Profile

Cover photo
David A. Wheeler
Attended George Mason University
Lives in USA
23,427 views
AboutPostsPhotosYouTube

Stream

David A. Wheeler

Shared publicly  - 
 
Hanno Boeck found Heartbleed using american fuzzy lop combined with Address Sanitizer (ASan)!! More details and why that matters here:
https://blog.hboeck.de/archives/868-How-Heartbleed-couldve-been-found.html
http://www.dwheeler.com/blog/2015/04/07/#heartbleed-afl-asan
tl;dr With a reasonably simple fuzzing setup I was able to rediscover the Heartbleed bug. This uses state-of-the-art fuzzing and memory protection technology (american fuzzy lop and Address Sanitizer), but it doesn't require any prior knowledge about specifics of the Heartbleed bug or the TLS ...
1
Add a comment...

David A. Wheeler

Shared publicly  - 
 
I hope we learn in 2015 from the computer security problems of 2014: http://www.dwheeler.com/blog/2014/12/31/ #Heartbleed #Shellshock #SonyHack #POODLE #gotofail #computersecurity
David A. Wheeler's Blog. Wed, 31 Dec 2014. I hope we learn from the computer security problems of 2014. As 2014 draws to a close, I hope anyone involved with computers will resolve to learn from the legion of security problems of 2014. We had way too many serious vulnerabilities in widely-used ...
1
David Maxwell's profile photo
 
Don't forget Winshock :-(
Add a comment...

David A. Wheeler

Shared publicly  - 
 

Check out this interview of me by Mark Bohannon, where I talk about open source software and the US government!  If you like it, please say so.
In this interview with David Wheeler, we explore the current state of use of open source software by the U.S. government, the challenges of the Federal acquisition system, and what he's excited about as he looks ahead for open source and government.
2
2
John Scott's profile photoPhilip Balister's profile photo
Add a comment...

David A. Wheeler

commented on a video on YouTube.
Shared publicly  - 
 
Kpharris33: Different people prefer different pacing; there's no way to please everyone.  Eay5paev says my introduction to the autotools was "crystal clear", and that's what I was going for.  As for using the CLI, um, I did use the CLI, so your comment doesn't make sense to me.  Also, my goal wasn't to explain everything... just enough to get people started so that the rest of the documentation would make sense.
2
David Maxwell's profile photo
 
Thank you for these videos. I'd managed to avoid learning autotools until now, but they're unavoidable for my current project.
Add a comment...

David A. Wheeler

Shared publicly  - 
 
If you develop software, you might be interested in my "readable Lisp s-expressions" project (readable.sourceforge.net).
1
Add a comment...

David A. Wheeler

Shared publicly  - 
 
Z3 is now open source software! More info: http://www.dwheeler.com/blog/2015/03/27/#z3-oss
1
Add a comment...

David A. Wheeler

Shared publicly  - 
 
See my article "How to Prevent the next Heartbleed" for info on why the Heartbleed vulnerability in OpenSSL was so hard to find.. and what could have found it.
This paper focuses on tools and techniques that would prevent the next Heartbleed-like vulnerability.
1
2
Scott Westlake's profile photoJoão Pinto (Lamego)'s profile photo
Add a comment...

David A. Wheeler

Shared publicly  - 
1
Paul Chapman's profile photoDavid A. Wheeler's profile photoMario Carneiro's profile photo
3 comments
 
+David A. Wheeler An infix binary wff expression gets outer brackets if and only if its arguments are also wffs. Thus ( ph /\ ps ) gets parentheses, but A R B does not (because the arguments are classes) and similarly for A e. B. Class expressions with class arguments get parentheses too. It is not strictly necessary that these rules be followed (when creating new syntax), but it makes grammatical ambiguity a lot easier to verify.
Add a comment...

David A. Wheeler

Shared publicly  - 
2
Josh Haberman's profile photo
 
I love this idea -- can't believe no one has done it before! The unreadability of S-expressions has always prevented me from having any real interest in Lisp.
Add a comment...

David A. Wheeler

Shared publicly  - 
 
Millions of Americans oppose SOPA and PIPA because these bills would censor the Internet and slow economic growth in the U.S.. Two bills before Congress, known as the Protect IP Act (PIPA) in the Sena...
1
Add a comment...
People
Education
  • George Mason University
    PhD in Information Technology, 1995 - 2009
Basic Information
Gender
Male
Story
Tagline
See my website at http://www.dwheeler.com.
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
USA
Links