Credit Card Compromise – Episode 016 in-security.org podcast


Credit Card Compromise – Episode 016 in-security podcast

Credit Card Compromise – Episode 016 in-security podcast
click image for higher res.


What started as an experimental episode (see also: Cop out) about “discussing news” ended up as a pretty interesting discussion about the state of the US banking, retail point of sales, & security failings. We had a couple of articles that all dealt with the credit card compromises brought about by the outdated and quite frankly already obsolete mag-stripe on your run of the mill credit card. So the articles discussed can all be accessed in the shownotes so head over there. I’ll also throw in a silly video that I kept thinking about during the show instead of staying on topic.
It also lead to the amazing alliteration all around this article!
I mentioned in the last write up that there might be something going on for the 20th episode. I didn’t have anything planned. I just had to write some kind of post for the website and was probably delirious from lack of sleep or too much sleep whichever it is I did the night before. I can hardly remember now. I shouldn’t say sleep supersedes our site’s structure but It might maybe make more mentions of spectacles happen.
There might be. Quite frankly I didn’t think we’d make it to 5 so the simple fact of 20 episodes was the spectacle I was talking about. I dunno, I’ll have to talk to Magnesium about it some-more and see if there’s actually something we can do to make it more spectacular?
I am now all worn out from alliteration. I think I might need to lie down.
click here for the in-security post or Download the in-security podcast directly

And BOOM goes the dynamic input – Episode 015 in-security podcast


And BOOM goes the dynamic input – Episode 015  in-security.org podcast

And BOOM goes the dynamic input – Episode 015 in-security.org podcast
click image for higher res.


e are drawing ever closer to the 20th episode spectacular! I don’t know if there will in-fact be a spectacle but at this point anything goes. This episode we explain buffer overflow on the heap and stack, format string and off by one vulnerabilities, and what to do to avoid them. It’s maybe a little heavy, maybe a little whimsical, and maybe together we can learn a little bit!
Magnesium wanted an image for NOP SLED in the title because that would be more fun than some awkward dude at the top of the post but I was all like “Noooooooooooooope(sled)!” Then I chuckled, then I died a little more inside.

Download the in-security podcast directly or Visit the post on in-security.org

Let’s talk about stacks baby! – Episode 014 in-security podcast


Let’s talk about stacks baby! – Episode 014 in-security.org podcast

Let’s talk about stacks baby! – Episode 014 in-security.org podcast
click image for higher res.


We talked about web vulnerabilities and the markup languages, and interpretation of scripts, but those aren’t real programs running on your computer. This time we’re going to get a little more advanced and talk about programming and execution within the computer drawing back to the first few episodes. It’s detailed but will be the bedrock for the more advanced topics we’ll be discussing in vulnerabilities within applications running on a computer. We mention stacks and cover a great dummy program to really tie this episode together into what I lovingly call the greatest episode ever of any podcast on the internet*.
Actually I kinda felt we used the word stacks so much that I really latched onto it after editing this episode. For that I apologize. But it lead to the zany title and really confusing title image this week.
We also ran into some perceived quality issues with this week’s episode. After some finessing in the editing studio in the spacious west wing of the guest house in stately Max-Manor Max assures me with aplomb that this is resolved. As always if you disagree with Max please feel free to leave us comments below, Tweet us on twitter or email us via email.
*With the possible exception of some of the other podcasts on the internet and episodes that they had.
Check out the episode or Download the podcast directly

Hardening is Haaaard! In-security.org has episode 13 of the podcast is up!


Hardening is Haaaard!  episode 13 in-security.org podcast

Hardening is Haaaard! episode 13 in-security.org podcast
click image for higher res.


Hardening is not as dirty as it sounds, I think… It can be summed up as securing infrastructure by eliminating unnecessary weak points. In our context infrastructure means desktops, workstations, routers, network hubs, servers etc. so I think securing means closing open doors, shutting open ports, turning off apps & services that you don’t need, making sure you close the fridge because you aren’t paying to cool the neighbourhood, and locking the front door when you leave the house. Come to think of it, I’m not 100% sure how accurate any of that is, I should probably give the episode another listen. download the podcast directly

in-security.org podcast episode 12 is posted!


in-security.org podcast episode 12 More Common Web Vulnerabilities

in-security.org podcast episode 12 More Common Web Vulnerabilities
click image for higher res.


