May 13, 2008 (3 days ago) – 8:19 am
I am doing some housecleaning (in more ways than one) and came across this comment awaiting approval from yesterday.
”Your previous posts were real rubbish, but this is good. This one is brilliant. Your blog is getting really better.”
The email address was a fake and the URL they left was to a porn site. Made my morning.
And yes, I am still alive.
–Chris
I saw this press release today from my Savant Protection. According to the release Savant’s Protection has been ported over to the Google Android platform. Savant Protection is very interesting technology in the fight to prevent the spread of malware. It’s not AntiVirus in the traditional sense and it is not really white listing either. I’ve seen the demo and have run the app myself. It definitely improves on the current state of malware protection. Good job Ken!
I am curious to see what other security systems will be running on Android in the future. Is there a list of security type applications that run on it? Admittedly I am not that familiar with Android.
–Chris
Technorati Tags: Savant Protection, Malware, Google Android
February 25, 2008 – 11:36 am
I will be in Orlando tonight and tomorrow night, Atlanta on Wednesday and Raleigh-Durham on Thursday. If anyone is around and wants to grab some food / drink let me know.
–Chris
February 19, 2008 – 8:15 pm
I came across this paper on Detecting bot C&C channels in network traffic. It is from the Georgia Institute of Technology. An interesting read if you follow the bot problem.
–Chris
Technorati Tags: bot, command and control, channel
February 19, 2008 – 12:20 am
I have a shiny new MacBook Pro, finally. What are your favorite Mac apps? What should I not be without?
Thanks!
–Chris
Technorati Tags: MacBook, Applications
February 13, 2008 – 7:57 pm
I saw a reference to this article recently. I knew how Tor worked but never really go under the hood of the exit servers. Well apparently some others have and are setting up their own exit servers for nefarious purposes. It seems as though if you setup an exit server you can specify what ports you want to allow through it. By default I believe it will allow any. If I were to setup an exit server and only allow ports 23, 110 and 143, what do you think I would be able to see? Passwords. To top it off it looks like anyone can setup their own exit server.
Brilliant.
The moral of the story…unencrypted logins will get you into trouble.
–Chris
Technorati Tags: Tor, logons, exit server
January 29, 2008 – 10:02 am
Juniper Networks announced today their EX line of Switches. You can see more about the switches and a demo at www.juniper.net/ This new line of switches runs their JunOS operating system, rather than some other OS that would create confusion and complication. I have spoken to the local Juniper team and it seems as though Juniper built the switches themselves rather than through OEM or acquisition. I’m not sure I agree with that from a product maturity or time to market aspect. In any case, congrats to Juniper for filling what many believe was a hole in their product offering.
I am curious as to what this will do for their NAC strategy, if anything.
–Chris
Technorati Tags: Juniper, switches, NAC
January 6, 2008 – 9:50 am
In this new age of Ajax / Web 2.0, is anyone still blocking Javascript at the perimeter or disabling it in the browser?? I remember when this was a significant issue…and it may still be one. It seems like the advantages (perceived or not) of real time page updates provided by Ajax are out weighing the security risks of Javascript.
The reason I ask is that I installed a new Fortinet UTM at a customer site yesterday. When I was setting up the protection profile I could block Javascript, ActiveX and Cookies.
–Chris
Technorati Tags: Javascript, security, Ajax, Fortinet, UTM