Spitting Bits....

The office is wild these days!

It's like Christmas - a geek Christmas! The myriad of multi-sized boxes piled around my desk are calling me... "don't write that blog... open me!" "No! Open me first!" "Hey - I was here first!" Can't you just hear them?

The boxes are filled with products that range from the absolute necessities (such as the USB version of NetScanTools) to the absurd (8-Bit Dynamic Life shirt set - that includes a transmitter for folks who have no friends)!

Why the *(#$*$#@%! do we have all these new products rolling in? Well - it's simple - BitSpitters!

Taking the advice of our buddy Wil and numerous folks who told us to "go viral," we took the leap!

The first four BitSpitters videos are online (see www.wiresharkU.com/bitspitters.html for the links and HTML code to embed on your site, which we'd love!). Alternately you can search YouTube for "bitspitters."

This is what I've learned from my initial foray into the world of viral videomaking:

• I talk too much - YouTube's limitation of 10 minutes for the cheapo freebie account has to be first and foremost in my mind when I start recording. I really only want the videos to be between 1 and 3 minutes long. So far, the closest I've gotten to this lofty goal is 3:44. Maybe I can cut out the title and ending slides!
• People want to be entertained more than educated - the humorous "Look Really Smarterest" is viewed twice as often as the straight-tech talks. That's ok since I think this techie stuff is pretty entertaining anyway - we're going to follow this trend and keep the BitSpitters videos light and lively.
• Watching hit counts is addictive... within minutes of posting the first video I had a hit count of five. Not a big deal in the YouTube world, but fascinating to know some late-night insomiac was already viewing stuff I'd just recorded. (I could only hope they were properly dressed at that hour.)

The upcoming BitSpitters will be shorter (maybe I could cheat and do 'part 1' and 'part 2' videos) and hit some of the more humorous topics, such as:

• How to Keylog Your Kids
• Is Microsoft Unedumacated?
• Secrets of Laura's Lab Kit v9
• Macof Ate My Network!
• Is Nessus Naked?
• Is NetBIOS Ignorance Bliss?
• Aliens and IPv6

If you have ideas for future BitSpitters episodes, send them to me at lchappell@packet-level.com. Watch for the announcement regarding Binary Balloons as well... he he he...

Time to put my headset on and spew!

Laura
www.wiresharkU.com

"Cut Off its Horns, Wipe its Butt and Throw It On the Grill!"

Insomnia has set in... at nearly 3:00am I find myself settled into the couch watching "Contact" and revisiting the events of the past week - what a week!

Insomnia is a condition I suffer when I my brain simply cannot shut down for longer than three hours at a time. I drift off to sleep easily at 11pm only to fully wake a few hours later ready to go. Numerous times I have dragged myself out of bed, hopped in the shower, sung my children awake (I am a horrible singer - it's a matter of 'wake up or suffer an encore') and started cooking up a nice bacon and eggs breakfast - ready to start the day. As my kids stumbled out of their rooms and settled in at the breakfast table, I noticed how sloth-like they were... hmmm.... maybe they need to get to be a little earlier at night... no more 'extra 15 minutes' of reading for them!

My first indication that it is what I call "Pre-3" (before 3am) is the noticeable empty driveway - no newspaper. The fact that I had to use a flashlight to even see the driveway seemingly passed me by. Grumbling about the newspaper delivery man (oh, times have changed... my newspaper man hurls the paper up my driveway out of his Honda Civic passenger window at a rate that caused me to employ evasive tactics to avoid the inevitable 'tag' that he has played with me as I have waited in my driveway with crossed arms and tapping feet at 6:30am), I return empty-handed to start making breakfast.

Suddenly, it is apparent that something is not right -- you don't need to hit me over the head with a brick (or a newspaper)! It can't be 6:30am yet.... oh no... I sheepishly slink back into my house - my Spongebobs (slippers) weighing heavily on my feet. Please, please let it be at least 5am. I can think of a plethora of reasons as to why I woke them at that hour... Ok... do I fess up or pull the old I'm-the-best-Mom-in-the-world (BMITW) cover-up? "You guys look so tired... I'll tell you what... why don't you two go back to bed for a few minutes - get some extra sleep. I'll wake you up in a bit." Off they go with hugs and kisses for the BMITW!

