-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul Ferguson wrote:
> Via Threat Level.
>
> [snip]
>
> Two security researchers have demonstrated a new technique to stealthily
> intercept internet traffic on a scale previously presumed to be unavailable
> to anyone outside of intelligence agencie
of
any way to blackhole all the domains registered by a given registrar.
However, if there was, that may be a more effective solution than to
blackhole an ISP, because the blocking would follow the rogue domain to
wherever it moved its hosting to.
My $0.0002 worth.
Jon Kibler
- --
Jon R. Kibler
C
, who made money here?
Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224
My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253
-BEGIN PGP SIGNATURE-
Ve
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
>> Which is why NASA is having difficulty: they _only_ do rocket science.
I disagree.
I have had NASA criminal investigation folks in some very advanced
security courses I have taught. They are so
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
I have a client that is trying to justify hiring a network/security
person for their IT staff. Senior management already thinks they are
overstaffed. Here is a rough outline of their environment:
Company size: ~200
Number of locations: 12 acro
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul Ferguson wrote:
> FYI. :-)
>
> - ferg
>
>
> -- Forwarded message --
> From: ICANN News Alert <[EMAIL PROTECTED]>
> Date: Wed, Nov 12, 2008 at 5:10 PM
> Subject: ICANN News Alert -- Termination of Registrar EstDomains to Go
> Ahe
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul Ferguson wrote:
> On Wed, Nov 12, 2008 at 9:49 AM, Rob, grandpa of Ryan, Trevor, Devon &
> Hannah <[EMAIL PROTECTED]> wrote:
>
>
> You're not the only person to notice this. :-)
>
> http://msmvps.com/blogs/spywaresucks/archive/2008/11/12/16538
Subject: RE: Pentagon Hit by Unprecedented Cyber Attack
Date: Thu, 20 Nov 2008 21:11:44 -0500
From: Jon Kibler <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Organization: Advanced Systems Engineering Technology, Inc.
To: [EMAIL PROTECTED], [EMAIL PROTECTED],
[EMAIL PROTECTED]
Two
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[EMAIL PROTECTED] wrote:
>
> I was under the impression that at some of the nuclear weapons research sites,
> *all* media was removable, so that when you were done working with it, it
> was possible to unplug/remove the drive and put it back in the sa
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[EMAIL PROTECTED] wrote:
> On Wed, 03 Dec 2008 12:26:05 PST, Gregory Hicks said:
>
>> But sounding the death knell for the device is Gartner analyst Steve
>> Prentice who said "the mouse will no longer be mainstream in three to
>> five years."
>
>
simplistic and clean, and you don’t
have to use a microscope to read the text or examples. I am as impressed
by the production qualities of the book as I am its contents. This is
clearly a first rate book on all counts.
Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
quispiam lepidus wrote:
> From: http://www.news.com.au/technology/story/0,28348,24823261-5014239,00.html
>
> THE US is unprepared for a major hostile attack against vital computer
> networks, government and industry officials said after a two-day
> "c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
John C. A. Bambenek, GCIH, CISSP wrote:
> Tell me exactly how any scenario of a "cyber 9-11" would entail
> anything on the scale of a loss of 3,000 lives. Hyperbole does not
> serve our industry well.
>
I can think of several scenarios where lives c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juha-Matti Laurio wrote:
> http://www.noradsanta.org/en/home.html
>
> Merry Christmas! :)
>
Are they locked and loaded, just waiting for U.S. air space to be
violated? :-)
Jon K
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineerin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi y'all,
Hope everyone is enjoying their holidays.
Anyone know what is the story regarding CastleCops shutting down?
Best wishes to all,
Jon K
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juha-Matti Laurio wrote:
> "It might come as a surprise to many of us but a nine year old girl has been
> able to pass a Microsoft Certified Professional examination, and has become
> the youngest person to ever pass this test.
