@RISK Online - The Security Blog
2 user(s) online.
Tuesday, June 26, 2007Business Continuity, Disaster Recovery, and the Worst-Case Scenario
Business continuity planning. Disaster recovery planning. These terms are common to large and small businesses alike. Although large-scale disasters are fairly rare, they do occur, and if your business isn't prepared, it may never recover. In this timely article, Randy Nash discusses these disciplines and the risks of ignoring a "worst-case scenario" in your planning. Read the whole article at InformIT.
posted @ 01:14 PM EST [link]Monday, June 11, 2007Technical Advances Make Your Passwords Practically Worthless
This is my second recent article published through InformIT. This article discusses the convergence of recent technologies that are making it trivial to "crack" passwords. Please go check out Technical Advances Make Your Passwords Practically Worthless at InformIT.
posted @ 09:21 AM EST [link]Friday, May 18, 2007Updates and a new article
To those of you that still visit my site, thanks for keeping in touch. I won't be making many updates here, beyond posting my latest articles as they come out. I'm actively searching for a better (paid) blog hosting solution and plan to migrate over in the next couple of months.
With that said, my first new article has finally been published at InformIT. It's called Is Your Agency Failing FISMA? Enjoy!
posted @ 11:08 AM EST [link]Thursday, April 12, 2007Long hiatus coming to an end
After a very long hiatus I'm finally getting back to my writing. I can't guarantee that I'll be doing regular blogging, but all my new articles will be hosted here. I'm going to be writing for InformIT again, and my next article (Failing FISMA) should be published in a week or two. My goal is to get a new article out every 2-3 weeks, so keep looking in.
posted @ 08:59 AM EST [link]Tuesday, June 27, 2006nessql - based on nessQuick
I'm pleased to announce a new open source tool based on some of my previous work. Rob Mason, from BSDBox, has expanded on nessQuick and created a new script called nessql. Rob was kind enough to contact me, asking permission to build on my work. I absolutely support this, and heartily endorse his work.
This primary enhancement of this script is the ability to process multiple .nbe files and maintain a database of them, differentiating the data based on the original file name. From what I can tell, his perl knowledge exceeds mine (not hard to do, frankly) and he's added some pretty extensive error handling in the code, all of which is very nicely documented inline. Great work! The script is available here, and I have a mirror here on my site. Please go check it out, then pay a visit to his site at BSDBox.
posted @ 07:31 PM EST [link]Tuesday, August 9, 2005Had to update my resume
Okay, not many of you will care about this entry, but it's a big one for me. I've finally taken the CISSP Exam, and I passed! I had to update my resume to reflect this. I've wanted to take this exam for at least 5 years, but work and family has always come first. My current employer has been very supportive of this effort, so I finally made it happen.
posted @ 11:02 AM EST [link]Tuesday, July 5, 2005Product Review: LANguard Network Security Scanner
Today's entry is for something a bit different. I'm posting a product review for LANguard Network Security Scanner from GFI. I recently obtained a copy of their new release of this tool and my observations are here.
I found this to be an excellent security tool. I fully appreciated the integration of a vulnerability scanner paired with patch management and distribution capabilities. The one weakness I found in with the product was its lack of report generation capability. This can be overcome, but the software would greatly benefit from built-in reporting.
posted @ 08:31 AM EST [link]
|
| June 2007 | | S | M | T | W | T | F | S | | | | | | 1 | 2 |
| 3 | 4 | 5 | 6 | 7 | 8 | 9 |
| 10 | 11 | 12 | 13 | 14 | 15 | 16 |
| 17 | 18 | 19 | 20 | 21 | 22 | 23 |
| 24 | 25 | 26 | 27 | 28 | 29 | 30 |
Blogroll Me!
Navigation:
Home
Archives
About Me
Articles
Email
News Feed
Projects
My Blogroll:
Security Advisories:
Anti-Phishing
AUSCERT
BugBlog
CERIAS
CERT
CIAC
Cisco Advisories
F-Secure
iDefense
ISS XForce
McAfee
Windows Security
Oracle Alerts
Secunia
Security Corporation
Security Focus
Security Tracker
SGI Advisories
Sun Alerts
Symantec
Trend Micro
Zone-H
Defacements Archive:
Zone-H Digital Archive
Security News:
DShield
Help Net Security
Internet Storm Center
Linux Security
NewsNow: Encryption/Security
NewsNow: Hacking
Packet Storm
Securiteam
Security News Portal
Security Stats
Security Focus
Risks Digest
Zone-H
Security Tools:
Packet Storm
Astalavista
Help Net Security
Packet Factory
Security Focus
|
