SEARCH RESULTS
 
Showing 1-10 of 15 records
 
Expand article

Sexy Development Lifecycle

2008-01-30 01:37:00 by sdl in The Security Development Lifecycle
 
...cons. Now on one hand, I really love hacker cons. I always find sessions that are relevant, I always meet interesting new people and catch up with old friends, the liquor flows freely at the after-partiesthere are lots of great reasons. And its fun to speak at these shows too. But I have to honestly ask myself, how much good am I doing? If I...
 
Tags: developer security, developer security issues, security issues, developer, love developer cons, security, attend developer cons, developer cons, sdl
 
 
 
 
Expand article

More on Hating Agents

2008-02-13 14:54:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...cons agents are unavoidable in some cases (nowadays such cases are few and far between deployed agent can secure the log data in transit from its source to a log management tool agent typically can bandwidth-throttle / -manage the log data from source to a log management tool agents use up CPU/RAM on each system (sometimes A LOT, sometimes -...
 
Tags: log management tool, log management, log management system, agents, remote, management, remote agent, agent, agents evil
 
 
 
 
Expand article

Terror on the Internet - Conflict of Interest

The Article has images
2008-03-18 19:58:23 by HASH0x8471fd8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...cons of monitoring cyber jihadist sites next to shutting them down, as well as mentioning my analysis of the Mujahideen Secrets encryption tool v1.0 and v2.0. Terror on the Internet: A Complex Issue, and Getting Harder Indeed, politicians around the world call at regular intervals for terrorist websites to be removed from their host sites...
 
Tags: cyber jihadist, cyber jihadist communities, novice cyber jihadists, jihadists, cyber jihadist forums, cyber jihadist sites, attract cyber jihadists, internet, cyber jihadists
 
 
 
 
Expand article

Sometimes, It Takes a Thief to Catch a Thief

2008-06-09 17:00:00 by David Critchell, Portfolio.com in Wired Security
 
...consultant. In this role, it is less his dexterous hands that appeals to his clients than his mastery of all aspects of criminal cons, grifts, and social-engineering ploys When you're trying to steal something, you find the weakest link and work that," Robbins says. "Nowadays, as technology gets better and security systems get harder to break...
 
Tags: robbins, apollo robbins, robbins counts, 34-year-old robbins, information security protection, time, information security, full-time, security people
 
 
 
 
Expand article

Producer Seeking Secondary Ticket Market Hacker

2007-12-06 17:00:35 by RSnake in ha.ckers.org web application security lab
 
...cons of the free market system because I think that would be horribly boring. Rather Im interested in exploring how programmers and software developers have figured out ways to take advantage of the arbitrage opportunities that the primary market system offers. The two most recent examples are a Hannah Montana concert that the average fan...
 
Tags: secondary ticket market, world series tickets, tickets, forward, hannah montana concert, move forward, colorado rockies website, secondary ticket markets, talk
 
 
 
 
Expand article

Hats off to Mr. Mark Cox and Team

2007-10-11 09:21:30 by jrjones in Jeff Jones Security Blog
 
...cons of their software and support model and I will keep writing about both, especially where I think common perception might be a bit askew. Because of their leadership position among Linux distros, I think Red Hat makes a good comparison point for data analysis against the common security perceptions for Linux and Windows
 
Tags: linux, linux vendor, mark cox, linux distros, common security perceptions, red hat, leadership position, utmost respect, hard job
 
 
 
 
Expand article

How to Do Database Logging/Monitoring "Right"?

2007-12-13 11:26:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...consider key Pro Con Sniff SQL traffic from the wire No database performance impact Awareness of returned content (for SELECTs Guaranteed role separation Better for DBA monitoring No agents No database configuration changes Extra device needs to be purchased, deployed and managed Doesn't work with encryption No local access monitoring...
 
Tags: database, analyze database logs, database logs, database log review, database performance impact, database configuration, performance impact, database log management, log management
 
 
 
 
Expand article

Q&A: Data leak prevention pros and cons

2008-01-07 00:00:00 by Cara Garretson in Network World on Security
 
Anti-data leakage vendors make bold claims about how far their products can go to protect enterprises from unauthorized information sharing. This irks Nick Selby, head of enterprise security research at The 451 Group, who believes these tools are helpful with some tasks, but far from the solution
 
Tags: enterprise security research, anti-data leakage vendors, irks nick selby, protect enterprises, bold claims, tasks, head, tools, information
 
 
 
 
Expand article

Logs: Parsing, Tokenizing or Extracting?

2008-03-11 01:54:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...Cons Output is low quality information; rather, a flow of raw data (needs more analysis Mixed - some new information emerges, but not in all cases (and you can't predict when In general, no cross-device analysis is enabled ('user' is not the same as 'usr' in other log High-quality output : tables, graphics, summaries and easy correlation...
 
Tags: logs, log analyst, log, convert logs, log management, diverse log sources, text logs, log analysis, bad logs