Monday, March 28

Jennifer Aniston and Brad Pitt Officially Split

Jennifer Aniston and Brad Pitt Officially Split

Kinda sad, I thought they were a good couple. Kinda funny how obsessed America is with celebs. I have to admit, I am interested as well, however, we have no short of at least 5 different magazines chronicles the lives of celebs. Kinda sad.

Om Malik on Broadband » How Yahoo Got Its Mojo Back

Om Malik on Broadband » How Yahoo Got Its Mojo Back

Has anyone else noticed that Yahoo looks just like Google? Coincidence?

An all new 24, tonight on FOX

Took me almost a whole 24 hours to get from Fort Lauderdale, Florida to Augusta, Georgia by way of Delta airlines and mother nature's intervention.

Thank you to all those nice thunderstorms that kept me from coming home and forcing me to only attach 3 hours of sleep to a 24 hour day.

Chinese police arrest super hacker

Chinese police arrest super hacker

Not a SUPER HACKER!! In addendum to my rant I wrote earlier concerning the title "hacker".. when do you become a hacker.. then when do you become a "SUPER HACKER"..

I guess when you 0wn 100,000 machines?

Jennifer Aniston and Brad Pitt Officially Split

Jennifer Aniston and Brad Pitt Officially Split


Kinda sad, I thought they were a good couple. Kinda funny how obsessed America is with celebs. I have to admit, I am interested as well, however, we have no short of at least 5 different magazines chronicles the lives of celebs. Kinda sad.

How Yahoo Got Its Mojo Back

Om Malik on Broadband » How Yahoo Got Its Mojo Back

Has anyone else noticed that Yahoo looks just like Google? Coincidence?

An all new 24, tonight on FOX

Took me almost a whole 24 hours to get from Fort Lauderdale, Florida to Augusta, Georgia by way of Delta airlines and mother nature's intervention.

Thank you to all those nice thunderstorms that kept me from coming home and forcing me to only attach 3 hours of sleep to a 24 hour day.

Chinese police arrest super hacker

Chinese police arrest super hacker


Not a SUPER HACKER!! In addendum to my rant I wrote earlier concerning the title "hacker".. when do you become a hacker.. then when do you become a "SUPER HACKER"..


I guess when you 0wn 100,000 machines?

Sunday, March 27

lh_explorer_demo_01.jpg (JPEG Image, 800x582 pixels)

lh_explorer_demo_01.jpg (JPEG Image, 800x582 pixels)

Longhorn preview shot. Kinda looks like Finder in Mac OS X! Consipiracy? Hmm....

Flight Delays

The best airline in the world

Here I am, bored, and stuck in Fort Lauderdale. Because of the vast amount of storms between here and Atlanta, there are 4 BILLION people here because apparently all the cruise ships come in on Sundays. Therefore it sucks. Been in this airport for the past 7 hours. Getting old quick.

GIAC Certification by Wayne Fielder

Up front -- I did not write this.. You can find the original by clicking on wayne's link on the right...

BIG NEWS! HUGE NEWS FROM SANS/GIAC!
Posted by pilgrim in InfoSec (Sunday March 13, 2005 at 10:12 pm)
Comments 0

SANS/GIAC is dropping the practical assignments for their certifications.

I hold two SANS certs, the GSEC and the GCIH. You can click on the buttons on the left hand column to learn about them. For both of these I had to complete a practical assignment which was a paper on a particular topic. Under the PAPERS section on the left column you can find mine. These practicals are what set SANS apart from the rest of the certification world. They required practicals for every certification…not just the more senior certs like Cisco and others do. A SANS Certified professional could be considered a DEMONSTRATED PROFESSIONAL in the security world because of the practical. But no more.

I sent the following letter to SANS regarding the issue:

While I bow to the vision of the SANS/GIAC leadership, I can’t help but think this is a bad idea. The practicals are what has set SANS/GIAC apart from the other certs. Has there been any thought given to keeping the practicals as an option for certification? This would effectively allow what you want while providing those who want the additional challenge, and recognition, to move ahead of the rest of the pack.

