rg0d.blogspot.com
GEEK Speek: Blog Redirects
http://rg0d.blogspot.com/2007/03/blog-redirects.html
Friday, March 30, 2007. I've never been a big fan of people who post blogs that just point to another blog posting, essentially reiterating the original point. I've always thought the motivations behind these can too often be lame attempts at name recognition, increase hit-counters (ad-counters), or just the "I want to be part of something bigger" that I feel permeates the blogosphere. My point is this:. If you blog, and you are talking about someone else's article, please make sure you have something ME...
rg0d.blogspot.com
GEEK Speek: Whitehouse Directive: All systems acquisitions must run on Hardened Configurations
http://rg0d.blogspot.com/2007/03/whitehouse-directive-all-systems.html
Wednesday, March 21, 2007. Whitehouse Directive: All systems acquisitions must run on Hardened Configurations. I can't seem to find a link at either DHS or Whitehouse.gov sites yet, but SANS released this information yesterday:. Alan PS. SANS hasn't issued a FLASH announcement in more than two years. IOW this White House action matters. Significant to the security industry. This means that any application that wants a hope in hell of selling their product to US Federal Agencies of any sort must. This wil...
rg0d.blogspot.com
GEEK Speek: January 2007
http://rg0d.blogspot.com/2007_01_01_archive.html
Tuesday, January 9, 2007. Dealing with Logs (Part 1): What Vendors don't tell you about Log Management. So this blog will be dedicated to reviewing the path I followed in my learning - I hope there are a few "gold nuggets of wisdom" that can be gleaned along the way. I hope it comes with a silver bullet. If the "technical leads" can't explain, in terms I can understand, what differentiates their product from another, how can I ever make an educated decision? How tough could this be? I'll explain, briefly...
rg0d.blogspot.com
GEEK Speek: March 2007
http://rg0d.blogspot.com/2007_03_01_archive.html
Friday, March 30, 2007. I've never been a big fan of people who post blogs that just point to another blog posting, essentially reiterating the original point. I've always thought the motivations behind these can too often be lame attempts at name recognition, increase hit-counters (ad-counters), or just the "I want to be part of something bigger" that I feel permeates the blogosphere. My point is this:. If you blog, and you are talking about someone else's article, please make sure you have something ME...
rg0d.blogspot.com
GEEK Speek: Credit Agencies - The Ultimate Scam
http://rg0d.blogspot.com/2007/04/credit-agencies-ultimate-scam.html
Monday, April 9, 2007. Credit Agencies - The Ultimate Scam. Adam, over at EmergentChaos recently blogged about The Cost of Disclosures, and a Proposal. Wherein he proposes that there must be [paraphrasing] some trade-offs to disclosing security breaches of non-critical information vs. breaches of significant information. One statement in particular caught my eye:. By your bank, credit card company, mortgage company, car loan company etc. Even worse than that, is there are virtually no controls. Over what...
rg0d.blogspot.com
GEEK Speek: So long Superman... Vista will save the world
http://rg0d.blogspot.com/2007/01/so-long-superman-vista-will-save-world.html
Thursday, January 4, 2007. So long Superman. Vista will save the world. I've read a lot of articles recently like this one. Some very respectable sources such as SANS and Postini. They imply that Vista will somehow magically fix all the security woes that MS has been undergoing and that the internet will be a magically safer place. I'm sorry people, but that's just a pipedream! Is Vista more secure than previous OSes - for sure. Will it "change the threat landscape" - hell no! No In fact, it means some a...
rg0d.blogspot.com
GEEK Speek: Whitehouse Directive 2
http://rg0d.blogspot.com/2007/03/whitehouse-directive-2.html
Friday, March 23, 2007. SANS just posted more info - there are now links to these documents which didn't exist up to yesterday (I've been checking daily). UPDATE: FLASH REPORT ON THE WHITE HOUSE SECURE CONFIGURATION MANDATE. Http:/ www.whitehouse.gov/omb/memoranda/fy2007/m07-11.pdf. The original (March 20) memo from Karen Evans to Federal CIOs is now posted at. Http:/ cio.gov/documents/Windows Common Security Configurations.doc. Links to both the "Windows XP Security Guide" and "Windows Vista Security Gu...
rg0d.blogspot.com
GEEK Speek: New Toronto Security Conference
http://rg0d.blogspot.com/2007/03/new-toronto-security-conference.html
Tuesday, March 27, 2007. New Toronto Security Conference. As it turns out, that's about to change with a new conference this fall in Toronto: SecTor, which stands for "Security Education Conference - Toronto". The conference will be held on Nov 20-21, 2007 at the Toronto Convention Centre. There are already a couple few good speakers lined up including Mark Russinovich, Joanna Rutkowska, Johnny Long, Dan Kaminsky, Mark Fabro, and Ira Winkler. Http:/ www.sector.ca. RG0d (CISSP, GCIH, GEEK). SANS Reading R...
rg0d.blogspot.com
GEEK Speek: April 2007
http://rg0d.blogspot.com/2007_04_01_archive.html
Monday, April 9, 2007. Credit Agencies - The Ultimate Scam. Adam, over at EmergentChaos recently blogged about The Cost of Disclosures, and a Proposal. Wherein he proposes that there must be [paraphrasing] some trade-offs to disclosing security breaches of non-critical information vs. breaches of significant information. One statement in particular caught my eye:. By your bank, credit card company, mortgage company, car loan company etc. Even worse than that, is there are virtually no controls. Over what...