Curriculum Vitae for Tony Finch
===============================

Full name:		Frederick Anthony Nicholas Finch
Date of birth:		27 August 1974
Personal home page:	http://dotat.at/
Email address:		<dot@dotat.at>
Mobile phone:		+44 797 040 1426
Postal address:		16 Nursery Walk
			Cambridge
			CB4 3PR


Employment & Education History
------------------------------

June 2002 - present: Computer Officer grade II
University of Cambridge Computing Service  http://www.cam.ac.uk/cs/
New Museums Site, Pembroke St, Cambridge, CB2 3QH

* System Administrator and Software Developer for the University's
  central email service: Hermes and ppswitch
  (nearly 30 000 users, 250 000 messages/day, 30 PC cluster)
* Support for other email server operators in the University

Projects:

* Setup and admin of CVS repository for email software and config
* Security review of ssh server software, especially improvements
  to OpenSSH for use in menu-only restricted shell systems.
* Central email anti-spam and anti-virus filtering service including
  definition of University-wide email security policy & improvements
  to MailScanner for improved auditing and configuration flexibility
* Support tools for moving users from obsolete email systems to Hermes
* Graphing email traffic, including spam levels
* Infrastructure for collaborative Open Source Exim development
* Improved implementation of the central email relay, including
  separation of incoming and outgoing email for better security
* Research and specification of mechanisms for reducing the
  vulnerability of Internet email to spam, in the IETF
* Replacement of insecure email protocols with secure alternatives
  including better support for people working from home or elsewhere
* Rate-limiting of outgoing email to protect against spam flows from
  infected computers
* Withdrawal of insecure access to Hermes.

Talks and papers  (see http://www-uxsup.csx.cam.ac.uk/~fanf2/ for slides/notes)

2003-04 Evolving Email in Cambridge                                 (SAGE-WISE)
2003-05 Centralized Email Scanning                              (UofC IT staff)
2003-09 Email Scanner Deployment                                (UofC IT staff)
2004-01 Migrating email from CUS to Hermes                      (UofC IT staff)
2004-02 Scaling up Cambridge's email service     (UKUUG LISA winter conference)
2004-05 The new ppswitch                                        (UofC IT staff)
2004-08 Email forgery protection             (UofC Computer Lab Security Group)
2004-10 An overview of the central email services               (UofC IT staff)
2005-02 Exim configuration at Cambridge         (International Exim conference)
2005-02 Bounce address protection for email      (UKUUG LISA winter conference)
2006-01 Secure access to Hermes update                          (UofC IT staff)
2006-01 A Jabber service for the University     (Computing Service green paper)
2006-03 Rate-limiting email with Exim            (UKUUG LISA winter conference)
2006-05 Email with Exim    (African Network Operators' Group Workshop, Nairobi)
2006-07 Good configuration style for Exim                  (annual Exim course)
2006-11 Mail support crib sheet                                 (UofC IT staff)
2007-02 Central email services overview                         (UofC IT staff)
2007-11 Email in Cambridge                        (Law School CIO meeting 2007)

Other writing:

* RFC 5068: Email Submission Operations: Access and Accountability Requirements
	http://www.ietf.org/rfc/rfc5068.txt
* improved MailScanner + Exim installation guide
	http://www.mailscanner.info/install/exim.shtml
* Documentation about email security improvements
	http://www.cam.ac.uk/cs/email/scanner/
	http://www.cam.ac.uk/cs/email/sending.html
	http://www.cam.ac.uk/cs/email/ratelimiting.html
	http://www.cam.ac.uk/cs/email/securehermes.html
* A style guide for Exim configurations
	http://www-uxsup.csx.cam.ac.uk/~fanf2/hermes/doc/misc/EximStyle
* A quick guide to Client SMTP Authorization
	http://www.mipassoc.org/csv/
* Various email-related Computing Service Newsletter articles


April 2001 - June 2002: Unemployed

* Enjoyed having lots of free time
* Obtained commit privileges to the FreeBSD source repository
* Design & implementation of a loosely-coupled object system for C,
  improving support for loadable modules and long-lasting ABIs
* Design of efficient general-purpose binary file format
* Development of techniques for configuration management


June 2000 - March 2001: Software Engineer
Covalent Technologies Inc.  http://www.covalent.net/
303 Second Street, Suite 375 South, San Francisco, CA 94107

* Design & development of highly scalable distributed
  web server log processing system
* Design & development work for Apache-2.0 (including
  zero-copy filtered I/O)
* Maintenance development for Apache-1.3


