(recap) I was lucky enough to be sent to SANS 2008, at the Disney Dolphin in Orlando, FL, last week.  It was a fun trip, except for some sunburn and crappy Internet access.  Random photos were taken, and I picked up some goodies at Downtown Disney in my spare time.

I took the SANS Security 502, Perimeter Protection In-Depth, class, which went over everything from NIDS to ARP poisioning.  The instructor, Chris Brenton, has one scary understanding of network security.

There were a few lectures at night, four of which I attended.  Hal Pomeranz gave a talk on Unix command-line Kung Fu, and Ed Skoudis gave talks on What Not to Do During a Breach Investigation and Netcat without Netcat.  The Netcat lecture was pretty wild, especially when he showed us how to hide cmd.exe access on a Windows box via two files accessible via NetBIOS.  I also attended a GIAC brief, since I plan on taking at least one of their examinations.

Strangely enough, I had awful Internet access throughout my whole stay in Orlando.  The hotel I stayed at (not the Dolphin, I missed the cutoff date for the SANS discount rate) had awful Wi-Fi coverage, so much that I couldn't stay associated to the APs for more than 30-40 seconds.  There was a Best Western that provided complementary access that I had line-of-sight to from my 17th floor room.  Unfortunately, the *BSD box that was providing NAT functionality got terribly laggy (3-4 sec RTT) after 21:00, every night.  I resorted to Internet access via EDGE.  Internet access at the Dolphin hotel was equally bad - with 20-30% PL at all times.  Good thing I didn't have to do any work :)

New comments are currently disabled for this entry.