Blogs
Firewall Log Stats
Analyzing OpenBSD PF firewall logs with enhanced Pantz PFlog Stats: added GeoIP support using Maxmind DB, updated whois links for global regions, and automated blocked packet analysis with Perl scripting.CVE-2014-6271 - ShellShock
ShellShock bash vulnerability (CVE-2014-6271) allowing remote code execution via crafted environment variables: patching Debian systems with SaltStack, tracking 6 related CVEs, and emergency response coordination.Strange SNMP SetRequest Traffic
Investigating spoofed SNMP SetRequest attacks using Google DNS IPs (8.8.8.8): 45-minute packet capture reveals sequential scanning patterns targeting ISP /16 blocks, confirming Internet Storm Center findings.IP Quail API
Building a JSON API for ipquail.com using Python/Flask and uWSGI/nginx: RESTful endpoints returning IPv4/IPv6 addresses, inspired by ARIN's Whois-RWS, with CORS support and production SSI implementation.ARIN on the Road
Attending ARIN on the Road in Winnipeg: IPv6-focused presentations, hands-on with RESTful web services API, discussions on DNSSEC/RPKI implementation, and networking with ARIN leadership.