This morning I woke with the vivid image of Ross Stonecipher, President of ExecuTrain, ordering his steak Monday night at The Tavern in Alpharetta, Georgia. When the waiter rounded the table to ask how Ross would like his steak cooked, he piped up with the indelible phrase, "Just cut off its horns, wipe its butt and throw it on the grill!" What a hoot!

I'll write further about the Monday-Tuesday meetings in Alpharetta - meetings that will alter the image and offerings that I am involved in within the IT industry. The coming weeks will be filled with research and planning to make the new vision a reality. My insomnia was likely triggered by these upcoming changes and my excitement at moving in a new, more diverse direction. Insomnia sets in when I want more hours of work than sleep (rather than when I need more hours of work than sleep).

With the formal release of Pilot (http://www.cacetech.com/) last Thursday, the fascinating onsite that has dropped into my lap and the future direction plotted out with ExecuTrain this week - how can I sleep!? This is where I dust off the 'stuff I've got to read' pile to search out a sedative...

Ahh... there it is - my tried and true solution!

It rests nonchalantly about halfway down the pile - its ragged edges a testiment to the number of times it has been ripped from the stack in the pre-3 hours in desperate hopes of kick-starting the five-phase process of slumber.

"High Speed Backup Without Stopping Business Applications" - a 5-1/2 page sleep-therapy expose written back in 2005 to explain Fujitsu's ETERNUS disk array series and the importance of live data backup. For over two years now, I have trusted my restorative hours to this document with total confidence that it will immediately cause an encephalic check-out. Never fails! Come on - is there anything more boring than storage solutions?

Just writing about the storage solutions document is lulling me to sleep... so I'd best give in - tomorrow will be a long day of recording the new Pilot self-paced course and charting the path toward some new and exciting opportunities.

Good night - sweet storage dreams!

Laura

Wireless Electricity? It's Coming!

Coming home to San Jose was a welcome change after the drizzly cold depressing world known as Microsoft... uh, er, I mean Redmond, Washington . Having grown up in San Francisco, California and living without sunshine the majority of the year, I revel in the sunshine that we have in San Jose, California. This weekend the temperatures topped out around 90° and we had a slight breeze-perfect weather! When the weather drops below 70° we whine an moan about the cold. Yes, we Californians are a spoiled lot!

Things were little too hot in many areas of the country as American Airlines grounded some 3,000 flights last week. I was lucky. I was on code share flight with Alaska Airline. Of course, my Alaska Airline flight didn't take off on time (out of the last 10 round-trip flights Alaska Airlines, my flights have been delayed 8 times - they are a pretty mellow bunch). But hey, I was just happy that the plane took off within a couple of hours of the scheduled departure time and I didn't have to put up with the nasty stench of burning wires on the flight.

On Friday evening, I received an e-mail from Dan Garton, American Airlines' Executive Vice President of Marketing. Dan referred to me as "one of our most valued customers" in his apologetic e-mail addressing the grounding of the DC 80 planes. Considering that I have now almost reached my 3,000,000 mile mark with American Airlines, it's a miracle that I didn't have an AA flight schedule for last week. It sure seemed strange to me that the e-mail apology was sent from American Airlines VP of marketing. Don't you think it would been better to send the e-mail from the CEO, Gerard Arpey? Hmmm...

"The work being done now centers on a need to change the way in which American complied with the Airworthiness Directive (AD) regarding such items as the spacing of the ties on the wiring bundles and the direction of the retention clips and lacing cords. We are highly confident that this is not a safety of flight issue because the wire bundle is secure. It is a matter of how the work was done, not whether aircraft were protected from the threat of wire exposure and chafing that could cause fire."

Perhaps this whole world of a wired technology is passé. Maybe it's time to take a look over at MIT and check out the "WiTricity" project (http://web.mit.edu/newsoffice/2007/wireless-0607.html). These folks have it right. Wireless electricity! Take a bit further and imagine having roaming wireless electricity. As you cruise through the airport, your laptop would connect to various wireless electricity taps in charge itself to 100%. Considering the number of times I've plugged my computer into a power strip and then forgot to turn on th power strip - this could be very handy technology! Another plus would be the removal of the dreaded "power cord to the podium" that I've tripped over numerous times... the comedic fall that I've taken so many times would be missing from my presentations, but it's the price we pay for keeping up with technology.

