-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
SNIP!
Rules:
1. Be professional.
2. Follow parliamentary procedure.
3. No swearing.
4. Have fun!
5. [Optional] Defcon rule addition: drink alcohol.
(judging team my enforce drinking when buzzwords, empty slogans and
On Mon, 23 Mar 2009 11:34:50 -, Jon Kibler jon.kib...@aset.com wrote:
Rules:
1. Be professional.
2. Follow parliamentary procedure.
3. No swearing.
4. Have fun!
5. [Optional] Defcon rule addition: drink alcohol.
(judging team my enforce drinking when buzzwords, empty slogans and
On Mon, Mar 23, 2009 at 07:34:50AM -0400, Jon Kibler wrote:
However, one question:
Gadi, how can you participate and still have rule #3? I didn't think
you could convey any thought without F* something. :)
As a proud graduate of the Ditka Diplomatic Studies Institute, I don't
see why
3. No swearing.
Gadi, how can you participate and still have rule #3? I didn't think
you could convey any thought without F* something. :)
Well, strictly, that's vulgarity, not swearing (ie, an oath).
Though, as I imply with strictly, the distinctions between the
various types of strong
http://www.computerworld.com/action/article.do?command=viewArticleBasicarti
cleId=9130073intsrc=news_ts_head
Visa Inc.s top risk management executive dismissed what she described as
`recent
rumblings' about the possible demise of the PCI data security rules as
`premature'
and `dangerous'
http://www.computerworld.com/action/article.do?command=viewArticleBasictax
onomyName=securityarticleId=9130080taxonomyId=17intsrc=kc_top
The networks powering industrial control systems have been breached more than
125 times in the past decade, with one resulting in U.S. deaths, a control
The dirty secret PCI is trying to hide, is that much of the information flying
on their clients networks is cleartext. I've been inside some of those
networks, and was appalled.
From: Rob, grandpa of Ryan, Trevor, Devon Hannah rmsl...@shaw.ca
To:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rob, grandpa of Ryan, Trevor, Devon Hannah wrote:
SNIP!
The networks powering industrial control systems have been breached more
than
125 times in the past decade, with one resulting in U.S. deaths, a control
systems
expert said on March
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rob, grandpa of Ryan, Trevor, Devon Hannah wrote:
SNIP!
Visa Inc.?s top risk management executive dismissed what she described as
`recent
rumblings' about the possible demise of the PCI data security rules as
`premature'
and `dangerous' to
On Mon, Mar 23, 2009 at 12:15 PM, Rob, grandpa of Ryan, Trevor, Devon
Hannah rmsl...@shaw.ca wrote:
The officer added that breaches such as the ones at Heartland Payment
Systems
Inc. and RBS WorldPay Inc. were shaping public opinion and obscuring what
otherwise has been `substantial
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Todd Parker wrote:
The dirty secret PCI is trying to hide, is that much of the information
flying on their clients networks is cleartext. I've been inside some of
those networks, and was appalled.
I have done incident response after breaches on a
On Mon, 23 Mar 2009 11:15:20 -0800, Rob, grandpa of Ryan, Trevor, Devon
Hannah said:
Industry Data Security Standard (PCI DSS) `remains an effective security tool
when implemented properly.'
Why does this remind me of an important part of this complete breakfast?
Because they drink the PCI
Rob, grandpa of Ryan, Trevor, Devon Hannah napsal(a):
So, damned if you do, damned if you don't, and consultants get paid
regardless?
Of course! Consultants are holy.
--
Martin Tomasek
___
Fun and Misc security discussion for OT posts.
Romanian police have arrested a hacker suspected of breaking into Pentagon
systems and planting malware.
Eduard Lucian Mandru, 23, a business studies student from Iasi, Romania, is
suspected of breaking into US Department of Defense systems in 2006.
A criminal hacker nicknamed Wolfenstein
Date sent: Sun, 22 Mar 2009 21:06:16 -0700
From: Paul Ferguson fergdawgs...@gmail.com
I think it's time to argue guns again.
On Twitter?
Yes, please -- anywhere but here. :-)
I should tweet you down like a dawg, for saying that ...
==
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, Mar 23, 2009 at 5:27 PM, Rob, grandpa of Ryan, Trevor, Devon
Hannah rmsl...@shaw.ca wrote:
I think it's time to argue guns again.
On Twitter?
Yes, please -- anywhere but here. :-)
I should tweet you down like a dawg, for saying
same answer: I don't participate in security theater. I think this
First, I am amazed how people so intelligent can hold opinions so
shortsighted :-)
I'd say that PCI DSS did more to information security than *anything
else* since Windows added automated updates.
Now, I've said it :-)
But if
I agree, PCI is a stupid, idiotic standard but it does force some basic
best practices.
But to think it's a fix is whistling past the graveyard.
Alex
-Original Message-
From: funsec-boun...@linuxbox.org [mailto:funsec-boun...@linuxbox.org]
On Behalf Of Anton Chuvakin
Sent: Monday,
And they found him on Youtube as well:
http://www.youtube.com/watch?v=tfF95PjAG4Qeurl
(sorry)
Alex
-Original Message-
From: funsec-boun...@linuxbox.org [mailto:funsec-boun...@linuxbox.org]
On Behalf Of Juha-Matti Laurio
Sent: Monday, March 23, 2009 4:53 PM
To: funsec@linuxbox.org
: same answer: I don't participate in security theater. I think this
:
: First, I am amazed how people so intelligent can hold opinions so
: shortsighted :-)
s/shortsighted/practical ?
: I'd say that PCI DSS did more to information security than *anything
: else* since Windows added
On Mon, 23 Mar 2009, Alex Eckelberry wrote:
I agree, PCI is a stupid, idiotic standard but it does force some basic
best practices.
But it doesn't.
A) you can choose which level of security you want to be under, and at
least some banks are happy if you choose the lowest, even if it's
I think such motion from total ignorance to doing
a piss-poor job of security represents a huge
progress for such, mostly small, organizations.
There also many small companies that took one look at PCI and just gave up
entirely and outsourced anything that was in scope for compliance to a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Via The Age.
[snip]
TelstraClear, Telstra's New Zealand subsidiary, has hired one of the worlds
best known hackers - a teenager known as Akill.
Nineteen-year-old Owen Thor Walker became the subject of a US Federal
Bureau of Investigation (FBI)
Date sent: Mon, 23 Mar 2009 16:05:41 -0400
From: valdis.kletni...@vt.edu
and then wonder why they they feel the
'bits leaving the network' empty stomach before lunchtime.
That presents a particularly disturbing image ... :-)
== (quote
: I'd say that PCI DSS did more to information security than *anything
: else* since Windows added automated updates.
Care to back that up in any way? I think the customers of Heartland, RBS
and other compromises would disagree.
Sorry, but this is kinda of what I was talking about :-) What
I think the point he was making about you being from a vendor that offers
PCI oriented solutions for a fee is that your view is somewhat tainted and
not objective, not that there's anythign wrong with having a biased view,
but it is what it is...
: I'd say that PCI DSS did more to information
On Mon, 23 Mar 2009, Anton Chuvakin wrote:
: : I'd say that PCI DSS did more to information security than *anything
: : else* since Windows added automated updates.
:
: Care to back that up in any way? I think the customers of Heartland, RBS
: and other compromises would disagree.
:
:
27 matches
Mail list logo