I could whine about the many hours I put into both of my GIAC certs and the pride I take in attaining them but that would only serve to demonstrate my love of whining. What I can say is that the lack of available time to complete these certs is simply a cop out. My day job regularly requires 80hr weeks. My consulting business also takes a substantial amount of my time. I still managed to complete both certs…didn’t sleep much but I completed them. The point is holding a GIAC cert demonstrates not only a certian level of expertise but also a committment to a goal. Passing the exams was a CAKE WALK compared to fulfilling the requirements of the practical assignments. No matter how difficult you make the exams nothing will replace the challenge and the required mastery of the material that the practical assignments held.

Count me in the “Respectfully Dissenting” column.

I’m profoundly saddened by this…okay…”profound” may be a strong word but the thought of the SANS certs becoming anything close to the MCSE as far as overall reputation just sickens me.

I still believe there is only one REAL certification track for serious security professionals and that is SANS/GIAC.

SouthBendTribune.com: Do-over on 'Idol' voting

SouthBendTribune.com: Do-over on 'Idol' voting

Good. She was so annoying it wasn't even funny.

lh_explorer_demo_01.jpg (JPEG Image, 800x582 pixels)

lh_explorer_demo_01.jpg (JPEG Image, 800x582 pixels)


Longhorn preview shot. Kinda looks like Finder in Mac OS X! Consipiracy? Hmm....

Flight Delays

The best airline in the world

Here I am, bored, and stuck in Fort Lauderdale. Because of the vast amount of storms between here and Atlanta, there are 4 BILLION people here because apparently all the cruise ships come in on Sundays. Therefore it sucks. Been in this airport for the past 7 hours. Getting old quick.

GIAC Certification by Wayne Fielder

Up front -- I did not write this.. You can find the original by clicking on wayne's link on the right...

BIG NEWS! HUGE NEWS FROM SANS/GIAC!
Posted by pilgrim in InfoSec (Sunday March 13, 2005 at 10:12 pm)
Comments 0

SANS/GIAC is dropping the practical assignments for their certifications.

I hold two SANS certs, the GSEC and the GCIH. You can click on the buttons on the left hand column to learn about them. For both of these I had to complete a practical assignment which was a paper on a particular topic. Under the PAPERS section on the left column you can find mine. These practicals are what set SANS apart from the rest of the certification world. They required practicals for every certification…not just the more senior certs like Cisco and others do. A SANS Certified professional could be considered a DEMONSTRATED PROFESSIONAL in the security world because of the practical. But no more.

I sent the following letter to SANS regarding the issue:

While I bow to the vision of the SANS/GIAC leadership, I can’t help but think this is a bad idea. The practicals are what has set SANS/GIAC apart from the other certs. Has there been any thought given to keeping the practicals as an option for certification? This would effectively allow what you want while providing those who want the additional challenge, and recognition, to move ahead of the rest of the pack.

I could whine about the many hours I put into both of my GIAC certs and the pride I take in attaining them but that would only serve to demonstrate my love of whining. What I can say is that the lack of available time to complete these certs is simply a cop out. My day job regularly requires 80hr weeks. My consulting business also takes a substantial amount of my time. I still managed to complete both certs…didn’t sleep much but I completed them. The point is holding a GIAC cert demonstrates not only a certian level of expertise but also a committment to a goal. Passing the exams was a CAKE WALK compared to fulfilling the requirements of the practical assignments. No matter how difficult you make the exams nothing will replace the challenge and the required mastery of the material that the practical assignments held.

Count me in the “Respectfully Dissenting” column.

I’m profoundly saddened by this…okay…”profound” may be a strong word but the thought of the SANS certs becoming anything close to the MCSE as far as overall reputation just sickens me.