So, back to the Redmond trip. On June 9, the week of TechEd, I'll be able to explain why I've been spending time in Redmond. I'll be arriving at the TechEd conference on a red-eye flight from Redmond that gets me into Orlando around 6:30 a.m. on June 10th. Mark Penaroza, the Security Track Manager, was nice enough to book me in afternoon sessions that Tuesday. As long as American Airlines doesn't ground their fleet that week, I should get there in plenty of time to present. (Crossing my fingers and wires!)

Now back to working on the Wireshark University certification test... we're almost there!

Laura

Sharkfest Swims into History: Vint Cerf, Core Developers and New Products Rock the Show!

[warning - 'spew mode' is on... long blog...]

What an event...!

I'd planned to blog on Tuesday evening after the second day of Sharkfest, but I hit a serious case of brain-drain. In addition, my feet were demanding my attention (see "Ugly Shoe Syndrome" below).

I hate to gush too boldly about the event, but notice I have a bit of Sharkfest afterglow today... that twinkle in my eye, spring in my step (ok, ok... my feet periodically do remind me of the past three days of abuse) - heck, I almost caught myself singing the theme to jaws (one of the few tunes that I can actually muddle through).

I believe the key factors that made Sharkfest such a unique and successful conference were the laid-back campus atmosphere at Foothill College, the 'no suits' image of the attendees and presenters, the refreshing lack of marketing and sales 'pukes' in sight, the sponsoring companies who actually had hot products I want to own, the impressive list of attendees (how do you avoid getting flustered when presenting in front of the creators of Kismet, NMap and WinPcap and the core developers of Wireshark?), the creative and entertaining presenters and the other-worldly oration by luminary Vint Cerf. [My kids would like me to note that the oversized chocolate chip cookies I brought home were better than the tshirts they got from the last few conferences I spoke at...]

An Impressive Launch
Early on the first morning I settled into my seat at the keynote - honestly, I had no preconceived notion of the conference experience we were embarking on. Mike Kershaw (creator of Kismet) had already settled in and was playing around on his Nintendo DS. Gerald was nervously sipping his coffee while John Bruno (co-founder of CACE Technologies) paced about, waiting to start. Loris Degioanni and Gianluca Varenni (co-creators of WinPcap) alternately joked and bickered like an old married couple as they prepared for their moments in the keynote.

Mike leaned over just before the keynote started... pushing his DS under my nose pointing at the screen with a wicked gleam in his eye. (Oh geez... I am not a big video game fan... I won't know anything about the games except what I've learned of the Legend of Zelda from my kids....sigh)... but when I looked at the screen the only characters running around were related to the WiFi signals he was picking up with his ported version of Kismet! Now THAT I understand! Very cool!

I knew this wasn't going to be your typical conference...

As John Bruno acknowledged the many sponsors and Tim O'Neill who was instrumental in making Sharkfest happen by getting us some visibility and bringing in Vint Cerf for the Tuesday morning keynote, we all wished Tim could have been there to hear the applause (I know at least one person, Betty DuBois, called him during the keynote to fill him in on our sincere appreciation of his efforts!). Thanks so very much, Tim! You are a star!

The keynote took a unique turn as John set the framework for the next section - "Gerald, This is Your Life" - a story tying together the elements that would become a cohesive group of Wireshark, WinPcap, CACE Technologies and Wireshark University.

Gerald sprung up to the stage to begin... only to find that John had taken all Gerald's notes from the podium. Being a bit scattered with a diabolical sense of humor, one has to ponder whether this was an intentional ploy - it garnered laughs through the audience as John rapidly riffled through his papers to see if he could find Gerald's notes... forcing Gerald to hold is breath and sweat it out while praying the notes would be found soon. A collective sigh of relief could be heard when the notes were handed over - you could tell this audience respected Gerald and felt his pain for those few brief moments.

