Ayablog

Who is he? He is a young software designer and techie with a fondness for languages, graphic design, and most things Japanese. He is a co-op Computer Science student at the University of Waterloo. Currently, his goals are to take co-op positions at Apple Computer and in Japan. After University, he plans on founding his own company. What is he? Age: Mid-19 Sex: Male Birthday: Feb 27th Height: 176.5±1cm (mood dependent) Mass: 55±3kg (fully clothed) BMI: 18 kg/m² Eyes: Blueish Green Hair: Brown Favorite: Stuff DDR song: Orion 78 (it's hard!) Scholarly resource: Wikipedia Web comic: Sinfest Font: Optima Movie: もののけ姫 Technologies O/S: Mac OS X & Linux Editor: Good old vi Protocol: IPv6 Language: SQL, Obj-C DBMS: pgSQL Typesetting language: TEX Color space: Ekta Space This blog powered by 100% authentic Aya code! Expect nothing less! “Smart is a state of mind.”

All entries; newest first. mod_dav + Apache. Dated 2004-07-04 22:35:39 -0500. Note: mod_dav is a breeze to set up. If you have a webserver, install it now and, assuming your clients are running operating systems from this decade, enjoy true multiplatform web management. Also, CocoaDreams can save to DAV, and not to netatalk AFP. Don't know why. Big advantage for DAV. Warning: DAV clients opening PHP files open a copy of PHP's output, not the underlying code. Unfortunately that kills DAV's usefulness for me. My Goals. Dated 2004-07-04 04:10:34 -0500. I know what I want in Waterloo. I am going to score a co-op position at Apple Computer in Cupertino, California. I am going to take a position working in Japan. (So I'm taking Japanese.) I am going to join various cool clubs in Waterloo, including the Badminton club, the anime club CTRL-A, and the Aiki-Jujutsu club. And this summer. Finish Kristine's present. Prepare enough of the convention registration system to be impressive at ADHOC. It's soon! Join A.W. New Hapkido Academy (perhaps—prepare for Aiki Jujutsu) Convert Learner's Permit to actual Driver's License. (About time?) TO WATERLOO I GO. Dated 2004-07-04 03:55:44 -0500. Try as I might, I simply could not stop myself from calling the College Board at 12:30 on July 1st and hearing my AP grades. They would determine my future! With a 4/5 on Calculus AB and a 5 on Calculus BC, my future would be Waterloo. Without them—probably Purdue. So an excited, quivering me quickly jabbed the buttons on my cordless phone. "Just a moment, connecting to the College Board database," said a monotone female voice on the other end, showing no emotion to the student whose next four years would be determined by the outcome of the call. "Please enter your AP identification number." A few more numbers typed later the moment comes. "Your BC Calculus grade is... 5." Yes!!! Now how about AB? "Your BC Calculus AB subscore grade is... 5." I'M IN!!! I threw my arms to the ceiling, spun around, and otherwise rejoiced while not waking up my parents! So, it's set. I am a University of Waterloo Computer Science student. The next five years of my life will be spent working co-op jobs, studying mathematics and computer algorithms, and otherwise experiencing Canadian University life. And it's gonna rock. :-) Attachments Admitted!.jpg WDC Awards. Dated 2004-06-30 15:21:45 -0500. Apple's 2004 Developer Awards: http://developer.apple.com/wwdc/ada/2004winners.html An award next year would be my passport to Cupertino and an internship at Apple. I would love to experience working for a company that understands both style and code! Battling Malicious Code. Dated 2004-06-23 16:57:43 -0500. Right. Now for some notes (crammed onto the backs of two business cards) from a talk some Washington FBI agents delivered today on "Battling Malicious Code." First of all, writing like a script kiddie: Write "sub-this, sub-that," spell phonetically, and include words like 007 and trance. Modify logs—add spelling errors! When naming your hacker group, here are some keywords: Alliance, Clan, Zone, VX, Bad Sector, LSD. For example, you could name your login "trancedj007uberhacker." This will fit well amongst names like "smithj1." Not!—but the agents found some cracker's account by looking for names that didn't fit the norm. And the duct tape hack! The l33t hacker renamed ls to .ls, ps to .ps, and such, replacing the originals with shell scripts that ran grep -v. Jackpot! The IP of his tunnel was right in netstat, and his formerly secret login, processes, and directories were a few files away! Various forensics tools: Sleuthkit, Ilook, Encase, FTK, Safeback, and mystery scripts (this is where they steal all your personal information, the presenter joked.) Stressing the importance of network diagrams, the presenter said that in the worst cases, companies have no idea what computers are running, and they write their network diagrams on napkins (which he's seriously received on cases.) The virus internals presentation was awesome. “We have great tools” for analyzing operating system internals, Mike said. The agents test viruses in honeypots. They monitor the registry, network connections, and systems calls with tools like NGSSniff and IDA Pro. They especially look at intermediate files viruses create and delete. But the real work is in disassembly. Some viruses contain up to 400,000 instructions (like BugBear.b,) and it can be like looking for a needle in a haystack, to overuse a cliché. Of course, they are aware of the basics tools (like strings(1).) Virus writers love anti-analysis techniques, and they often riddle their viruses with obfuscation, compression, encryption, and tricks to keep the virus analyzers at bay—though generally just long enough to collect information from their drop URLs and e-mail addresses. Assembly obfuscation is the easiest to spot. The agents are becomine quite proficient at noticing instructions designed to confuse disassemblers—like the 68 0F instruction, which can confuse certain disassemblers enough to miss instructions. Virus writers often run their viruses through compression algorithms, like NEOLITE and tFlack, but tools exist to easily decode those. Encryption isn't too hard to defeat. They showed one example where all the encrypted strings were processed by one function—duh, wonder what that XOR instruction in there does. If you want to annoy the analysis team, use crc32 checks. Search for hardcoded CRC32 values contained in memory outside the function. These are tough to deal with and hard to detect. That's all I have down… except that the FBI has been known to infiltrate cracking groups, monitoring their activities—or instead of immediately arresting people, having them gather data. Sort of like when drug dealing—sometimes you let the deal happen, you know?