Security Balancetrying to bring balance to the Force |
 |
Richard Bejtlich is one of the best sources of information and reasonable opinions about intrusion detection. He wrote a very precise argument about why Detection is important even when you can use Prevention. I’ll quote him here:
“traffic inspection is best used at boundaries between trusted systems. Enforcement systems make sense at boundaries between trusted and [...]
Daniel Blum wrote a incredibly good article today on Network World. He said something very sharp on the matter of additional security measures that the banks need to deploy:
“From a business perspective, banks are much less concerned about losses to fraud than they are about scaring away customers. To them, online banking represents a Mecca [...]
Recently I was evaluating the Thin Client solution from Sun, “Sun Ray”, and one thing caught my attention.
The Sun Ray clients run only a firmware, without OS. The firmware is responsible for getting the initial settings from a DHCP server, incluing the address of the Sun Ray Server. Once the client establishes a conversation with [...]
Apocalypse Knight David Litchfield is back with another bunch of Oracle vulnerabilities. The patches are available to install.
I’ve just read Richard Bejtlich comment about today’s most noisy new, the McAfee report. I read in bloglines when I was looking for more information on the subject to be able to post a comment here. Well, I think Bejtlich said it all.
The real menace of rootkits wouldn’t be clearly understood without the disclosure [...]
The Infosec industry is really biased when commenting on browsers security issued. Every IE problem causes an avalanche of hatred comments on “MS insecurity”. Meanwhile, Firefox has just been update for security issues and almost nobody mentioned it. What was fixed? Was it serious? How long has the issue been known? Hey guys, let’s try [...]
I’ve just read something interesting about the way that Windows handles private keys for certificates when you delete a certificate. It keeps the private key in a way that if you install the certificate (yes, the public key only) again later, it will allow you to use the private key (that was kept somewhere [...]
Schneier is so interested in privacy and US Homeland Security matters that his blog has been a bit boring in the last times. Luckily, today he chose a interesting subject, VoIP Security.
It’s a very good comparative analysis of the threats from the conventional telephony and those from VoIP. It’s the kind of thinking exercise that [...]