Gerald thanked the people who encouraged (and in some cases pushed) him to focus on Ethereal in the early days. He gave us all an inside view of his initial foray into creating Ethereal (and the importance of that barn in the early days - I, for one, am glad he fully explained that line item on his slide!) and segued into the current stats on Wireshark:

• 9+ years in development
• 600+ developers
• 6 hosting providers
• 3 domains
• 2 names
• 1 barn with livestock (it's a long story)
• 1.5 million lines of code
• 300,000 downloads per month
• 900+ protocols
• 1.0 revision released this week

Gerald brought up Loris Degioanni and Gianluca Varenni to the stage to give us the inside view on the development of WinPcap and their unique style of relating to each other. If they ever decide to give up the programming someday, they should consider stand-up comedy. What a pair! Gianluca's ever-present grin reminds you of that little boy who is always in trouble at school, but he's so darn endearing that you just can't send him off to juvenile hall... at least not yet. Loris' self-deprecating humor and quick wit balanced out the pair's ability to come across as two rabble-rousing kids from Italy who are having way too much fun and have inside jokes we'll never be privy to.

I had a few moments to recognize the phenomenal Wireshark University instructors and pester Gerald to tell the audience about one of the alternate names that were considered before "Wireshark" was chosen. EtherWeasel! Thankfully, Gerald followed the level-headed advice of his wife, Karen, and went with the Wireshark name. Thanks Karen! We all owe you one!

It was time to look to the future... Gerald brought Loris back up on stage to announce and demonstrate Pilot - CACE Technologies' graphing and reporting tool built around Wireshark! [Insert drooling images here, please...] Loris deftly manipulated a 100MB file - displaying throughput graphs and pulling out sections to send to Wireshark for further analysis. Control-clicking on multiple graphed elements and drilling down for more comparative detail, I could hardly contain myself. There are so many features in Pilot that I have dreamt about for many years. Finally, Loris entered some comments on one of the graphs, selected to export the graph and comments to PDF format and BING! Up came a report containing all the supporting graphs and verbiage depicting the findings in a clear, colorful manner that even a CEO could understand! All attendees received a DVD containing videos showing Pilot in action. [No price was stated, but the release date is just a few weeks away. Check http://www.cacetech.com/ for more details.]

The keynote concluded right on time (an unheard of feat these days) and we were off... ready to hit the sessions and charged up (with lots of coffee, sodas and candy bars) for the three days ahead.

A 'Who's Who" of Attendees
On Monday morning we arrived at campus at 6:00am to blow up Sharkfest balloons, hang banners, prepare the registration desk and open the speaker lounge (a room that was never used by speakers - all speakers hung out in the Campus Center - there was no separation between speakers and attendees - we were all there a collaborators, colleagues and partners).

During the registration process (which was, in itself, a unique process given the 'register by first name' process - ok, ok... last names next time), I caught myself staring at the folks coming up to the table - check out this impressive list of folks who strolled the campus this week:

• Joe Bardwell (packet guru; Connect 802)


• Gerald Combs (creator of Ethereal/Wireshark)


• Loris Degioanni (creator of WinPcap; creator of Pilot)


• Thomas D'Otreppe (creator of the Aircrack-NG suite)


• Jonathan Fairtlough (LA District Attorney's office)


• Scott Haugdahl (BitCricket; creator of PacketScrubber; former CTO WildPackets)


• Mike Kershaw (creator of Kismet)


• Fyodor, aka Gordon Lynn (creator of NMap)


• Mike Pennacchi (packet guru; Network Protocol Specialists)


• Gianluca Varenni (creator of WinPcap; creator of TurboCap)

and many more... all there for one reason - to support, enhance and share knowledge on Wireshark features, future and related technologies and products.

Wireshark University Instructors and ExecuTrain Group
This was the first time I've been in the same room with four of my five Wireshark Instructors as well as my ExecuTrain team that deals with the Wireshark bootcamp course. I know why I selected these folks to work with - the instructors are the best in the industry! Some were my competitors for years - they became my colleagues over the years and now I am fortunate to have them as my partners in the Wireshark University adventure!

• Betty DuBois (Certified Wireshark University Instructor)


• Tony Fortunato (Certified Wireshark University Instructor)


• Priscilla Oppenheimer (Certified Wireshark University Instructor)


• Phill Shade (Certified Wireshark University Instructor)


• Chris Bell (Certified Wireshark University Instructor) - absent sadly... someone's got to work!