>
No surprise:
MCS
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Martin Tomasek wrote:
> Juha-Matti Laurio napsal(a):
>> "German President Horst Koehler signed a legislation to allow the Criminal
>> Investigation Office (BKA) to start online preventive espionage, a measure
>> criticized by the opposition and the G
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul Ferguson wrote:
> It's not clear from his testimony whether the NYPD has the means to disrupt
> electronic communications for a small group of terrorists without shutting
> down cell phone service to a large part of Manhattan.
Don't have cell p
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Tomas L. Byrnes wrote:
> http://www.fox.com/24/
>
> And, with the consolidation of gateways for the GIG, and SCADA going
> on-line, the libretto is plausible, if you take the current trend to its
> absurd conclusion.
>
> http://www.nationaljournal.co
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
All,
In case you missed it, monster.com (the big jobs board) admitted that
they got hacked recently:
http://help.monster.com/besafe/jobseeker/index.asp
- From the admission that they lost passwords, I would have to presume that:
-- they s
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
All,
For several years now, I have been looking for a "Laptop Burglar Alarm"
type of device. I have never found anything close to what I am looking
for. So, if you want to invent it, and sell it to the world, I hereby
give up all claims to the device,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juha-Matti Laurio wrote:
> "The Camera Phone Predator Alert Act (H.R. 414) is the real deal.
I have been freezing my behind off working on a contract in Connecticut
recently. Thus, I have been flying home to South Carolina regularly to
defrost. The cl
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Okay, I admit that I am lazy. Rather than try to remember (or find in my
ton of bookmarks) the home page with HP for the App Sec group that was
used to be SpiDynamics, I still use the URL: http://www.spidynamics.com/
Well, that now gives the following
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juha-Matti Laurio wrote:
> In case you are not aware of the Acrobat/Adobe Reader 0-day there is more
> information at
> http://www.adobe.com/support/security/advisories/apsa09-01.html
>
Homebrew patch for Adobe AcroReader 9 from SourceFire VRT:
http
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
rac...@mcs.anl.gov wrote:
> Juha-Matti Laurio made the following keystrokes:
> >Is Mac Preview confirmed as affected too, in fact?
> >
> From what I can tell, it is not vulnerable. It does not
> appear that the pdf view in Preview understands javasc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
>
> Robert Cialdini in his book "Influence: Psychology of Persuasion" takes a
> part a sub-set of the world of influence and helpfully puts it into
> clearly defined and named categories by the use of terminology. That, not
> the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
A federal judge has ordered a criminal defendant to decrypt his hard
drive by typing in his PGP passphrase so prosecutors can view the
unencrypted files, a ruling that raises serious concerns about
self-incrimination in an electronic age.
ht
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
A Los Angeles man was sentenced late Wednesday in federal court to four
years in prison after pleading guilty last year to infecting as many as
250,000 computers and stealing thousands of peoples' identities and
hijacking their bank accounts.
The Lo
Jon Kibler wrote:
>
>
> A Los Angeles man was sentenced late Wednesday in federal court to four
> years in prison after pleading guilty last year to infecting as many as
> 250,000 computers and stealing thousands of peoples' identities and
> hijacking their bank account
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
valdis.kletni...@vt.edu wrote:
> On Thu, 05 Mar 2009 21:45:18 EST, Jon Kibler said:
>
>>-- He committed the equivalent of bank robbery on "thousands" of
>> people. In California (where he appeared in court), you get 2
and UDP, or tell me what is Kerberos) that it is astounding that they
could have even passed the CISSP exam.
Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224
http://www.linkedin.c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Peter Evans wrote:
> On Sun, Mar 15, 2009 at 01:06:35AM -0700, Paul Ferguson wrote:
>> I can't help but tell you -- I hate Twitter.
