About the Author

Chris Shiflett is an author and speaker who leads the web application security practice at OmniTI.

OSCON People and Random Tidbits

Thu, 03 Aug 2006 at 15:40:51 GMT
6 Comments
References

One of the great things about OSCON is how it brings people together, and this year's conference was no different. I had the privilege of meeting a number of people for the first time:

Andrew van der Stock, a well-known web application security expert from Australia and prominent member of OWASP
Arjen Lentz, a Community Relations Manager at MySQL
Cal Evans, editor of the Zend Developer Zone and organizer of Nashville's PHP User Group
Ed Finkler, member of the PHP Security Consortium and employed by CERIAS
Jay Pipes, a Community Relations Manager at MySQL
Kevin Murphy, employed by Renkoo
Kevin Yank, Technical Director of SitePoint
John Herren, founder of TagCloud and employed by Zend
Jeremy Johnstone, a PHP Yahoo who was kind enough to give Wez and I a ride back to our hotel for our Passports when we were denied access to alcohol at Portland City Grill. (Neither of us drive, so our licenses have expired.) Thanks, Jeremy!
Susan Wu, Chief Marketing Officer of the ASF and employed by Zend

I may have forgotten a few people, and if so, I apologize.

Laura blogged about her T-Shirt Index, an idea that uses the number of free t-shirts available at OSCON as a rough approximation of the economic health of the industry. If more vendors would realize that XL shirts don't fit everyone, I might have picked up more than two. :-)

Ted Leung mentioned a cool idea from Zak:

Zak Greant of the Mozilla foundation discussed how he is using a bug/issue tracker to deal with community issues. This sounds like a no brainer kind of activity, particularly for open source projects, but I am not aware of any other community that is making use of this practice.

This reminds me of another tip from Zak's blog, Don't get pwn3d: Why Professionalism Matters In Community Discussions.

Other topics of interest from OSCON include the PHP trading card game (which you can now download), the PDXPHP meeting, the PHP Security Hoedown, the OmniTI book signing (another photo), and sponsored events at establishments like American Cowgirls.

About This Post

OSCON People and Random Tidbits was posted on Thu, 03 Aug 2006 at 15:40:51 GMT.

6 Comments

1. terry chay said:

Hey Chris,

Can you link the actual Flickr photo page. That’s a nice photo of the gang there.
Thu, 03 Aug 2006 at 18:39:01 GMT Link

2. Zak Greant said:

Hey Chris,

There are a few other communities using this technique:

* The Free Software Foundation is using a cool issue tracking tool for the GPL v3 process (http://gplv3.fsf.org/comments/gplv3-draft-2.html)

* I turned Asterisk onto this technique for their licensing issues (see http://licensing.digium.com/)

A few other groups are thinking about the process now. I will work up a blog post when/if they decide to try it out.

Cheers!

--zak
Thu, 03 Aug 2006 at 18:39:03 GMT Link

3. Chris Shiflett said:

Terry, as you wish. :-)

Zak, thanks for the links.
Thu, 03 Aug 2006 at 18:50:40 GMT Link

4. Sheeri said:

You know, I never quite understood why an expired form of ID can't vouch for your date of birth....it's not like your date of birth is going to change!!!
Thu, 03 Aug 2006 at 22:47:26 GMT Link

5. Chris Shiflett said:

Sheeri, I think Wez might agree, since his initial comment was to point at the photo on his ID and say something along the lines of, "But, you can see that's me, right?" It was a strong argument, but we weren't talking to very logical people. Oh well. :-)

One could argue that allowing expired IDs might be to limit the effectiveness of lost or stolen ones, but when the photo is recent and clearly of the same person, I can't think of a good reason. Surely people that forge IDs don't make the mistake a picking an expired date.
Thu, 03 Aug 2006 at 23:32:28 GMT Link

6. Adam Trachtenberg said:

You can use expired US Password as proof of work eligibility. If it's good enough in that case, I don't know why an expired drivers license isn't good enough for a bar.
Thu, 03 Aug 2006 at 23:45:57 GMT Link

Upcoming Talks

php|tek

19 - 22 May 2009

At Sheraton Gateway Suites Chicago O'Hare, Chicago, Illinois.

OSCON

20 - 24 Jul 2009

At San Jose McEnery Convention Center, San Jose, California.

New Comments

Ronald wrote:: A little hard for a rookie like me, but useful. I also thought you'd like to know there is a grea...; Posted in A rev="canonical" HTTP Header
Alex wrote:: Aren't you forgetting that the session will expire if _write() is never called? That excludes ...; Posted in
Andy Mabbett wrote:: @Chris Shiflett, #4, belatedly: Google only accepts rel=canonical within the same domain. My s...; Posted in A rev="canonical" HTTP Header
Kenneth Udut wrote:: I've implemented this rev="canonical" idea on http://free.naplesplus.us in the hopes that it catc...; Posted in Save the Internet with rev="canonical"
Mark wrote:: After reading your article and all the comments, what I got out of this was that sessions are not...; Posted in