I just read this story over at SC Magazine about Julie Amero’s sentencing being pushed back for a month. I think this is a precursor to a victory, and I am psyched at the number of supporters Julie has behind her from the IT and blogger world. While I read the article, I started thinking […] ↓ Read the rest of this entry…
Why do Alan and Mitchell call the Still Secure, After All These Years blog and podcast “SSATY” instead of “SSAATY”? Is there a conspiracy against the letter “A”? Do they not like the letter “A”? I would think not since it starts Alan’s first name and also starts Mitchell’s last name. Does it help Alan cut […] ↓ Read the rest of this entry…
I am mortified at this story. Kathy Sierra at Creating Passionate Users has been receiving very graphic death threats on her blog and other blogs. She doesn’t know if she is going to post anymore (I am sure she will come back from this), and she has cancelled all her speaking engagements. I have to […] ↓ Read the rest of this entry…
Here’s a comment I made on a post over at Riskanalysis.Is. The post was about how best practices should not be followed on blind faith, and it turned into a small (bit good) debate about the reasons behind compliance. Alex didn;t know about the history of HIPAA, so I decided to turn to my alter-ego, “The […] ↓ Read the rest of this entry…
The blog is fixed. For those of you familair with WordPress, you can change the format of your permalinks to reflect dates or numbers or whatever. I have mine set to dates (click on the title of a post and then look at the URL to see what I mean). For some reason WordPress got confused, […] ↓ Read the rest of this entry…
Thanks to Kurt for letting me know there are some problems with the permalinks on my blog.  For now, if you click on the link to a spcific post, you will get a 404. Looks like links to comments are also screwed. I think this has to do with my theme being old and I am […] ↓ Read the rest of this entry…
I having been mulling over adding another contributor to my blog. My main strength is network security, and I have some good experience in compliance and security management. However, I am very weak when it comes to application security, and I would like to have someone who has strengths in that area to add to […] ↓ Read the rest of this entry…
Well, if Mark at securityBuddha can do it, so can I? What am I talking about? Well, I am going to make this blog a more pure infosec blog, and I am going to start a personal blog. It will be called My Tangential Mind. It will still be at infosecplace.com, but I am adding […] ↓ Read the rest of this entry…
Just a link for now. Vet
Going for Bluecoat WAN Op training today. Kinda funny because I was out at a client’s yesterday working on a POC, and one of the network guys started asking me if I could help him with a Bluecoat WAN op problem he was having. I told him he was a day early, since I had not […] ↓ Read the rest of this entry…
And BTW, since Cutaway and Rothman are talking about their blog birthdays, I think I will follow along. I hit the big number 1 on Feb 24. Here’s a link to my first post (the original post was on Blogger). It was a post musing about where security was going (and I have to say […] ↓ Read the rest of this entry…
There is a lot of stuff going on this month. I am hoping we are going to make our first big deal down here. It will be an wireless / NAC deployment. I’m psyched. Anyway, I am letting everyone know that I will be posting sparingly. I will try to keep up with my CW blog […] ↓ Read the rest of this entry…
The recent uproar, pandemonium, mayhem, hubbub, bedlam, and other synonyms caused by “The List” has taken us security bloggers in a direction that we might just need to help us look at the security industry and ourselves in a new light. Take a second to read Mark Curphey’s post about the issue over at SecurityBuddha.com. Here […] ↓ Read the rest of this entry…
Anyone else using Akismet having problems? Vet
Here’s a thought. Everyone that was on the list of 59 should form a gang called ”The Listers”. We can all get tattoos with a picture of a stylish “59″ inside of a flat panel monitor, buy black motorcycles with the same logo on the fuel, and seek out rude cab drivers to pelt with racist comments. […] ↓ Read the rest of this entry…
OK, where in the H-E-double-hockey-sticks have I been that I have never read the Layer8 blog? The latest post about annoying your pentester made me blow orange juice out my nose! And since I have blown orange juice out my nose a few times in the last week (see here and here), I am officially creating […] ↓ Read the rest of this entry…
I made the list of “The 59 Top Influencers in IT Security”. Me? I am humbled and honored to be in the list, but I have NEVER thought of myself as having this much influence. I think maybe my connections with Martin, Mike, Alan, and others on the list got me noticed, and I think […] ↓ Read the rest of this entry…
If you read this blog (I guess you do since you are reading this) or my Computerworld blog, you know about my feelings (here and here) on the attempt at de-privatizing Social Security numbers in Texas. But when I read this post by Mordaxus @ the Emergent Chaos Blog, I had to think about what he was saying for a […] ↓ Read the rest of this entry…
Mike throws out some good advice for VARs here. Basically, do what is right for your customer, and you will have a loyal customer. Some more advice: VAR’s have bad reps. Don’t be a VAR. Sell stuff, but be the advisor that Mike talks about. If all you do is show up every year when […] ↓ Read the rest of this entry…
My web stats went out the roof yesterday (well, out the roof for me). Still looking into it. Anybody write something about me that I wasn’t aware of? Maybe my CW post about Spire Security and the Texas SSN issue helped. Hmmmm…. BTW: The 13 Mar stats aren’t complete yet since I am writing this […] ↓ Read the rest of this entry…
I guess I am a corporate whore now, but this webinar looked very interesting to me. I’m sure there will be some of the usual vendor stuff, but our PCI compliance manager will be on the talk, and I guarantee you this guy knows PCI very well and will not BS you. Anyway, if you […] ↓ Read the rest of this entry…
This is what happens when you rely on soft porn to sell your product and then don’t back up the business with good support. Between this current issue and them pulling security site domains, these guys pretty much suck. Vet
I am not going to post about DST. I am not going to post about DST. I am not going to post about DST. I am not going to post about DST. I am not going to post about DST. I am not going to post about DST. I am not going to post about […] ↓ Read the rest of this entry…
Martin McKeay posted today about the Texas House voting for a law that would allow SSN’s to be released with other public data like marriage licenses, court abstracts, etc. (H.B. No. 2061). My knee jerk to this is that someone needs to be smacked, and after some investigation, I think my knee jerk is correct. […] ↓ Read the rest of this entry…
I just finished a post at my Computerworld blog about grassroots security. Basically, I am talking about securing the Internet by securing the typical user. So now, I am goign to say much the same thing, but I am going to use a different metaphor. It is in the title, but I will draw it […] ↓ Read the rest of this entry…
Another reason to blow orange juice out of my nose. Vet
OK, I just about blew orange juice out my nose when I read this. And the comments are almost as funny. The combination of comments 9 and 10 is hilarious. Vet
I know I am a little late to this game, but I have to say that it absolutely drives me insane that HID is trying to push Chris Paget around. Just like it drove me nuts last year that ISS caved to pressure and caused one of their last real talents (Michael Lynn) to quit […] ↓ Read the rest of this entry…
Doing some JUNOS training today and tomorrow. We haven’t dug into it yet, but I can tell you one definite strength right now. JUNOS is one code train versus Cisco’s 8000 versions. Cisco used to make my head spin trying to figure out what code rev I needed. JUNOS doesn’t have all that. The first […] ↓ Read the rest of this entry…
©0-2012 An Information Security Place | Powered by WordPress with Easel | Subscribe: RSS | Back to Top ↑