Gadfly Security

Help!!!!

2011-10-05T16:23:00.001-07:00

Can anyone let me borrow an iPad for a little research. I would like to make a presentation to interested parties in the Lake County Florida area regarding the technology of iPad tracking? Also, a...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

iPad tracking and school systems

2011-10-04T20:03:00.001-07:00

I am moving all of my content over from Facebook to here, but here is the scoop: School systems are using the iPad's tracking feature to track students. Furthermore, when and who is doing this...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Off topic: Ruby

2009-01-01T12:10:00.001-08:00

I have been working with Ruby on Rails (RoR), for a bit now, so I decided to extend my Ruby knowledge a bit and learn design patterns. I read the original GoF design patterns book, but "Design...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Depressing CPE's

2008-04-24T12:37:00.001-07:00

I have been doing some online seminars for my CISSP CPE credits, and I recently viewed one on the state of malware. It was a bit depressing. Botnets and polymorphic threats abound, as well as the...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

New Squidoo Lens

2008-03-19T09:44:00.000-07:00

I created a Squidoo Lens to cover some of the same material as this blog. However, I did put some useful links to risk assessment methodologies and guides.

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Don't Do Db Security By Yourself

2008-03-18T08:47:00.001-07:00

Code reviews and static analysis of code, plus scanning tools, will only get you so far when securing your database-driven web application. The best solutions of securing web applications are...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Database Security Secrets of the Ancients Revealed

2008-03-06T07:10:00.000-08:00

A terrible aspect of information security is the propagation of trendy buzzwords and their use as social signifiers in the community. One could be completely competent with fundamental aspects of...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

The Personal Firewall

2008-03-03T07:10:00.000-08:00

At one place where I had the opportunity to work, the external connections to the web and external partners were all protected by firewalls. Depending on the requirements of the customers, the...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Stovepiping Madness

2008-02-28T05:46:00.000-08:00

"We use professional judgement, a pinch from COBIT, a jot from FISCAM, two tablespoons of NIST baked in with meat from the Institute of Internal Auditors." This was the answer [paraphrased for...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

First Impressions, Triumfant Resolution Manager

2008-02-26T08:46:00.000-08:00

The first product I want to take a look at is Triumfant's Resolution Manager. After reviewing the information on Triumfant's website, I have began to develop some questions. Unfortunately, the site...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Toolitis

2008-02-12T08:07:00.000-08:00

I just found a cool blog where someone is using Emacs as a personal organizer. http://sachachua.com/ The blogger is also writing a book on using Emacs for personal productivity. I think this is...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Product Selection

2008-02-08T05:38:00.000-08:00

I now need to select the products I am going to review. There are several candidates for point solutions and few truly comprehensive solutions. One of my criteria will be the scope of the...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Something is in my Network

2008-02-07T06:11:00.000-08:00

Tripwire is the classic file integrity tool. Tripwire establishes a baseline of files using cryptographic hashes, then intercepts changes to the files in the security base, finally triggering a...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.

Linguistic Games in Risk Management/Risk Assessment

2008-02-06T11:41:00.000-08:00

Risk management and risk assessment is structured as an elaborate linguistic game that provides a "feel good" payoff without an attendant change in the universe of discourse. Like what Bruce...

I just see things in IT and computer security that are wrong. Others agree, but the real world organizations don't follow.