We journey again into the realm of continuity! This is YET ANOTHER part 2 for content and ease of consumption. This time we wrap up our common web vulnerabilities with the creatively named episode 012, More common web vulnerabilities! I know right? We spared no expense on that name. I was pushing for something about sessions, if you listen to the episode you’ll understand why.

Episode 11 Common Web Vulnerabilities of our in-security.org podcast


Non of those fancy web vulnerabilities

Non of those fancy web vulnerabilities
click image for higher res.


We give an overview of some of the most frequently used attacks online, ways that websites, web servers, web apps, and web denizens are often compromised by the malicious in episode 11 of in-security.org the podcast. Check it out here

Episode 10 of in-security


By now you should get what I am posting here.

By now you should get what I am posting here.
click image for higher res.


I can't believe we made 10 episodes! Frankly I can't believe Magnesium has kept me on track for 10 of anything, let alone 10 podcasts, 10 edited apisodes (ar ... some of them anyways) 10 site posts, 10 shownotes. This episode of in-security.org's podcast Risk on the cat-ernet We’re looking at the balance that all computer users/IT departments/management & budgeting teams have to work within, the risk of third party applications, third party management, CMS (Content Management Systems) vs time and money. Taking the time & resources to specifically learn, lockdown, manage and protect a system or network…

Episode 009 of in-security.org podcast


Episode 9's Titular image

Episode 9's Titular image
click image for higher res.


Episode 9 of Magnesium and my podcast available at in-security.org.

Episode 009 is Seven Layer Burrito. We discuss the 7 layer OSI model. I don't know what it is... or DIDN'T until I heard THIS!

Dr Ro-BOTNETS


episode 8's DR ROBOTNET

episode 8's DR ROBOTNET
click image for higher res.


Episode 8, and this week was a milestone, We actually got picked up by iTunes (I know we had to submit it for that to happen but we were waiting on various factors) AND IT'S A BIG DEAL TO ME so back off. You can subscribe on your own copy of iTunes here You can get to our in-security website via in-security.org and you can access this episode about botnets, the evils of rootkits, malicious attacks etc here: http://in-security.org/2013/12/02/dr-ro-botnets-episode-008/

7 consecutive episodes of our podcast?


episode 007 Passwords and other bad ideas titular image

episode 007 Passwords and other bad ideas titular image
click image for higher res.


Magnesium, or as I call him "The talent" keeps coming out with more and more delightful content. This time it's episode 007 Passwords and other bad ideas, You can check it out at http://in-security.org/2013/11/25/ep007-passwords-bad-ideas/ or you can download the mp3 directly from here I think we're virtually days away from actually being accepted to the iTunes store as a podcast you can subscribe to!

In-security podcast episode 6 is up.


Episode 006 titular image

Episode 006 titular image
click image for higher res.


We're chugging away making great content and all you have to do is click! This is going to be in-security.org's 6th episode now, we get on to the terribly interesting topic of BAD GUYS! everyone's fave! click here to check out ep006 folks! http://in-security.org/2013/10/29/skynet-protection-episode-006/ (or you can download the mp3 directly from here

We have completed episode 5 of our in-security podcast: Networking networks


It's the titular image from episode 5

It's the titular image from episode 5
click image for higher res.


We're still going strong here. We have completed & posted in-security podcasts episode 5! It's the continuation of episode 4. Networking part 2, Networking networks.You can listen to past episodes & view show notes at In-Security.org.

In-Security Podcast episode 4


Commander Fishead!

Commander Fishead!
click image for higher res.


Magnesium and I are really trying to take this seriously...

We've come out with episode 4 of our podcast in-security (available at In-security.org)

Episode 004 Networking: it's a traaaap is available now for anyone with some spare time and an inkling to learn about computer security.

it's part one of our introduction to networking, network security and unusual analogies.
"But Boron," I hear you asking, "How are you able to find the time to make MORE computer security podcasts whilst you must literally be swimming in all the panties sent in from the girls that would clearly flock to such a podcast?"