I still believe there is only one REAL certification track for serious security professionals and that is SANS/GIAC.

SouthBendTribune.com: Do-over on 'Idol' voting

SouthBendTribune.com: Do-over on 'Idol' voting


Good. She was so annoying it wasn't even funny.

Wednesday, March 23

Texas Attorney General

Texas Attorney General

I don't think the Attorney General should sue. I think the girl should sue. Or the Attorney General should give the money to the girl. Girl is sans parents. Needs money for shopping for shoes.

Yahoo! News - Yahoo Inc. Again Expands E-Mail Storage

Yahoo! News - Yahoo Inc. Again Expands E-Mail Storage

Programming still isn't as nice as gmail. I have 50 Gmail invites if anyone wants one.

New Scientist Breaking News - Classic maths puzzle cracked at last

New Scientist Breaking News - Classic maths puzzle cracked at last

Somebody with WAAAAY too much time on his hands. I would say "Take up a hobby.." but then people could accuse me of the same.

Texas Attorney General

Texas Attorney General


I don't think the Attorney General should sue. I think the girl should sue. Or the Attorney General should give the money to the girl. Girl is sans parents. Needs money for shopping for shoes.

Yahoo! News - Yahoo Inc. Again Expands E-Mail Storage

Yahoo! News - Yahoo Inc. Again Expands E-Mail Storage


Programming still isn't as nice as gmail. I have 50 Gmail invites if anyone wants one.

New Scientist Breaking News - Classic maths puzzle cracked at last

New Scientist Breaking News - Classic maths puzzle cracked at last


Somebody with WAAAAY too much time on his hands. I would say "Take up a hobby.." but then people could accuse me of the same.

Tuesday, March 22

CRX mania. We have went too far.

Click here for the hottest Rice'd Honda ever

Hey nice CRX, do you have a rudder for your airplane wing? (by the way, I'm being sarcastic)

10 Immutable Laws of Computer Security Administration

Law #1: Nobody believes anything bad can happen to them, until it does

Law #2: Security only works if the secure way also happens to be the easy way

Law #3: If you don't keep up with security fixes, your network won't be yours for long

Law #4: It doesn't do much good to install security fixes on a computer that was never secured to begin with

Law #5: Eternal vigilance is the price of security

Law #6: There really is someone out there trying to guess your passwords

Law #7: The most secure network is a well-administered one

Law #8: The difficulty of defending a network is directly proportional to its complexity

Law #9: Security isn't about risk avoidance; it's about risk management

Law #10: Technology is not a panacea

10 Immutable Laws of Computer Security

Law #1: If a bad guy can persuade you to run his program on your computer, it's not your computer anymore

Law #2: If a bad guy can alter the operating system on your computer, it's not your computer anymore

Law #3: If a bad guy has unrestricted physical access to your computer, it's not your computer anymore

Law #4: If you allow a bad guy to upload programs to your website, it's not your website any more

Law #5: Weak passwords trump strong security

Law #6: A computer is only as secure as the administrator is trustworthy

Law #7: Encrypted data is only as secure as the decryption key

Law #8: An out of date virus scanner is only marginally better than no virus scanner at all

Law #9: Absolute anonymity isn't practical, in real life or on the Web

Law #10: Technology is not a panacea

CNN.com - Reservation in 'shock' over school shootings - Mar 22, 2005

CNN.com - Reservation in 'shock' over school shootings - Mar 22, 2005

Not sure really how to weigh in on this situation. When I was in high school, we had kids in our school that had guns in the gun racks out in the car. I knew kids that had guns in their lockers. When someone said that, we all freaked out. I mean, I am not an anti-gun advocate. I believe in guns and I believe that guns are important. I don't believe in gun control, but I believe guns should be controlled.

My whole thing is in this situation, is where are the damn parents? Stupid ass parents raising stupid ass kids. I'd like to do a study that would be able to show if parents whouped their kids' asses when they were younger, would they turn into high school killers.

