I love wikis. I’ve been working on a security portal at work and it just got so much better with the addition of embedded RSS feeds. With this extension, I’ve embedded the Security Whitelist and Aggregated Vendor and Security News Sites pipes on the front page. This gives our team the ability to check the […]

C’mon guys, what in the hell are you releasing a .1 for just to fix four lines of code. I realize that an exploit in netfilter could be a serious issue, but netfilter doesn’t belong in the kernel to begin with; it should be userland code. Grrrr. This is exactly why I […]

Back in January, I asked Richard Bejtlich in an email to post some tips for reading books. Reading technical books can be a drag at times, yet somehow he manages to get through several a month. Reading is one of those tasks we all have to do in our line of work, for obvious […]

So your DNS team sends you the company’s entire domain name inventory in a CSV (comma-separated values) file. You’re tasked with port scanning those hosts, to perform a network inventory, discover rogue services and other policy violations. It’s simple to do this with a short list of domains and a small number of servers. For […]

I passed up a chance to get an iPhone last week because I couldn’t spare the time to wait in line for it. I was headed to New Hampshire to stay up at Lake Winnipesaukee with some friends and watch the NASCAR Modified, Busch, and Nextel Cup races at NHIS in Loudon.
During our long drive, […]