Ubuntu Wiki

About Me

Hi! I work for Canonical as an Ubuntu Security Engineer. My work is to stay alert, curious, and creative while keeping one step ahead of the bad guys. When I'm not working, I've been known to play with MythTV and generally poke around at video formats. (My name is pronounced 'case', but uses the Dutch spelling -- I was named after my grandfather.)

Community

I've only recently become involved in the Ubuntu community, but have been using Ubuntu since Hoary. (I had been a Debian user for a few years prior to Ubuntu.) As the lead sysadmin at [http://www.osdl.org/ OSDL], I chose Ubuntu as the default distro for all new servers, replaced most of the aging RedHat systems, and kept the visitor lobby stocked with fresh Ubuntu CDs. Nothing beats having a Debian system with a regular release cycle.

More recently, I have been involved in:

• IRC. I'm frequently on #ubuntu-devel, #ubuntu-motu, #ubuntu-bugs, and #ubuntu.

• Wiki updates. I've made a few small changes around [https://wiki.ubuntu.com/Bugs/CommonTasks?action=diff&rev2=40&rev1=39 triage] and [https://wiki.ubuntu.com/Backtrace?action=diff&rev2=15&rev1=13 debugging].

• Bug triage (and submission). I have [https://launchpad.net/people/keescook/+packagebugs adopted several packages] I have familiarity with. I made a launchpad [http://outflux.net/qa/ emblem] for the QA Team, which [https://launchpad.net/people/dholbach dholbach] quickly adopted.

• Security. I work with [https://launchpad.net/people/pitti pitti] in the [https://launchpad.net/people/ubuntu-security Ubuntu Security Team], and already several security fixes I've [https://launchpad.net/people/keescook/+packages worked on] have been released (and others are pending).

• Packaging. In addition to the bug and security work above, I have done new packaging work as well. Over all, my packaging has included:

  • bug fixing in universe:

    • [https://launchpad.net/distros/ubuntu/edgy/+source/inkscape/+changelog inkscape] (sponsored by pitti, closed [https://launchpad.net/bugs/63644 63644], fixed [http://svn.sourceforge.net/viewvc/inkscape?view=rev&revision=13124 upstream])

    • [https://launchpad.net/distros/ubuntu/edgy/+source/abuse-sdl/+changelog abuse-sdl] (sponsored by crimsun, closed [https://launchpad.net/bugs/3616 3616] and [https://launchpad.net/bugs/62309 62309], fixed [http://packages.debian.org/changelogs/pool/main/a/abuse-sdl/current/changelog upstream])

  • security patching in universe (sponsored by pitti): [https://launchpad.net/distros/ubuntu/dapper/+source/sendmail/+changelog sendmail], [https://launchpad.net/distros/ubuntu/dapper/+source/clamav/+changelog clamav]

  • security patching in main (sponsored by pitti): [https://launchpad.net/distros/ubuntu/hoary/+source/krb5/+changelog krb5], [https://launchpad.net/distros/ubuntu/edgy/+source/coreutils/+changelog coreutils], [https://launchpad.net/distros/ubuntu/hoary/+source/gdb/+changelog gdb], [https://launchpad.net/distros/ubuntu/breezy/+source/ffmpeg/+changelog ffmpeg], [https://launchpad.net/distros/ubuntu/breezy/+source/xine-lib/+changelog xine-lib], [https://launchpad.net/distros/ubuntu/hoary/+source/kino/+changelog kino], [https://launchpad.net/distros/ubuntu/edgy/+source/bind9/+changelog bind9], [https://launchpad.net/distros/ubuntu/hoary/+source/python2.3/+changelog python2.3], [https://launchpad.net/distros/ubuntu/hoary/+source/python2.4/+changelog python2.4], [https://launchpad.net/distros/ubuntu/hoary/+source/awstats/+changelog awstats]

  • new packages, originally on REVU, now [http://qa.debian.org/[email protected] accepted into Debian]:

    • [http://mentors.debian.net/cgi-bin/maintainer-packages?action=details;package=orbital-eunuchs-sniper orbital-eunuchs-sniper] (sponsored by [email protected])

    • [http://mentors.debian.net/cgi-bin/maintainer-packages?action=details;package=mp3cd mp3cd] (sponsored by [email protected])

Outside of Ubuntu, I'm involved in other communities. I am a [http://kernel.org/ kernel.org] admin, where I work on maintaining the mirror network for the Linux Kernel, as well as handling user accounts. I am a lurker/janitor for the [http://inkscape.org/ Inkscape] project, through which I'm also involved in the [http://openclipart.org/ Open Clip Art Library] and [http://creativecommons.com/ Creative Commons]. I have [http://conferences.oreillynet.com/cs/os2006/view/e_sess/9252 presented] for two years running at [http://conferences.oreillynet.com/os2006/ OSCON], and I attend [http://defcon.org/ DefCon] annually. This year, with the rest of my team, we won the [http://nopsr.us/ctf2006/ Capture The Flag] security competition.

Software

• Author of [http://sendpage.org/ Sendpage] alphanumeric paging daemon

• Maintainer of Perl Module [http://search.cpan.org/~cook/Device-SerialPort/SerialPort.pm Device::SerialPort]

• Author of [http://outflux.net/software/pkgs/mp3cd/ mp3cd] (as seen in the [http://tldp.org/HOWTO/MP3-CD-Burning/intro.html Linux MP3 CD Burning HOWTO])

• Author of [http://gopchop.org/ GOPchop] MPEG2-PS editor

• Contributor to [http://inkscape.org/ Inkscape]

• Fiddler with lots of [http://freshmeat.net/~kees/ other] [http://outflux.net/?see=software stuff]

Future

I have been an advocate of free software since I first understood what the GPL meant. I love tweaking and patching and helping make things better; I've always had a knack for getting software to behave in unexpected ways. I think finding security problems is fun, and I want to spend my time hunting down and squashing those problems where ever I can find them. Free software already has a strong security reputation, and I want to help keep it that way.

In the near-time, I want to start doing manual code audits of as much of Ubuntu as I can get my arms around. I want to help define and implement protected execution environments. Some of the task has already been done ([http://en.wikipedia.org/wiki/NX_bit NX bit], [wiki:GccSsp SSP]), but there will always be work in other areas (["SELinux"], AppArmor, [http://www.grsecurity.net/ grsecurity]). Security is a moving target.

In the long-term, I want to contribute to developing code analysis tools (both static and dynamic), so that more software can be examined for common problems automatically.

CategoryHomepage