Reading the kernel network stack
An evening spent reading the actual source code of the Linux kernel's TCP handling. What I expected to find versus what I actually found, and why every networking person should do this once.
Notes from the field
Writing
Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.
Showing posts tagged learning — 4 results.
tcpdump: reading the wire
There is no substitute for actually looking at what your machine is sending and receiving. tcpdump has been around forever, and it is still the best tool for the job.
Compiling the 2.0 kernel by hand, and why it is worth doing once
An afternoon spent producing a kernel that boots my exact machine — without any of the modules I do not need — taught me more about Linux than the previous six months put together.
Reading Bugtraq religiously
On committing to read every post on a mailing list you barely understand. The first month of Bugtraq is a humbling experience. The second month, less so.