Well, it looks like the war of WAFs is ON!  TS/Sci Security have done a great series of posts on the topic, the vast majority of which I whole-heartedly agree with.  I’m sure that any readers of this blog would be reading TS/Sci, but if only so I can remember myself and have a record, [...]

Posted in Uncategorized No Comments »

I know that it may seem that I’m on a big rant as I’m moving out of SoCal, but honestly this has been brewing (and talked about with various people) for some time - I just haven’t had anything to point to and say “there!”.
A really cool article in the NYT a week or so [...]

Posted in Uncategorized No Comments »

It’s been a little under a month since I last posted for various reasons - both work (some interesting engagements have taken my time) and personal (family/friends visiting - it’s a bit rude to be surfing and posting while you have guests ;)) - and although there’s been a lot software and web security news, [...]

Posted in Uncategorized 3 Comments »

Also crossing my RSS feed today is the Web Hacking Incidents Database Annual report for 2007 [warning: PDF link behind free registration - I'm sure if you don't want to register, you know what do to ;)]
The ModSecurity blog summarized it nicely, but there are some areas of it that I find a bit [...]

Posted in Industry, Security, Uncategorized No Comments »

So, after a few technical hiccups, I’m finally "live". 
Check out the "about" and "contact" pages to the right, for more information, but for now it’s nice to have you visit, and hope you find something interesting.

Posted in Uncategorized No Comments »