I have no idea.

In-security Episode 003


Episode 3's titular image

Episode 3's titular image
click image for higher res.


Magnesium and I have completed episode 3 of our computer security podcast! Check it out @ in-security.org! Feel free to comment or send feedback!

I Podcast therefore iWin?


Episode 2's titular image!

Episode 2's titular image!
click image for higher res.


We're on a RAMPAGE! We've completed a second episode of our new podcast, after months of deliberations.

We've moved the show into it's own home: in-security.org
and episode 2 is entitled Ones vs zeros. It covers bits, binary, switches, the little fiddly bits that make computers compute and way too much more. I admit it's a little dense as it's so packed with content but you can follow along with the shownotes! Please give it a listen & let us know what you think!

Podcast!


Make it do your bidding!

Make it do your bidding!
click image for higher res.


So we have decided to try out a podcast. The idea is simple. Let's learn about security to the point that it can help you get a job! This is our first ep: Episode 001 Hardware - Make Your SexyRobot Work! YOWZA! Keep an eye on this page for our next exciting installment!

Overwhelming Decadence


From a 2009 Montreal trip

From a 2009 Montreal trip
click image for higher res.


Back in 2009 I traveled to Montreal with my sister and our friend Dione. We went downtown for some sightseeing and stopped in at the Notre Dame Basilica. There's some really crazy stuff in there and some... I want to say woodwork? Masonry? Either way it's really quite stunning.

The sun setting on a fun adventure


I looked over walking to a friends place and saw this!

I looked over walking to a friends place and saw this!
click image for higher res.


Like a still from a movie that people would now assume was cgi.

T-Rocks!


I snapped a photo of a drawing I did at work

I snapped a photo of a drawing I did at work
click image for higher res.


One part celebrating that I can actually upload photos right from my phone with iOS 6 (have up trying to find ways around it for several iterations of iOSes and one part showing off the drawing I was happy with!

Spring Cleaning


Close up of an oscilloscope

Close up of an oscilloscope
click image for higher res.


Spring time means cleaning, cleaning means digging up old stuff to start "decluttering" This is why I ended up coming across this old photo. I really like the knobs & dials and wish that this tech was still prevalent. I like the idea of a control panel for my house or room where I can turn on/adjust lamps & fans and stuff. 70s view of the FUTURE!

Cherry Blossoms


Cherry Blossoms outside of Burrard  skytrain station.

Cherry Blossoms outside of Burrard skytrain station.
click image for higher res.


It was rainy so this was about the only time I could get any photos without a million other people snapping pictures at the same time. And even then by the end of my tyrannical reign people were swarming the area in droves to pick up whatever photos i'd missed.

I'm not sure what happens if I upload a landscape picture with this layout


A close shot of some flowers mid march

A close shot of some flowers mid march
click image for higher res.


I think when I redid the site I forgot that occasionally people take photos in landscape. By people, I mean me. So I'll post one of the last photos I took the other day and see if I break the layout!

Mossytimes


A picture of a mossy stump playing with depth of field

A picture of a mossy stump playing with depth of field
click image for higher res.


Still more photos of spring renewal pushing through.

Spring desktop


Quick shot of a tree budding

Quick shot of a tree budding
click image for higher res.


I got another quick shot to post up here. I made it a little darker in hopes that it would make a good desktop image.

Sproing Went Spring


Tiny Dirt Flowers!

Tiny Dirt Flowers!
click image for higher res.


On my lovely health walk I found tiny little flowers. Objects in the photo may be smaller than they appear.

Spring Has Sprung


The trees are budding!

The trees are budding!
click image for higher res.


After a long harsh(?) winter the trees are starting to bud, the birds are looking menacing and it was sunny again today so I went out to take some pictures.

More Spirograph!


Another Spirograph picture taken the same day

Another Spirograph picture taken the same day
click image for higher res.


This is the second that I'm posting, more of a traditional spirograph picture but taken the exact same way as the last.

Thing a day(?) Day 4


Playing Spirograph with a slow shutter speed and a light on a string

Playing Spirograph with a slow shutter speed and a light on a string
click image for higher res.