Sep 1997 - May 2000
Demon Internet Ltd  http://www.demon.net/  http://www.thus.net/
322 Regent's Park Road, Finchley, London, N3 2QQ, England
(later bought by ScottishTelecom which was renamed to Thus plc)

- June 1999 - May 2000: Unix Software Developer
Responsibilities included:
* development work for existing web services
* design and development of new web services and architectures
* CVS repository manager

- Sep 1997 - May 1999: Unix System Administrator
Responsibilities included:
* day-to-day management of: commercial web; free homepages;
  anonymous ftp service; web caches
* strategic development of the above services

Projects in both roles included:
* re-implementation and general upgrade of the BatchFTP service
	(to support HTTP and internationalization)
* automatic provisioning software for 2nd generation commercial
  web service (driven by central accounts database)
* Re-implementation of Demon's old commercial web servers on a more
  modern and maintainable software and hardware platform
* Re-implementation of Demon's free Homepages service for the same
  reasons, and to add functionality and reduce IP address usage
* modifications to Apache to provide better support for
  Demon's large scale virtual web servers
	("mod_vhost_alias" included in Apache 1.3.7)
* new web server log processing system for flexibly and efficiently
  handling logs for thousands of virtual hosts
* evaluation and roll-out of parts of Demon's e-commerce system
* ported Demon's virtual hosting BSD TCP/IP stack optimisations to
  FreeBSD-3 and improved their functionality (PR#12071)
* updates and bug fixes to Demon's version of thttpd
* ported Demon's Squid-1.1 modifications to Squid-2 and contributed
  some fixes to the developers

Oct 1994 - Jun 1997
Computer Science BA (hons) at Trinity College, Cambridge, CB2 1TQ
* Awarded a scholarship after the first year.

Sep 1993 - Aug 1994
INMOS Ltd, 1000 Aztec West, Almondsbury, Bristol, BS32 4SQ
	(now incorporated into ST Microelectronics)
Working in the Graphics Applications Group providing developer
support for ST's palette-DAC chips used on PC graphics cards.

Sep 1988 - Jul 1993
Bryanston School, Blandford, Dorset, DT11 0PX:

* Entered school with scholarship;
* School prizes for Maths (twice)
  and Computing (an implementation of the Game of Life);
* National awards for Maths and Physics.

- Jun 1993
A-levels: grade A in Maths, Further Maths, Physics, Electronics,
	AS Computing, S-level Maths, S-level Physics

- Jun 1991
GCSEs: 8 As (including additional Maths and French), 1 B, 1 C


Skills
------

Unix System Administration:
	FreeBSD, NetBSD, Solaris, Irix, Debian Linux, Red Hat Linux, etc.
	DNS/BIND, SMTP/Exim, CVS repo.man., network routing & firewalling

Programming:
	Unix Shell (sed, awk, etc.), Perl (scripts, modules, internals),
        C (K&R, ANSI, C99), C++, etc. sockets, embedded databases, IPC,
	source code management (CVS), FreeBSD kernel internals,
	assembly language (x86, ARM), compilers (lex, yacc)

Documentation:
	excellent writing skills; experience documenting system internals,
	end-user guides, technology "white papers", internal policy documents,
	protocol specifications, international standards

Internet:
	HTTP, FTP, DNS, SMTP, XMPP, NNTP, TCP, UDP, IP, NAT, NFS, etc.
	at all levels from using applications to implementing them
	IETF standards process
	BSD network stack internals
	design & implementation of large clustered & distributed servers

Technical community and Open Source software:
	I am a FreeBSD committer.
	I am a member of the Apache Software Foundation.
	I have contributed to several open-source projects including:
		FreeBSD, Apache httpd, exim, MailScanner, adns
	I am a participant in a number of IETF working groups
		and co-author of RFC 5068


Other interests
---------------

Winner of the 14th International Obfuscated C Code Contest
	http://www.ioccc.org/years-spoiler.html#1998_fanf

Programming language design & theory
	Functional programming: Haskell, ML, Lisp, Scheme
	Object-oriented programming: C++, Objective-C, CLOS, Smalltalk.
	I have attended a meeting of the C99 standardisation committee WG14

Hobbies
	English church bell ringing, Heraldry, Unusual bicycles
	Science fiction, Real ale, History of computing, climbing


$dotat: doc/web/cv.txt,v 1.36 2010/04/13 16:26:52 fanf2 Exp $