• Tom Robinson (ExecuTrain/Next Step Learning Managing Director - Wireshark University)


• Dave Raab (ExecuTrain/Next Step Learning VP Sales - Wireshark University)

Every attendee got the latest version of the Laura's Lab Kit (v9) in their bags - if you didn't attend, download the ISO image (3.3GB) from www.novell.com/connectionmagazine/laurachappell.html when you have a lot of spare time.

Campus Center Hang-Out
The Campus Center was definitely the place to collaborate. At times you'd see a table of the impressive Wireshark core developers dotted with attendees who were soaking up the brilliance emitted from the creative minds surrounding them. Conversations would wander from war stories of beleaguered networks overloaded with BitTorrent traffic to newer functions added to Wireshark over the past several revs to "I have a dumber network user than you do" competitions.

Ugly Shoe Syndrome
On the first day I wore my conference-ready Aerosole heels... they look good and give me another couple inches in height. By the end of the first day I was hobbling around as my feet screamed at me to sit down. I couldn't - it just wasn't that type of atmosphere. There were too many people to locate for a chance to talk and several presentations to make (sans chair to rest upon). By day two, I'd switched into my loafers... I was noticeably shorter, but much happier... until the end of the day when my feet again reared their ugly little (actually big) soles and screamed bloody murder. On day three I could have been mistaken for one of the many gardeners working the grounds at Foothill. My heels and loafers had been replaced with my backyard shoes - the ones that have been left outside in the pouring rain and pounding sun. Ugly a sin, but comfy as... well almost as comfy as slippers.

Still in pedagony, I hobbled home at the end of Wireshark - thankful that it was a three-day conference. If it had gone on one more day I would have had to bring out the SpongeBob slippers (it's difficult to hide bright yellow sponges hanging off your feet). A fifth day at the conference would have required an extra power strip behind the podium as I would have stood in a foot spa at the front of the room.

Worshipping at the Church of Vint Cerf
Shortly after Vint Cerf took the stage, Gerald came over to me practically shaking with excitement - "Isn't this COOL!" He was bubbling over with the excitement of a 5-year old at Christmas. My mind immediately flashed on an image of Gerald as a 5-year old kid diving at the presents under the Christmas tree... a strange vision because the ecstatic kid was wearing his "Vint Cerf jammies" and hoping for a new compiler tool... oh, well... I digress...

Vint Cerf is a cross between Santa Claus and Arthur C. Clarke. With a brilliant, luminary mind that sees things others cannot fathom and a kind, humble manner, he would be the ideal grandfather! Many people may have grandfathers that twitter about imaginary concepts brought on by some form of dementia, but in this case those concepts have become or are becoming reality. Interplanetary communications? Geez... I'm still trying to figure out how to get rid of Vista's 'donut from hell' half the time. (See http://www.ipnsig.org/.)

Quick thinking on the part of the guys from LOVEMYTOOL - Tim O'Neill and Denny Miu - they videotaped Vint's speech - visit www.lovemytool.com/ to watch and feel inadequate, inconsequential, but inspired by this most eloquent, humble and visionary man! He gave us all the best Christmas present we could have - a globalized communication system.

One of the most heart-warming moments at the conference was when we watched Steve Karg's son approach Vint Cerf to say hello ("Mr. Cerf") and ask Vint shyly if Vint would sign his Strategy Guide. When Angela (from Wireshark University and a key player in coordinating the conference) asked the boy, "Do you know who Vint Cerf is?" he gave her an incredulous look and replied, "Of course! He's the Father of the Internet - didn't you Wikipedia him?" What a hoot! Perhaps Vint is the Grandfather of the Internet to him...

Mingling with the Core Developers
At several points during the conference I wandered over to the Developer Track training room... almost sneaking up on them as they mingled outside the room. Feeling like a kid trying to get close to a sports-star, I tried to just 'melt in' with the group - be one of them... but I wasn't. These folks have a bond that goes back many years - they are bound by their dedication to Wireshark and the open source vision. I must admit... in my head I'd pictured a few of them as unshaven, scraggly-looking misfits who were unaccustomed to natural sunlight. I was pleasantly surprised to find that they not only knew all about modern shower systems, but they had an effusive sense of humor that was exponentially amplified when you get a group of them together!

After all these years of reading the patient and insightful answers posted religiously by these folks, I finally got to catch them in person. Honestly, they are the reason we were all gathered there at Sharkfest - they took up the challenge to continue Gerald's quest.

