SecurityRatty: tag: bizarre

Australian medical information found in abandoned amusement park

2008-06-28 13:10:55 by Evan Francen in The Breach Blog

...bizarre The Health Department is reviewing waste disposal procedures following the discovery at Lansvale in Sydney's south west Evan] I presume that the waste disposal procedures have probably changed over the past ten years. The Health Department should be reviewing procedures on a regular basis anyway The health service's chief executive,...

More on Security vs Risk

2007-12-21 11:57:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

So, I was reading some survey and came across this bizarre, mind-boggling (maybe even 'mind-numbing?') picture How can security be THAT disconnected from risk? Can somebody explain this to me? (Please don't explain by stating "crappy survey methodology" - I can pull this one myself, thank you very much Mr Hoff, can you help here About me:...

Tags: survey, crappy survey methodology, security, explain, risk, org, bizarre, pull, hoff

Field Notes from Xiamen, China

2008-01-14 04:37:01 by Tim Bass in The Complex Event Processing Blog

...bizarre, the exchange rate for USD to CNY was about 7.4 CNY to one USD; but in Bangkok, the banks only give around 3.5 Thai Baht for one Chinese Yuan, effectively giving you a greater than 20% haircut (should be around 4.5 Thai Baht per CNY as the current rate is about 33.2 Thai Baht per USD Needlesstosay, wewerequite happy to return...

Tags: change chinese yuan, chinese yuan, usd, change usd, change, thai baht, china, cny, foreign exchange

Evil Silos

2008-01-24 15:42:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...bizarre is that some newer vendors, who claim to do log management, actually work to propagate, not combat, the siloed approach. For example, selling the tool for $5000 to each of the many separate teams within the organization IMHO must be made illegal :-) as it builds walls, not bridges; digs holes and overall "silo-izes" your operation...

Tags: network ids logs, logs, relevant logs, download logs, ugly logs, router logs, log management platform, log management, evil

MUST-DO Logging for PCI?

2008-02-11 10:46:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...bizarre or what? Yes, it is But that is exactly why vendors and consultants tell you what you SHOULD be logging. There is no easy "MUST-log-this" list; it is pretty much up to individual auditor, consultant, vendor, engineer, etc to interpret (again, not simply 'read', but interpret!) the PCI DSS guidance (e.g. Requirement 10 that is...

Tags: pci, pci dss rules, pci dss compliance, pci dss guidance, compliance, log, must-log-this, pci book, log management

Anton Security Tip of the Day #14: More accesslog Fun: What Are You Not GETting?

2008-03-12 13:35:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...bizarre artifacts that show up in web server access logs today. Here we have a production log from an Apache web server that is full of interesting (and sometimes ominous!) little mysteries that we will investigate in order to determine their impact on security and operational health of the site Logs do contain more mysteries than we have...

Tags: web server, server, web, web browsers, security, web discussion board, anton security tip, fun, modern apache

Fun Read on Policy Breaking

2008-03-20 01:06:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...bizarre one: "Sending workplace documents as an attachment in e-mail." WTH? Is sending them in the body of the email message better? Do they really mean "... to personal email In any case, read it About me: http://www.chuvakin.org

Tags: usb memory stick, e-mail accounts, e-mail, fun, email message, workplace computer, workplace documents, wsj saga, personal email

Logging for Compliance Not Understood?

2008-03-20 01:10:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...bizarre quote: "And then theres the fact that not many companies are aware of the need for log management as an element of compliance Really? Is anybody really that ... you know ... dim? I really want to get a copy of a "PCI Compliance" book and slap them with it About me: http://www.chuvakin.org

Tags: compliance, pci compliance, log management, internet access, bmi lounge, bizarre quote, slap, piece, time

RSA Impressions - 1

2008-04-08 14:33:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...bizarre observation: many security vendors here at RSA try to sell security by saying " latest survey shows that 67% of companies are missing the control X. Oh horror! - Buy X from us NOOOOOW " and very few sell security as " latest survey shows that 67% of companies have suffered the loss of $X via Y. Oh horror! - Buy Z from us to stop Y...

Tags: stop loss, stop, loss, security vendors, security, control, incident response tools, survey, horror

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo