- PGP Keys
- Vossen's Law
- Firewall Rules
- Home Net Security
- Snort Books
- Sec Tools
- Honeypot Stats
- Firewall Stats
- IP Calcs
- SME Server
- Backup (DI-30)
- Win Tools
- Win. Shell Scripting
- POSIX Redirection
JP has been working with computers since the early Eighties and has
been in the IT industry since the early Nineties, specializing in
Information Security since the late Nineties. He spent a lot of that time
working as a consultant but is now a Senior Security Engineer for BT MSS
(i.e., BT Counterpane),
after moving over to Engineering from Operations in March 2005.
Mr. Vossen has worked with DOS, Windows, UNIX, VMS and AS/400
platforms, with duties ranging from first-level technical support to
network and security architecture and design. He currently loves to work
with Linux, Perl, Snort and other Open Source and Free Software but is
otherwise not much of a programmer. Unlike many of his technically
inclined colleagues, he also enjoys writing and documentation, which has
led to the publication of various InfoSec articles, scripts and tips.
JP is also a CISSP and member of
and other industry related groups.
- Co-author of O'Reilly's bash Cookbook. Buy the book here at Amazon
and help support our companion site and wiki A Website for All Things Bash.
- Volume XX, Number 3 (Summer 2004) the CSI Journal has my
"Scripting: Message Triage with Perl"
article. You can
the Perl code from the CSI site.
Network Security Tips and
Snort FAQ at SearchSecurity.com (Google search):
answers to SearchSecurity.com's
"Ask the Expert" feature for
Infrastructure and Network Security.
- Various articles in Information Security Magazine (now merged into SearchSecurity.com, so see the text in the Internet Archive):
- A Whitepaper (PDF)
and slideshow (PDF), copyright 2002 AlphaNet
Solutions, called "Securing (Hardening) Windows Servers." Also download the MoveTools
batch file, then rename from .TXT to .CMD as needed. They were written for a "TechNet Workshop: Microsoft Security Solutions" presentation
on January 22nd, 2002 at the Microsoft
Greater PA Office in Malvern, PA.
- A response--published in the
February 2002 MCP
Magazine's "Certified Mail" (i.e.
letters to the editor) section--to an article by Keith Ward entitled "Gartner IIS Analysis Off-Target, Say Some Experts."
The piece is a well balanced discussion of a Gartner
IIS Analysis that recommends against using Microsoft's IIS.
However, it does not address the fact that IIS must run in the "Local
System" security context.
- Reviewed and contributed to a draft of "The 60 Minute Network Security Guide (First Steps Towards a Secure Network Environment)" from the
NSA Systems and Network Attack Center
(SNAC). This was referenced at http://www.sans.org/newlook/resources/NSA_guide.htm,
but that page is no longer there. I'm guessing the document is
undergoing revision again. You might check the NSA
Security Recommendation Guides site.
DI-30 + RedHat Backup mini-HOWTO
- "Firewall Rule Base Best Practices."
- "NAT & Private IP Addresses"What NAT is and how and why you should use it in
conjunction with "Private" or RFC1918
non-routable IP addresses.
- I've contributed my Port Database to the Snort
project (see the credits section in About
Snort), and to The Internet Ports
- A contribution
to Rec.Humor.Funny. And another one to the R.H.F
April 2005 one-liners file
- Two pictures of my deck and the plastic lumber I used to build it appear in the
Spring 2005 issue of Coastal Contractor
magazine in Materials Report: Plastic Decking.
- See the Winlocgcheck page
for my Windows port of
logcheck, the famous UNIX log processing tool. You can also
PowerPoint presentation I gave to the Philadelphia Area Network
Technologies User Group (PANTUG) on September 12th 2001.
- I have written a couple of management scripts for CheckPoint
Firewall-1 (LogSwap & CPFWBack). See my
CheckPoint Firewall Tools section for more information.
- I have also packaged an NTP service that will run on a really hardened
NT server (unlike the non-free MS TimeServ service). See my
CheckPoint Firewall Tools section for more information.
Here is my resume in Word or
HTML, last updated 2014-04-21.
Anyway, my certifications include:
(Certified Information Systems Security Professional) #
granted March 4 2000, to present.
- Microsoft Certified Systems Engineer (MCSE); late 1990's
Firewall-1 v3.x Certified Systems Engineer (CCSE); mid-late 1990's
WatchGuard Certified System Professional (WCSP); mid-late 1990's
- a Novell 3.x
CNA (Certified Novell Administrator); mid 1990's
See my Bio above.
I have worked with many small and mid-size companies in eastern
Pennsylvania and New Jersey. I have experience with companies in a broad
range of markets, including Pharmaceutical, Financial, Healthcare, and
I have worked with networks from Netware Lite and Netware 3.x on up to
30+ site TCP/IP WANS. I have written programs in COBOL, Pascal, C, BASIC,
Perl, Bourne Shell and many application macro languages including
VBScript. I have also been a beta tester for Microsoft (Win95 & NT4),
Symantec and others.
I am kind of a generalist rather than a specialist, one reason I have
concentrated on Information Security--it is a very broad and far-reaching
topic. I would rather have several different types of jobs and tasks than
a single monolithic project. Of course, many projects involve a number of
components, and that can be fun too.
While I am quite capable of doing both, I find I enjoy the tactical
side of things more than the strategic. I really get into the nuts and
bolts of how best to accomplish the goal. Here is a sample of
things I enjoy doing, not in any real order:
- Information Security engineering, architecture and design
- System & Tool Automation (shell scripts and Perl)
- Technical writing and documentation (really!)
- Perl & Linux (mostly Debian and Ubuntu, with a dash of CentOS)
- Broadband security and so-called "personal firewalls" for SOHO use
- Hardening systems (mostly Linux, a little Solaris, some Windows 2000 and I used to do NT4)
- Network Appliances, especially Network Security Appliances
- Did I mention Perl & Linux? :-)
I went to Oratory Prep High School, in Summit, NJ.
I also have a BSIS from
The University of Pittsburgh.
- Reading, mostly hard science fiction and vampire books
- Target shooting, pistol, rifle and bow
- Experimenting with Information Security, Linux (mostly
& Perl (mostly ActiveState)
- SCUBA and skin diving (was PADI
certified by O'Donnel
Diving and Lahaina
Divers in early 2001)! See also the Diver's
Alert Network and Hidden
Cove SCUBA in King of Prussia PA, and my SCUBA pictures page.
- Skydiving! Only had one tandem just so far, at the United
Parachute Club but... :-)
- Working on my car (up to late 2003 that was a '93 Honda Civic del Sol Si, now it's the '04 Acura TL 6 speed)
- See my ASCII "circuit" diagram for a headlight buzzer
for early 90's Civic's, including the del Sol:
- Rock climbing at the Philadelphia Rock Gym
- Fixing things and working around the house (See the infamous Deck
- Wood & metal working
- Kayaking on various local rivers in an Ocean Kayak Malibu Two. Nice boat...