June 17, 2008 Ok, now I’ve got past that sweeping generalization, I can’t wait to see what happens on the 1st with the new cell-phone law coming into effect.
It seems to me that some people here have trouble enough driving, but pretty much insist on having a phone clamped to their ear 24/7 - I even saw [...]
Posted in Rant 
No Comments »
April 20, 2008[Via Digg and Mark Curphey]
This is a really old article, written by a very well respected security professional back in 2005. Although certainly some points are bang on the button, there’s good chunks of this that simply don’t stand up today.
#1 - Default Permit. Yes, is certainly correct, although how many times have you actually [...]
Posted in Rant, Security 1 Comment »
April 18, 2008There’s been a few of the “click a link, go to jail” posts recently, but this SQL injection vulnerability in Oklahoma’s sex offenders roster (which I found on several blogs this morning) really takes the cake. Basically, through a link on a page (a GET request no doubt, which makes CSRF so much easier), an [...]
Posted in Rant, Security 1 Comment »
March 3, 2008Last week I was working for a client in Phoenix. Not much to report there - I’ve been to Phoenix a few times, and enjoy the city, so no real trip report write up. The only reason that I’m doing a post for this trip is to write about another stupid TSA security incident I [...]
Posted in Rant, Security, Trip Report No Comments »
February 13, 2008There’s probably going to be a lot of traffic on this, and although I don’t want to add to the noise, I have to rant for a second. EWeek has just put up an article on "The 15 Most Influential People in Security Today". My immediate thoughts? W…T…F.
Ok, the term "Influential" could be slightly loaded [...]
Posted in Rant 5 Comments »