• Sake Blok


• Anders Broman


• Stig Bjorlykke


• Mike Duigou


• Andrew Feren


• Stephen Fisher


• Guy Harris


• Steve Karg


• Jaap Keuter


• Tomas Kukosa


• Ulf Lamping


• Graeme Lunt


• Martin Mathieson


• Christopher Maynard


• Bill Meier


• Greg Morris


• Richard Sharpe


• Sebastien Tandel


• Michael Tuexen

There were many core developers who could not attend, but should be recognized. In Wireshark, select Help > About Wireshark > Authors to see how many folks have contributed to the resounding success of Wireshark over the years.

Back to Work...
I returned from Sharkfest energized with the contacts I made and excited about the future of Wireshark and Wireshark University. I returned from Sharkfest energized with the contacts I made and excited about the future of Wireshark and Wireshark University.

The past months have offered grueling work for Janice Spampinato, Nicole Martin and Angela Sherman - the three amigas who coordinated everything - balloons, banners, hotels, registration, food, on-campus services, track topics, presenters, welcome packs for presenters, show bags, sponsorships, and much, much more. With their angel, Tim O'Neill, providing encouragement, I think they pulled off one hell of a conference! Thank you so much for your perseverance!

As I sit here with my SpongeBob slippers soothing my feet through the recovery process, I find myself looking forward to future Sharkfest conferences. The future is bright... the sun is shining, the latency on my network is low and I haven't seen a single lost packet or duplicate ACK in over two minutes - ahhh.... life is good.

"Da dum... Da dum..."

Laura
http://www.wiresharku.com/

The "HackTool Virus" is Re-Released

Ah... it must be March. The frantic and outwardly snickering emails are flooding in - "did you know..." The excited caller exclaims, "Your Laura's Lab Kit has a virus on it! Really! I just put it in my drive and my virus detection software came up with a warning about the HackTool Virus! Another virus detection package says the DVD has a Hacker Tool virus as well. One of the applications, Cain and Abel, is infected!"




Note: The new Laura's Lab Kit v9 ISO image can be downloaded from:
http://www.novell.com/connectionmagazine/laurachappell.html

Ok, ok... before you get your iPod cables in a bunch, one vendor blew it by calling this the HackTool virus when they should have simply said you've got a hacker tool there, bubba. Let's quickly look at a description of the "Hacker Tool" designation from one of the VD (virus detection) vendors:

F-Secure's Description of "HackerTool"

Hacker Tool (generic description)
Hacker Tool is usually a standalone file. In many cases such tools are used by hackers to perform certain actions on a compromised computer, for example to crack passwords or to scan for vulnerable computers. It should be noted that such tools are sometimes used by system administrators.

Our corporate customers prefer hacker tools to be detected by F-Secure Anti-Virus. If a system administrator still wants to use a hacker tool, he can exclude the tool's file from scanning. For ordinary users running such tools should be prohibited.

Here's the scoop... the HackTool or Hacker Tools designation does indicate that there is a potentially unwanted program on your computer or on connected media. You do want to know about that, don't you? The Laura's Lab Kit always contains some programs that could potentially be nasty if used in the wrong hands -- Cain and Abel always makes VDs spew forth complaints. Even sweet little Wireshark can cause VDs to scream bloody murder.



Don't get me wrong, you probably do want to know when there's a HackTool issue on your system - a message that your system is infected with the HackTool.rootkit virus should make your skin crawl. But before you freak out about Laura's Lab Kit, check out which tools are associated with the HackTools warning - they may become your favorite secuirty research tools and replace your lost hours on World of Warcraft with the thrill of idle scanning or redirecting traffic usinig ICMP (instead of plain old ARP).



Oh... and one more thing... The fact that we release Laura's Lab Kit on the ides of March is purely coincidence! Now get back to work!

Laura

No Free Sharkfest Booze!

Putting together a conference is a hell of a lot of work - and I'm not even doing all the difficult stuff for Sharkfest, the first Wireshark User and Developer conference taking place next week (March 31-April 2 in Los Altos, California). Visit http://www.cacetech.com/ for the session list and registration information.

It was a major coup to get Vince Cerf out to Sharkfest! What a line-up! We'll have Gerald there teaching how to create dissectors and Loris will be showing the new hot tool graphing and reporting for Wireshark. My Monday presentation was altered so Loris could join me and show this hot tool in action.