I decided to play Spirograph but since I don't have a Spirograph I had to make do with a lit, some dental floss and a camera.

I set the camera to a really slow shutter speed (but varied it a few times since it gives different results) and a really small aperture. At that point I sat the camera on a tiny tripod, I then wanted to tie a flashlight to the ceiling to dangle over the camera.

WHO OWNS STRING THESE DAYS?!? Not me that's who, but I have dental floss! I figured that would make do so I could tie a flashlight to the ceiling over the camera.

SERIOUSLY, who has a hook in the right place when you need it? I don't, I had to find a way to tie a flashlight to the middle of my flat ceiling so I tied the dental floss from the curtains in my room to the sprinkler across the room, pulled it taught enough to ti off the flashlight. Then it was picture takin' time. Here's one!


Thing a day(?) Day 4



I decided to play Spirograph but since I don't have a Spirograph I had to make do with a lit, some dental floss and a camera.

I set the camera to a really slow shutter speed (but varied it a few times since it gives different results) and a really small aperture. At that point I sat the camera on a tiny tripod, I then wanted to tie a flashlight to the ceiling to dangle over the camera.

WHO OWNS STRING THESE DAYS?!? Not me that's who, but I have dental floss! I figured that would make do so I could tie a flashlight to the ceiling over the camera.

SERIOUSLY, who has a hook in the right place when you need it? I don't, I had to find a way to tie a flashlight to the middle of my flat ceiling so I tied the dental floss from the curtains in my room to the sprinkler across the room, pulled it taught enough to ti off the flashlight. Then it was picture takin' time. Here's one!


Thing a Day(?) Day 3


What Would Jason Do?

What Would Jason Do?
click image for higher res.


Some days you have to ask yourself... Who would go to the trouble of thinking this up, printing out these stickers, plastering them around the city and then based on the sentiment, no matter how awesome this person may be: are you brave enough to meet them?

Thing a Day(?) Day 2


Dubnium inside Esoteric Taken in 2000

Dubnium inside Esoteric Taken in 2000
click image for higher res.


Sometimes you look back and you think: Holy crap, Time FLEW.
That's right, it seems like only yesterday that Senior Coconut had an album on record store shelves.

Thing a day(?) Day 1


AUTONOMOUS ROBOT

AUTONOMOUS ROBOT
click image for higher res.


This warning poster was found as I was walking home so I snapped a photo of it. I think the warning should be shared with everyone. I have a tendancy to change my route when walking home for just this very reason. I like to find new interesting things and I feel the need to trow the robots off my trail.

NOT ENOUGH RAM TO PROCESS TRICKERY
or love.

Why am I still awake?


Steam rising off lights in a cold rain - Taken with an Olympus Camedia c2500l back in 2003 (at least)

Steam rising off lights in a cold rain - Taken with an Olympus Camedia c2500l back in 2003 (at least)
click image for higher res.


I had my first day of actual work at the new job today. I guess a call center is a call center. I have a bunch still to learn until I'm completely confident but for the time being at least I'm reasonably comfortable.

The call center environment is a little disheartening though. After the last job of doing web programming on my own schedule the rigorous structure is quite different. There's also the call center age gap. I feel like most of the people who get into this kind of gig are generally young. I'm getting to be the weird old guy. All that's left is to grow a crazy walrus moustache and I'm a Richard.

On that note I decided to choose a picture I took ages ago since I still haven't started carrying my camera around with me. At the very least I've been feeling a lot more creative again lately. I guess there's still something to be said about hanging out with "the kids these days" after all.


Can I get a wat-wat-er?


d60 w/flash & sweet timing

d60 w/flash & sweet timing
click image for higher res.


There is a marked discrepancy between my intentions to post regularly and my ability to post regularly. I've been lax, what with several months elapsing between posts.

RECTIFY!

UPDATE: I've moved twice since the last post and I use the term loosely. I've been in Vancouver roughly 3 years now and I'm finally a real boy! I went and lived on Oxygen's couch for 2 months. Which, even under the strict fascist regime imposed (I had to put on pants when she expected guests... I KNOW RIGHT?!?), was pretty nice of me to do. Most brother's I know are hardly even civil to their sisters.

