My name is Rick Weldon and I am a Network Security Administrator for I-NET inc. of Bethesda Maryland, USA. I have been involved in UNIX and network security for about 7 years now. I am currently on contract to the Air Force as a network and security consultant. I have extensive experience at breaking into UNIX based systems connected to the Internet. Much of the work that I have done over the last few years has been devoted to vulnerability asssessment on UNIX systems. As such I am very interested in ID work. I feel this is the only real means of securing a network with a high "don't worry about it" factor. My involvemnet with ID started about 3 years ago when I volunteered to do beta testing for the Air Force using the Network Security Monitor developed by Todd Heberlein at UC Davis. I immediatlely saw the potential in this type of software and have been interested ever since. I have had limited exposure to DIDS as it was originally done by Steve Smaha at Haystack Labs as well as some of the later work done by Trident Data Systems (David Kuykendall and company). I am also working on my own ID software development project that will based on *BSD based systems. Additionally I have a fairly substantial collection of "hacks" that I would be willing to add to an attack scenario database if anyone is interested. I think this list is an excellent idea and I hope that we all can benefit from it. My only regret is that I didn't hear about it sooner. ---------------------------------------------------------------------------- | Rick Weldon | 'It is difficult to see a black cat in a | | E-mail: rick@badboy.clark.net | dark room, especially when it's not there' | | (Samurai for Hire | --- Chinese Saying -- | | Have Hacks-- Will Telnet) | | ----------------------------------------------------------------------------