To me it seems that that there must be an element of a new attack there.  All of the old smurf, fraggle, etc attacks are fairly effective blocked by most modern firewalls.  Jester says that his attack is effective against 90% of the sites on the Internet.  It seems like the majority of the infrastructures would have patched their routers and firewalls to block simple stuff like the smurfs, fraggles, and PODs. 

This is awesome!  For those with long commutes, this is a great opportunity. 

Very nice read indeed, Don.

It's hard to recommend a particular firewall.  I think it comes down to a matter of preference and familiarity.  You would probably find Cisco products to be the most supported, but they aren't cheap.  I know a bunch of people using Watchguard products (they have recently gotten much better).  They are affordable and you should be able to find something your price range.

Like former33t said, there are also a bunch of Linux-based firewalls out there, some offering commercial support.  Endian is one such example.  They sell a hardware solution as well.

I wanted to piggy back on what Sil said about job descriptions.  Quite often, they are indeed written by those who don't understand the position.  I also see quite a few instances of very targeted, but almost impossible list of qualifications obviously written by those you would be reporting to directly.   I have done this myself, not realizing it.   Quite often, you will see technical managers throw everything, including the kitchen sink, into the job description, hoping to land the perfect candidate.   However, most are willing to sacrifice at least some items from their wish list.   

I am not a fan of this either. I am quite unhappy with HP support. I am dissatisfied to the point where I will do my best to stay away from their products.  I remember never having to be on hold for Compaq support, back in the day.  After the HP merger, support almost instantly went to crap.  

I actually think that McAfee does acquisitions correctly.  They tend to maintain some form of autonomy in the acquired companies.

This seems cool.  If I have time, I may try muck at this.  I've never done a pure forensics challenge before.  It's always interesting to see how others approach an investigation.

Nice!  Congratulations!

Hmm, this is close to me.   Anyone else thinking about going to this one?

Well, I believe that mysql_query will essentially prevent you from running stacked queries.  So, adding a semicolon and another statement wouldn't work.  One thing is clear, you can insert anything you want into that table.   I think that you are back looking to see where that data is displayed.   You can then implement a CSRF / XSS vector.   The CSRF vector is especially nice since an admin would likely be reviewing the logs.

What SPAM lovelies should we sign him up for?  I am thinking some sort of Snuggie newsletter.

I would say that at least you can pollute the log file with a bunch of junk, and possibly some sensitive data.  Is the usrlog table being displayed elsewhere?  You can inject an XSS vector. 

Are you using PHP?  mysql_query?

I considered going down this road before as well.  I then realized that there are a few local groups in my area, like others have pointed out.  The 2600 has a group in just about every major city.  (http://www.2600.com/meetings/mtg.html)  Unfortunately, I have yet to attend a meeting due to scheduling issues.

OSCP is great.   I also think that some self-study will help you with web app security.  For example, you can look into Damn Vulnerable Web Application.  It has your typical web app vulnerabilities.  There are also sites like hackthissite.org.  that offer tutorials and missions for hacking web apps.