Geez... the show bags, the logistics, the marketing, the presenters, the signage, the food... the FOOD! I am shocked at how much conference people eat! I am thrilled we don't have to supply the booze for the conference!

Conference attendees’ concentration levels change as their blood alcohol levels adjust throughout the week. During the first day, their bodies are relatively free of booze toxins (BTs). As the week progresses, the BT level increases as does the sleep deprivation (SD) level. I prefer teaching morning sessions at conferences unless my BT/SD levels are also accelerated. As the week progresses, I see more eyelids than the eye shadow tester brush in the front aisle at Sephora (a very popular cosmetic pusher located in airports and swanky shopping malls. Nothing costs less than US $20... unless it is orange... or is that popular now?).

Private "voluntary class attendees" usually want to be in the class. That doesn’t mean they can give you their full attention, however. They are balancing work responsibilities, family responsibilities and their reputations. They are often in class with a peer, senior member of their firm or some junior smartass who wants to take their job. I do not fault them for being distracted and late to return from the breaks – I appreciate that they could give me a moment of their attention – let alone 6-1/2 hours a day for numerous days in a row.

Private-class "forced attendees" are just warm bodies in the room. They don’t want to be there, but some management mucky muck has decided that this class will suddenly make them worth the paperwork used to hire them. Since I truly do believe the topics I teach are important and make more effective and efficient network troubleshooters and better security technicians, these are the worst students to encounter. Many times I’ve considered handing out the Certificate of Completion papers during the first morning break, thereby weeding out these indentured students from the rest of the class.

Well - the music is blaring and it's time to play with beta products - hopefully, I will see you at Sharkfest... or at least I'll see your eyelids!


Laura

No Rest for the Wicked?

The flight home from Utah was uneventful - primarily because I slept the entire time. Thanks so much to the BrainShare attendee who sat next to me and let me snooze uninterrupted for the short flight. My voice is recovering nicely after going for 24 hours without speaking (to the delight of all around me).

I decided to stop by the office for a quick 'check in' - yipes! The office was crammed with boxes of all sizes - nearly floor to ceiling. Hoping I hadn't hit eBay after a late night of Port o' Calling last week, I nonchalantly asked Angela 'what's in the boxes?' She raced over to rip one open (apparently these were not tipsy eBay purchases - phew!) - Sharkfest conference goodies!

Sharkfest is just 9 days away! Eek! Time flies when conference time rolls around. It promises to be an interesting conference considering you have some of the premier Wireshark contributors coming from all over the world to sit face-to-face with Gerald Combs, Loris Degioanni and Gianluca Varenni. In addition, we'll all get to spend more time with Pilot, the new graphing and reporting tool for Wireshark. I showed Pilot during the Meet-the-Experts night at BrainShare. CACE Technologies (http://www.cacetech.com/) is expected to release Pilot on March 31st! Keep an eye out for it. Check out the entire Sharkfest schedule at the CACE Technologies site when you get a chance.


One of the myriad of boxes in the office held the 'shark shaped shirts' (glad I did not have a rum and coke before trying to say that). These shirts are a bit freaky, if you ask me. They are compressed and squeezed into the shape of a shark. Although everyone assures me that a slight bump on the box will not cause sudden decompression and the boxes will not expload with shirts and fill up all the breathing room around... I am staying away from those boxes!

So... as I sit here gazing out the window at a 70-degree plus day, I find myself putting together the schedule for the coming week in the lab:

1. Finalize my Sharkfest presentations (one session has a last-minute enhancement)
2. Do the final review of the Wireshark Certification Test question bank
3. Upgrade my old Windows 2003 servers to Windows 2008 servers
4. Perform daily updates to my Pilot Beta software and give it a good workout
5. Organize all the business cards and contacts received during BrainShare
6. Review, clean and release some of the trace files gathered last week
7. Finish up and turn in Microsoft project "R"
8. Record at least three hours of the new NetScanTools course (coming soon)

Yup - the week will be busy and filled with exciting new projects and opportunities. Before I head into my lab and immerse myself in packets (especially those 'ICMP Communication Administratively Prohibited' packets), however, I will catch a few moments in the sun to ward off a florescent-light pallor...

Laura