John McDonald (Jacksonville Beach, FL) has worked in code auditing for 8 years. McDonald has published numerous vulnerabilities in the past including remote compromises in OpenSSL, BIND, and globbing vulnerabilities in various FTP implementations. He currently works at Neohapsis where he does code auditing privately for companies. He, along with Mark Dowd, speak at Blackhat, where they have demonstrated a number of ways to completely subvert Checkpoint Firewall-1, and have also published a number of papers in the past discussing innovative new techniques for various applications. Internet Security Systems, Inc. (ISS) was founded in 1994 and provides security products and services that preemptively protect enterprise organizations against Internet threats.