>
> Twitter is for twits, it's banal in the extreme and resembles the
> internet equivalent of following a dog wi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
der Mouse wrote:
>> Now, if someone would actual make a cell phone that was a REAL PHONE
>> (i.e., not a camera, PDA, web browser, ad. nauseum -- just a
>> telephone!) and you did not need a microscope to read the caller id
>> information, I would be V
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul Ferguson wrote:
> On Tue, Mar 17, 2009 at 3:37 PM, Alex Eckelberry
> wrote:
>
>> I will just note that apart from a massive thread on gun rights a few
>> years back (Brian Loe/Dr. Solly, etc.), AFAIK this "tweet" thread might
>> take the Funsec
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
der Mouse wrote:
> Over the last week or so, Google (in the form of Google Groups) has
> started spamming me. I got subscribed to some Google Groups list
> without even so much as seeing anything I recognized as a subscription
> confirmation.
I h
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
>
> Rules:
> 1. Be professional.
> 2. Follow parliamentary procedure.
> 3. No swearing.
> 4. Have fun!
> 5. [Optional] Defcon rule addition: drink alcohol.
> (judging team my enforce drinking when buzzwords, empty slogans and
> log
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
>
> "The networks powering industrial control systems have been breached more
> than
> 125 times in the past decade, with one resulting in U.S. deaths, a control
> systems
> expert said on March
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> "Visa Inc.?s top risk management executive dismissed what she described as
> `recent
> rumblings' about the possible demise of the PCI data security rules as
> `premature'
> and `dangerous' to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Todd Parker wrote:
> The dirty secret PCI is trying to hide, is that much of the information
> flying on their clients networks is cleartext. I've been inside some of
> those networks, and was appalled.
I have done incident response after breaches on
a false sense of security --
security theater!
PCI DSS is to information security what the TSA is to airport security.
Both are clueless and nearly useless. Would we notice if either went
away tomorrow? From the security perspective, I seriously doubt it.
Jon Kibler
- --
Jon R. Kibler
Chief Technic
Even if it means lying or deception to get the
'pass', it is only the 'pass' they care about, not anything to do with
improving security. Worse, most corporate management has the exact same
view: "Do the absolute minimum possible to get us that certification."
I stan
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Okay, I did something rash and stupid. I admit it.
This fall, T-Mobile took over our regional cell phone provider, SunCom.
SunCom had been great, and we had been a customer since the 90s.
However, the T-Mobile takeover has been a disaster, IMHO.
T-Mo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Robert Graham wrote:
> It's a power grab by the government over the Internet.
>
> The easiest way to do a cyber 9/11 is to cut some cables and blow up a
few data centers. Is there anything in that cybersecurity bill that
addresses the most important th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Larry Seltzer wrote:
> Below is the section of S.773 mandating that NIST establish ?measurable
> and auditable cybersecurity standards? for systems and networks.
>
> Do standards along these lines exist already? I guess I?d be surprised
> if nothing li
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul Ferguson wrote:
> http://online.wsj.com/article/SB123914805204099085.html
>
> By Siobhan Gorman
> Technology
> Wall Street Journal
> April 8, 2009
>
> WASHINGTON -- Cyberspies have penetrated the U.S. electrical grid and
> left behind software
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Robert Graham wrote:
>>> Begging the question, well documented where?
>> I was going to ask the same question.
Well, I don't consider this as "well documented" as I like (and as I
told Gadi off list, I would have to track down the public information I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
> Jon Kibler wrote:
>> First, your perception that attacks from China are "teenagers" or
>> "script kiddies" is wrong. It is well documented that the State is
>> behind a lot of these in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Robert Graham wrote:
>> Robert, if you have a better idea how to force security
>> accountability by providers of critical infrastructure, I am
>> sure the world would be glad to hear from you.
>
> I don't understand the question. The power critical
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
SANS ISC is reporting a twitter worm (XSS):
http://isc.sans.org/diary.html?n&storyid=6184
Jon
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-813-2924 (NEW!)
s: 84
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
FYI...
> WASHINGTON - Wanted: Computer hackers.
>
> Federal authorities aren't looking to prosecute them, but to pay them to
> secure the nation's networks.
