Installing Bootcamp
I recently installed Bootcamp and Microsoft Windows XP SP3 on my MacBook Pro.
While this was mostly straightforward, the process got complicated because I did not have my Leopard installation DVD with me, and the cost of traveling to it…well, you can guess. Not worth it.
The lack of the DVD is crucial because it contains Windows XP drivers for the Mac-specific hardware. Fortunately, this page:
http://support.apple.com/kb/HT1999
helped me run down what drivers I needed (mostly the RealTek sound driver). I got an updated NVidia driver from the Apple web site, so the laptop, when booted into Windows, is now able to display proper video and sound — which is, along with external keyboard and mouse, what one needs for Windows-only video games. Network, trackpad, and other misc items are still not working. It has been a heck of a time, especially since the “updates” to Bootcamp that Apple has available:
http://support.apple.com/kb/DL967
and
http://support.apple.com/downloads/Boot_Camp_Update_2_1_for_Windows_Vista_32
don’t seem to run in WindowsXP SP3 (a clean, from ISO install, not an SP2 to SP3 upgrade).
Network Intrusion Recovery
Yesterday I gave a talk at the USENIX LISA conference about the difficulties involved in the process of recovering a network infrastructure from a large-scale intrusion.
Stories about post-mortem analysis of such incidents are rare. Here are a few links and pointers:
“Big-Box Breach: The Inside Story of Wal-Mart’s Hacker Attack” (HTML)
Chronicle of a Server Break-In (HTML, see link to Paul’s actual postmortem)
Abe Singer. “Tempting Fate,” ;login:, Volumn 30, #1, Usenix Association, November 2005. (grab a copy of ;login)
Eugene H. Spafford. The Internet Worm Program: An Analysis (PDF)
Cliff Stoll. “The Cuckoo’s Egg” (HTML)
Bill Cheswick. “An Evening With Berferd In Which a Cracker is Lured, Endured, and Studied” (PDF)
Crossing the Border
On my way back to Vancouver from CISSE, I ran into a border guard who asked me for proof, such as an airline itinerary, that I intended to leave Canada. Not having any such documentation (I ceased carrying printouts of my airline itineraries since I have never been asked for them), I could only assert that I had stable employment in the US and no long-term plans to remain in Canada. At this point, we were at an impasse, since he had no way to verify my intent, and I had no ready way to prove it to him.
His worry was obvious: I am one of those people who are highly mobile, with almost no fixed address or infrastructure holding me to a particular country or location.
Even if they were to pull me into secondary screening and look at the electronic copies of my itinerary, my intent could have been to simply abandon my ticket home. My point is this: beyond some in-depth interview, no paper can prove what my intent might have been.
This incident highlights just how difficult border access control can be: guards are tasked with divining the intent of visitors, travelers, and citizens. Intent is a complex, multi-layered thing with an important temporal component. Border guards must try to understand both long-term and short-term intent as well as any potential security threat or otherwise illegal status. In the course of a one minute conversation, they tend to do this fairly well (from my perspective: I have never been refused entry or even pulled into secondary screening in either direction).
In any event, the guard let me go with a strong admonition to carry such proof in the future and make their job easier. But now that the Western Hemisphere Travel Initiative is in full force (i.e., passports required for even land travelers), will border guards be forced to turn more to other secondary documentation to prove intent? How reliable is this documentation at predicting, conveying, or verifying intent?
Might their job previously have been made easier by the diverse array of identification (keeping in mind that identification has little to do with intent) material presented before WHTI? Now that everyone has a passport, that identity “feature” is more homogeneous, and thus carries less information. At the end of the day, allowing someone into a country is ultimately a trust decision.
Cybersecurity Act of 2009
The proposed content of this bill makes for a variety of interesting discussions:
http://cdt.org/security/CYBERSEC4.pdf
http://thomas.loc.gov/ (search for S.773)
…not least of which is a proposal to license all cybersecurity professionals within 3 years. Else, you can’t do business with the government. (See “Section 7″ starting on page 21 of the PDF).
“Beginning 3 years after the date of enactment of this Act, it shall be unlawful for any individual to engage in business in the United States, or to be employed in the United States, as a provider of cybersecurity services to any Federal agency or an information system or network designated by the President, or the President’s designee, as a critical infrastructure information system or network, who is not licensed and certified under the program.”
It was pointed out to me that an existing DOD regulation pretty much already requires these conditions, albeit limited to DOD employees and contractors rather than all persons seeking to do business with any part of the US Government:
