I forgot to publish this from Mexico after my birthday when it hit the press. One guy in Russia named Kirllos owns 1 in 300 facebook accounts and has them for sale. A close source today tells me he has a lead on a guy who is selling more accounts than that, and cheaper than [...]
Today I started toying with the idea of using OSSEC active response in Windows. My goal is to block a whole IP, you can do port or traffic type as you wish, if anyone wants that let me know. The first piece of work to share: netsh ipsec static add policy description=”ossec block list” netsh [...]
If you are setting up an Untangle firewall and want to use it at your house or business but might not know common ports to allow, here is a list. I have things a bit tighter at work but at the house I like to have instant messengers etc working. Skype TCP ports 13861, 34954, [...]
How to configure ossec to monitor mysql logs… not putting your logs into mysql.
Windows patch management needs to be a little more like Linux
Well Virginia went and lost their prescription drug data. 8.2million people worth of records are being held ransom by some idiot who I’m guessing is young, American and maybe drunk. Here is the link to wikileaks who broke the story. Maybe this will be the new tax needed to make companies/govt agencies provide resources to [...]
I’m tired of looking for resources that define how to properly secure Hipaa data on a laptop. HIPAA Title II is vague and seems to indicate that you need to secure patient data with good current industry standards. What are those standards? It reminds me of FERPA. I’m going to define “best effort according industry standards” [...]
Firefox ad blocker – Adblock plus – easy install. Works well. Google Chrome ad blocker -Adsweep.org – follow the instructions, it will only take a minute or two to copy and paste what you need. IE – download and run IE8, turn on the “in private” browsing thinger. For all 3 – download and install [...]
Are they ever going to call it blocklisting and smurf listing or something? This black and white thing generates some bad press. ANYHOW… SRI and SANS came up with this sweet predictive blacklist fun. It reminds me of what Symantec used to do with their free log reader software, Deepsight . Symantec used to give this [...]
I just posted this on spiceworks: Iphones cannot do data encryption. In my opinion this is an auditors dream. SOX, HIPAA, DOD, PCI compliant companies can’t use an Iphone. So every health care, publicly traded company, payment card industry and a LOT of government. Companies who value their intellectual property can’t use an Iphone. So [...]