>
> General Dynamics Information Technology put out an ad last month on behalf of
> the Ho
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
Okay, I admit that this is WAY OFF from the topic of "fun security", but
I have spent most of the evening with our friend Google and have got
nothing to show for my efforts, so I hope someone here knows the answer...
I am consistently stuck carry
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juha-Matti Laurio wrote:
> http://www.youtube.com/watch?v=Ht96HJ01SE4
>
> Just cool.
>
Reminds me of the "music" that we used to have a 1401 play on its 1403
printer. I seem to recall that there was about a dozen "songs",
including Jingle Bells, Sta
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul Ferguson wrote:
> Enjoy!
>
> http://www.manolith.com/2009/04/15/history-lesson-the-story-of-beer/
>
Beer?
Hell, I want the Velociraptor Trophy! THAT would be WAY bad-ass kool!!
Jon
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems E
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
RE: Windows 7 Branch Cache
http://www.microsoft.com/windows/enterprise/products/branchcache.aspx
Okay, I admit I don't do Windows. However, I came across this today, and
it struck me as a real security nightmare. If I understand what it is
that Win
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jason Ross wrote:
> P2P squid. Now what happens when a user decides to inject malicious
> code into the cached files...
User injection of malicious code? The better question is what will
happen when malware decides that it now has a new vector by wh
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Why do geeks get Christmas and Halloween confused?
Because 25 Dec and 31 Oct are the same.
I know... really lame. :-(
Jon
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-8
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Maybe it is just the hour of the morning, but I thought that this
exchange on NANOG was a riot. I wish I had thought of the comeback
first! :-(
> Tim Tuppence:
> Hello,
>
> I am seeing that www.google.cat resolves from three differe
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
> striptease captcha malware:
> http://blog.trendmicro.com/captcha-wish-your-girlfriend-was-hot-like-me/
>
Grossman talked about this at Black Hat last year. I guess that Trend is
just about a year behind!
Jon
- --
Jon R. Kibler
C
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I haven't seen anything for several days, so just testing.
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-813-2924 (NEW!)
s: 843-564-4224
http://www.linkedin.com/in/jo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
> Mentioning Monty Python's Flying Circus seems too out of date even for
> this listing, but it has a place of honour on my DVD shelf.
>
> What are you fav Brit shows?
>
What?
No Benny Hill?
No Faulty Towers?
Monty Python *STILL*
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
RandallM wrote:
>
> case in point: Cheeck and Chong UP IN SMOKE. I laughed my ass off. I
> don't get it now. Wonder what the difference is? :-)
>
You were probably stoned then, and now haven't been for years, so you
forgot what it was like.
Just sp
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Larry Seltzer wrote:
> Sun pushes the MSN Toolbar now, not the Yahoo toolbar. (Shouldn't that
> be the Bing Toolbar by now?)
>
The Java update that I installed last week wanted to install the Yahoo
toolbar.
Jon
- --
Jon R. Kibler
Chief Technical Of
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Larry Seltzer wrote:
> On what platform?
>
On a Dell Windows XP box. (My client's computer at work.)
I half ignored the update, and saw the 'Yahoo' selection after I clicked
Install. I then had to go back and manually uninstall the Yahoo toolbar.
T
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
>
> The more I think about it the less likely it seems that it was a bot,
> however, what else could it be for such a large-scale scam?
I would think that you had a real human on the other end of the net.
Let's face it, labor is VE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
Can anyone get to the DEFCON web site? I have been trying since Sunday
and I cannot get the site to respond. I have tried from 3 different
locations, with the same non-response.
http://www.defcon.org/
Thanks!
Jon
- --
Jon R. Kibler
Chie
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
security curmudgeon wrote:
>
> http://twitter.com/thedarktangent/status/2288114054
>
Ah... Thank you!
