|
|
Security
Posts related to security initiatives, events, thoughts, etc.
-
While something like the swine flu currently originating out of Mexico is so low technology as to be incongruous with our modern concept of what types of things comprise enterprise security, the fact is that how an organization prepares for such an eventuality Read More
|
-
Recently at Black Hat / DEFCON, a presentation was given which indicated that a couple of security researchers had found isolated ways around the Windows Vista stack of security features intended to protect against the buffer overflows and predictable Read More
|
-
Some retail stores apparently either do not have a Chief Risk Officer or apparently pay them no heed at all. A while back I posted a security blog entry called A Year after TJX: Have we learned anything? According to the recent announcement Read More
|
-
As the industry settles into a market where virtualization has major offerings from Microsoft, VMWare, and the Open Source communities, administrators and security engineers are beginning to grapple with the implications of virtualization on infrastructure Read More
|
-
Recently, one of my colleagues at Microsoft, Georgeo Pulikkathara, formerly of the MCP program, now in Trustworthy Computing, posted a blog entry (link) noting that a year had passed since the wireless incursion at TJX which ran unchecked for months, Read More
|
-
The honest fact of the matter is there are great numbers of Systems Administrators out there who are building servers (even some on the internet) without even minimal exposure to the specifics of securing a windows computer. Thankfully, over the Read More
|
-
This is the one of my new Preparing for Certification series of experience blogs. One of the fortunate things of working in consulting and subsequently moving into a role where I am assisting others to prepare for consulting themselves is the opportunity Read More
|
-
This is the first of my new Preparing for Certification series of experience blogs. One of the fortunate things of working in consulting and subsequently moving into a role where I am assisting others to prepare for consulting themselves is the Read More
|
-
It is amusing, the places where the thoughts for publications spring up. Friday, as I stood in the aisle of computer texts (a paltry collection, embarrassing in its brevity) awaiting the stroke of midnight for the release of Harry Potter book 7, a series Read More
|
-
Recently around the internet, various security and information technology related blogging sites (some of published, corporate repute) have been virtually singing about the alleged insecurity of vista based on Mark Russinovich's assessment of the future. Read More
|
-
The title is a spoof on a recent survey from DarkReading.com entitled Five Myths About Black Hats which I found intellectually interesting but would point out that the study has absolutely zero applicability to any kind of enterprise security consideration. Read More
|
-
For years now, security advocates have been promoting a model in which sensitive information providers (such as banks, mortgage houses, any kind of social-security driven data, etc) use stronger authentication measures than a simple username and password Read More
|
-
Since microsoft announced that Windows Vista 64-bit edition would enhance the applicability of the PatchGuard (AKA Kernel Patch Protection) security features, many third party application vendors have been quick to cry foul. Recently, the debate Read More
|
-
Oh, no. The storm has hit. The big one. THE one that you and your boss have been dreading. Does your corporate security plan address some of the lesser emphasized issues created by weather events?
The storm Read More
|
-
Towards the end of last week, Symantec published a brief explanation that an escalation flaw had been identified in the Windows Vista operating system. While some are gleefully noting that it took less than a month following enterprise RTM to find Read More
|
|
|