Get this.. The gun came from the grandfather. Who is a retired... Cop. A person who should definately know better. I'm related to several Cops. All of which have their guns locked up. All the time. Stupid ass kids.

10 Immutable Laws of Computer Security Administration

Law #1: Nobody believes anything bad can happen to them, until it does

Law #2: Security only works if the secure way also happens to be the easy way

Law #3: If you don't keep up with security fixes, your network won't be yours for long

Law #4: It doesn't do much good to install security fixes on a computer that was never secured to begin with

Law #5: Eternal vigilance is the price of security

Law #6: There really is someone out there trying to guess your passwords

Law #7: The most secure network is a well-administered one

Law #8: The difficulty of defending a network is directly proportional to its complexity

Law #9: Security isn't about risk avoidance; it's about risk management

Law #10: Technology is not a panacea

10 Immutable Laws of Computer Security

Law #1: If a bad guy can persuade you to run his program on your computer, it's not your computer anymore

Law #2: If a bad guy can alter the operating system on your computer, it's not your computer anymore

Law #3: If a bad guy has unrestricted physical access to your computer, it's not your computer anymore

Law #4: If you allow a bad guy to upload programs to your website, it's not your website any more

Law #5: Weak passwords trump strong security

Law #6: A computer is only as secure as the administrator is trustworthy

Law #7: Encrypted data is only as secure as the decryption key

Law #8: An out of date virus scanner is only marginally better than no virus scanner at all

Law #9: Absolute anonymity isn't practical, in real life or on the Web

Law #10: Technology is not a panacea

CNN.com - Reservation in 'shock' over school shootings - Mar 22, 2005

CNN.com - Reservation in 'shock' over school shootings - Mar 22, 2005


Not sure really how to weigh in on this situation. When I was in high school, we had kids in our school that had guns in the gun racks out in the car. I knew kids that had guns in their lockers. When someone said that, we all freaked out. I mean, I am not an anti-gun advocate. I believe in guns and I believe that guns are important. I don't believe in gun control, but I believe guns should be controlled.


My whole thing is in this situation, is where are the damn parents? Stupid ass parents raising stupid ass kids. I'd like to do a study that would be able to show if parents whouped their kids' asses when they were younger, would they turn into high school killers.


Get this.. The gun came from the grandfather. Who is a retired... Cop. A person who should definately know better. I'm related to several Cops. All of which have their guns locked up. All the time. Stupid ass kids.

Monday, March 14

www.GovExec.com - Smooth confirmation process seen for NASA nominee (3/14/05)

www.GovExec.com - Smooth confirmation process seen for NASA nominee (3/14/05)

Let me get this straight. The President picked a rocket scientist to be the head of NASA? No.

Doesn't take a Rocket Scientist to figure that one out... (pardon the pun, it was intentional)

www.GovExec.com - Smooth confirmation process seen for NASA nominee (3/14/05)

www.GovExec.com - Smooth confirmation process seen for NASA nominee (3/14/05)

Let me get this straight. The President picked a rocket scientist to be the head of NASA? No.

Doesn't take a Rocket Scientist to figure that one out... (pardon the pun, it was intentional)

Tuesday, March 1

Genius

"Thankfully I came to my senses more than a decade ago. Sure my Mac could crash if someone farted in the same room 10 years ago but Microsoft had a better alternative? Not bloody likely. Every PC I ever saw then ran without a cover as cards would need to be yanked so the half-brain dead OS could get past safe-mode. Is it better today? Sure is but so is every other OS' and many other brands of plastic." -- Unknown

Genius

"Thankfully I came to my senses more than a decade ago. Sure my Mac could crash if someone farted in the same room 10 years ago but Microsoft had a better alternative? Not bloody likely. Every PC I ever saw then ran without a cover as cards would need to be yanked so the half-brain dead OS could get past safe-mode. Is it better today? Sure is but so is every other OS' and many other brands of plastic." -- Unknown