Jon
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-813-2924 (
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Marc wrote:
> Hi,
>
>
>
> I?m tasked with doing a presentation at work on security risk assessment
> as related to system development. I am going to follow it up with a
> demonstration of how XSS works and the possibilities for compromise
> associated
ion"... and I note with interest that I am apparently not the only one,
at least based upon the thread "[funsec] Message stuck in a queue somewhere?".
Gadi & co-horts... any idea what is going on here?
THANKS!
Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Sys
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:
> Date sent:Wed, 01 Jul 2009 23:48:58 -0700
> From: "Daniel H. Renner"
>
>> I have very much enjoyed servicing you in the computer field
>
> Hmmm. That's about the only
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
> A friend sent me a paper from a guy working for McAfee a few days ago,
> which discussed bionic or implant viruses.
>
> As the guy who formalized this field and created awareness for it I
> jumped from joy with YEAH!! Someone els
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
http://www.smh.com.au/technology/security/the-great--wifi-robbery-police-to-patrol-down-your-street-20090721-drqb.html
The Queensland Police fraud squad says it will be the first police force in the
world to go on "wardriving" missions to warn homes a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
der Mouse wrote:
>>> The real wonder, to me, is that more people who can relatively
>>> easily flee the USA aren't.
Careful what you say now... you know that Big Brother has members on this list,
too! :-) You don't want to be barred from this country
least 1,500 years -- and some would argue that its reach has been
nearly the full 2 millenia of its existence.
Don't claim to use history to prove a point if you don't know your history!
Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Char
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Yeah, only slightly misleading subject... more precisely, can you trust your
DHCP server to give you an IP address? Not if you plan to attend BH/DC -- unless
you have patched dhclient within the past couple of days:
http://www.milw0rm.com/exploits
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Microsoft appeals loss in patent infringement case
http://washingtontechnology.com/Articles/2009/08/28/Microsoft-questions-Word-patent-ruling.aspx?s=wtdaily_310809&Page=3&p=1
... Microsoft's appeal, filed recently with the U.S. Court of Appeals for t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I find myself on vacation just outside of Peabody, MA. While trying to locate
the hotel, noticed that the entire right shoulder of the road for almost a half
mile before the hotel was a solid line of cars. They even had cops directing
traffic. Asking a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alex Lanstein wrote:
> I can't imagine it was worse as than the Krispy Kreme hype a few years ago
>
> I went to my first Sonic a few months ago and I don't think it's a "great
> restaurant that sells gas", I think it's a "gas station that has >ed
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Nick FitzGerald wrote:
> Hm -- far more important they get an education of the standard of
> GWB's or Dick's than they be exposed to such socialist, fascist,
> Central-African, Islamic propaganda as that!
>
> Your country must surely already be
ay who have a
piece of paper that declares that they are an expert, but are totally incapable
of doing any real security work. (Just look at the number of companies selling a
Nessus or nmap scan as a "penetration test" -- "we are highly qualified, we are
CISSPs.")
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dan Kaminsky wrote:
> Be that as it may, the data rather clearly suggests certification in
> the security realm is (very) badly correlated with qualification.
Dan,
Do you have any hard numbers on this, or is this only based upon your experience
wit
ou engineer a bridge and it falls
down, you have liability. If the bridge falls down because of faulty design
software, the software maker has no liability. Until this picture changes, and
software caries product liability requirements, we will never make software a
successful engineering discipline
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Larry Seltzer wrote:
> Many tweets with this message in the last 24 hours or so. Any guess at
> what it?s about?
>
>
>
> http://twitter.com/home#search?q=SQL%20backup%20job%20failures%20
>
>
Okay, maybe I am dense. (I have never understood Twit
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
Is there any university in Spain with a good (technically oriented)
undergraduate I.T. security program?
I have a friend there who was asking if I knew of any.
TIA for your help!
Jon
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems E
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
RandallM wrote:
> might have seen this...its just that the first thing I thought of is
> how much I "already" warn people about not clicking on popups and now
> comcast is going to give some. Real comcast, or mimic?
>
>
> http://tech.yahoo.com/news/a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
toralv_di...@mcafee.com wrote:
> And prevent their customers from some activity on the internet that may be
> extremely urgent and important? As much as I would prefer such an approach
> personally, I'm afraid this is not a realistic option in the r
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jim Murray wrote:
>> The problem was given a more concrete example by a colleague who
>> pointed out that most medical hardware running on windows boxes is not
>> only certified for windows only, but specific *patchlevels*, and that
>> consequen
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juha-Matti Laurio wrote:
> http://milw0rm.com/ is up now, but it has been offline many times during Sep
> and Oct.
> The latest postings are dated 21st September.
>
> There is no explanation posted to
> http://twitter.com/str0ke
>
> Juha-Matti
I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The guys and gals over at Offensive Security have up the online version of their
Metasploit Unleashed course. I have been using metasploit for years, and I am
learning things about it that I had never known. Highly recommend you check it
out.
Jon
- -
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Juha-Matti Laurio wrote:
> http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1371945,00.html
>
> http://www.rapid7.com/metasploit-announcement.jsp
>
> http://blog.metasploit.com/2009/10/joining-team.html
Wow! I am not sure if this
> -chris
>
And in a previous life, you wrote for Monty Python, right?
Jon Kibler
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAkrgWJcACgkQUVxQRc85QlOesQCfV3qw2FEaQV0Bbs0QkmcbBvlI
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
What?
They don't trust their own product?
Ruby uses PHP for their site instead of Rails!
http://rubyforge.org/frs/download.php/60718/rubygems-1.3.5.tgz
:-O
Jon K
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Techn
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul Ferguson wrote:
> I kid you not:
>
> http://laughingsquid.com/burger-king-1-34-lb-windows-7-whopper/
>
I guess M$ hates its Japanese customers and wants to kill them all off with a
massive coronary caused by whopper-induced cholesterol clogged
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gadi Evron wrote:
> http://www.facebook.com/pages/Binary-Armageddon-Day/164707858493
>
> :)
>
> Join us, and save the world on the day of the beat!
>
>
Beat or Beast?
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.8 (Darwin)
Comment: Usin
be the new milw0rm. IMPO, it should be avoided like the
plague. It is highly suspect, and is mostly likely simply phishing for new
0-days to spring on the world.
RIP str0ke.
Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This is an analysis I wrote for Security Focus' Pen Test mailing list. I thought
it would be of interest here...
All,
Starting yesterday afternoon, I had a bunch of people begin to ask me about
inj3ct0r.com. Google it and you find:
1) "milw0rm.com
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Adriel T. Desautels wrote:
> He's not dead.
Why are you saying that? Even the guys at SANS are saying the same.
Jon
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
o: 843-849-8214
c: 843-81
all torn up inside and I can't accept the truth as it is.
>
> On Nov 4, 2009, at 10:11 AM, Jon Kibler wrote:
>
> Adriel T. Desautels wrote:
>>>> He's not dead.
>
> Why are you saying that? Even the guys at SANS are saying the same.
>
> Jon
- --
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Larry Seltzer wrote:
> He has hacked deth and we shall worship him.
>
> All hail Plankton! I mean /str0ke!
>
> Larry Seltzer
> Contributing Editor, PC Magazine
> larry_selt...@ziffdavis.com
> http://blogs.pcmag.com/securitywatch/
>
Well, all I ca
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Peter Evans wrote:
> On Mon, Nov 09, 2009 at 12:13:23AM -0800, Paul Ferguson wrote:
>>> http://fergdawg.blogspot.com/2009/11/scada-security-conscience-abuse-of.html
>>>
>>> : Yes, I am pissed.
>
> I don't blame you.
>
> I haven't worke
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Todd Rosenberry wrote:
> There's been some silliness on this thread and I wanted to verify some of the
> data so of course I turned to Microsoft. I brought up the calendar on my XP
> system and slowly advanced the year forward. As it ticked to 2013
1 - 100 of 106 matches
Mail list logo
