There are times when you need to know if you are leaking SSN or PAN information into the wild west of your network or possibly someone else’s network. Or it’s possible that you know this information is moving from your box to specific boxes and you want to make sure it goes only to those boxes. I...
Read the full articleSecuring the Cloud
When one thinks of cloud computing they think of the benefits that are touted all over the marketing material, Reduced Cost, Increased Storage, Highly Automated, Flexibility, More Mobility, and allows IT to shift focus, yet the word security barely crosses the lips of cloud providers. While the ...
Read the full articleResponsible Disclosure?
Recently Travis Ormandy reported a vulnerability to Microsoft and 5 days later went public with working exploit code. The storm that has followed this now is ridiculous and the people involved should be ashamed. Many of the finger pointers are of course the anti-virus vendors and other supposed s...
Read the full articleSnort on AIX 6.1
After seeing numerous articles about building snort on AIX and the problems that come from it I have decided to build AIX 6.1 Snort packages that can be installed without having to build from source. Notice I did not include any rules in these packages so you will need to get your own rules. All ...
Read the full articleSecurity Precautions are for you not me!
This seems to be the hardest task in my job but yet a major portion of my job seems to be protecting the systems from the people who run them. Supposed security people and other technical people always claim to want security yet they use backdoors or ways around any security measures we put in p...
Read the full article
I started my life as a ASP classic developer and have since written code in ASP, ColdFusion, C, C++, PHP, Perl, Ruby, Python and others.