Now however I have an actual apartment, I pay rent. I know what you're thinking: How "bougie" of me. I assure you, however, my quality of life has already improved. While I do miss the fat sacks of cash money that I could throw around when I had 100% disposable income I am already mostly back to the way things used to be.

I've gotten a new job, which is a little disappointing since the last one was the proverbial "bomb", but this actually looks like a fun diversion. Then again it's like falling off a bike, i'm already back on track with doodling while bored and trying to find new and interesting ways to amuse myself. It's not long before I'm back to getting into trouble for taking apart cubicles and building Rube Goldberg devices.

I fully intend to post some photos of the new "crib" and now that Vanadium is out here I have almost all of my old toys. That's right, the payphone is being put to good use. The main thing is: I have a double sized fold-out super comfortable couch for anyone who wants to come visit. I'm just saying is all...


I'm having quite a bit of fun with this new layout.


This was taken with the Olympus Camedia 2500L ages ago

This was taken with the Olympus Camedia 2500L ages ago
click image for higher res.


I've been having fun with the new chemwar layout. I've put together an RSS feed, a sitemap and all that crap, now I want to post most stuff, I haven't gotten a lot of new photos to post though so I'm putting together a few of my older pics to post. What fun!

Do you like to drink?


Startup screen

Startup screen
click image for higher res.


Hey, do you like drinking games? Do you occasionally find yourself out with a couple of friends who would like to play a drinking game but you don't have the right materials?

BOY are you in luck!

I've decided to try developing a couple drinking games for the iPhone so that you can play your favs with a 600$ phone instead of having to splurge for a $1.00 deck of cards!
You're welcome.

Add this handy webapp to your iPhone/Touch homescreen to get the full effect!

If you have any feedback, let me know!


Come Play With Us...


Inspired by The Shining

Inspired by The Shining
click image for higher res.


So, I went out to Montana for a wedding at the start of the month. When we checked into the hotel I immediately thought of taking this shot. Fortunately the bridal party was pretty agreeable and I was able to steal people away before the reception and after the ceremony to get this shot.

Fireworks Festival From Kits


Fireworks always just look like fireworks in photos.

Fireworks always just look like fireworks in photos.
click image for higher res.


I wandered out to see the fireworks at Kits beach, I decided on this photo since Most of the photos just look like fireworks. I didn't have a tripod with me so I didn't have the greatest shots and I'm too jittery for much more.

Let's Get Sorted


DriveWall? WheelWall? Cruise Control?

DriveWall? WheelWall? Cruise Control?
click image for higher res.


I'm now settling into my new temp digs while I try to locate another job and or school. It's fun and exciting, I'm going to have to try and snap a few photos so that I can document the ADVENTURE!

Ctrl-Alt-Deplete


Walking home. Pre-Olympics

Walking home. Pre-Olympics
click image for higher res.


I'm rebuilding the site slowly getting things back on track.

A word of warning: I'm hoping to go over some of the techniques and tricks I found and developed over the last two years of web development. I found quite a few helpful tricks. I'll try to include a pretty picture so that you non-technical types can still be entertained. That won't be happening terribly soon though.

Keep an eye on this space for further updates.


The Last 2 Years


A photo of the moon taken with my Nikon D60 & 70-200mm

A photo of the moon taken with my Nikon D60 & 70-200mm
click image for higher res.


The site was on a temporary hiatus. Here's the skinny: I was finally overwhelmed by spam robuts. I tore the site down in a fit of passionate rage (That's right ladies, rawr) with the intentions of rebuilding and then got a little sidetracked with work. It was at this point that I decided I should take a little time to decide where I wanted the site to go. Afterall, Facebook now exists and that was chemwar's original function.

I'm still on the fence as to chemwar's final iteration but I happen to have a little free time so I figure why not try writing a blog again? They're still super popular right?

A quick recap: I was working developing an inventory system for a warehouse, developing an eBay listing system and a way to synchronize our inventory between eBay and Shopify. Right when the whole thing was coming to fruition the carpet was pulled out from underneath the operation and so now I'm looking for something new to occupy my time.

So it goes right?