SEARCH RESULTS
 
Showing 1-10 of 86 records
 
Expand article

Banning function calls, assurance, and retrofitting

2008-03-18 19:48:00 by Security Retentive in Security Retentive
 
I've been working on some C/C++ secure coding standards lately, and trying to mesh those up with the results from the static analyzer I'm using. As it turns out there is a fine line to be drawn between what you consider best practices, what a static analyzer can find, how much context the static analyzer has, and how much manual review you...
 
Tags: code review experience, code, security sensitive context, context, security critical context, unsafe context, static analyzer, file defects, rand
 
 
 
 
Expand article

Hotel's Dirty Drinks

2008-03-22 22:41:25 by JJ in Security Uncorked
 
and I dont mean Martinis Im frequently in hotels. And Im frequently drinking water. Its usually room-temperature tap water, so when I started noticing funny tastes and smells in hotel room glasses, it got me wondering exactly how they clean and replace those in-room glasses Over the past several weeks I took a mental survey of housekeeping...
 
Tags: dirty, glasses, in-room glasses, frequently sneak, frequently, link, carts, dirty drink, water
 
 
 
 
Expand article

Controversy surrounds Royal Perth computers and patients

The Article has images
2008-04-08 00:21:25 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 4/5/08 Organization Royal Perth Hospital Contractor/Consultant/Branch None Victims Patients Number Affected Unknown Types of Data Personal information, including patient names and addresses, dates of birth, medical conditions and patient numbers Breach Description WA POLICE are investigating...
 
Tags: hospital claim, hospital, computers, hospital computers, sunday times hired, sunday times, patient details, confidential patient details, times
 
 
 
 
Expand article

Personal information from two Colorado mortgage companies found in dumpsters

The Article has images
2008-05-07 22:20:50 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 4/28/08 Organization Cove Creek Mortgage Front Range Mortgage, LLC Contractor/Consultant/Branch None Victims Customers Number Affected Unknown Types of Data Mortgage files, tax returns, pay stubs, Social Security numbers, and other personal information Breach Description ENGLEWOOD, Colo. --...
 
Tags: mortgage files, numerous mortgage files, personal information, information, complete mortgage files, personal information poorly, files, cove creek mortgage, cove creek
 
 
 
 
Expand article

Crossing Borders with Laptops and PDAs

2008-05-16 06:10:33 by schneier in Schneier on Security
 
Last month a US court ruled that border agents can search your laptop, or any other electronic device, when you're entering the country. They can take your computer and download its entire contents, or keep it for several days. Customs and Border Patrol has not published any rules regarding this practice, and I and others have written a letter...
 
Tags: customs agent pokes, customs agent, british customs agents, customs agents, agent, customs, entire hard drive, hard drive, data
 
 
 
 
Expand article

Notes from IEEE Web 2.0 Security and Privacy Workshop (W2SP2008)

2008-05-27 22:45:00 by Security Retentive in Security Retentive
 
Thursday 5/22 I was at the IEEE Web 2.0 Security and Privacy Workshop . I figured I'd learn a few things, and also make sure that no new exploits were announced against my employer, and/or make sure we weren't the only examples people gave of problems I was pretty successful on goal #1, not 100% successful on goal #2 This post is mostly brain...
 
Tags: browser, browser security models, browser project, browser security model, security models, browser security, security, web, security challenges
 
 
 
 
Expand article

White House Refused to Open Pollutants E-Mail

2008-06-26 12:54:58 by Dave Lewis in Liquidmatrix Security Digest
 
This is by far one of the more asinine things I have read in a while and speaks volumes to lunacy in the White House. The WH refused to open an email that was sent by the EPA because they disagreed with the conclusion that greenhouse gases are pollutants So, they played three monkeys and said, la la la, I cant see it. la la la ( not an exact...
 
Tags: white house, clean air act, reduce greenhouse gases, greenhouse gases, regulation, officials, motor vehicle emissions, business critical function, tough regulation
 
 
 
 
Expand article

You want the truth, you can't handle the truth!

The Article has images
2008-07-10 22:35:46 by HASH0x8beb300 in StillSecure, After All These Years
I am not sure what it is with Richard Stiennon. Maybe his mom beat him with a NAC stick when he was young. Hence his Jack Nicholson looks (more like the Joker in Batman , than Col Jessep in A Few Good Men ) and his total disdain for NAC. In any event Richard never seems to miss a chance to take a pot shot at NAC. I have fired back and debated...
 
Tags: nac, nac stick, richard, bad mouth nac, richard stiennon, importantly richard, nac knock, assume richard, nac solutions
 
 
 
 
Expand article

You want the truth, you can't handle the truth!

The Article has images
2008-07-10 22:50:16 by ashimmy in StillSecure, After All These Years
I am not sure what it is with Richard Stiennon. Maybe his mom beat him with a NAC stick when he was young. Hence his Jack Nicholson looks (more like the Joker in Batman , than Col Jessep in A Few Good Men ) and his total disdain for NAC. In any event Richard never seems to miss a chance to take a pot shot at NAC. I have fired back and debated...
 
Tags: nac, nac stick, richard, richard stiennon, bad mouth nac, importantly richard, nac knock, assume richard, event richard