably handle around 10 concurrent requests…