Posts

Showing posts from January, 2010

A day in a pentester's life

This morning, just after I had gotten to work, I found a frustrated project leader waiting at my desk. I had just left the kids in school for another day in the office, looking forward to breakfast and a warm cup of tea whilst reading RSS-news feeds before my first meeting. Instead this guy, not very well known as the sharpest knife in the drawer, was standing by my desk, demanding that I would sanction openings in the DMZ firewall. - Why would I open the DMZ firewall? I asked as I saw my breakfast window shrink and most likely disappear in the horizon like Lone Ranger and Tonto. There are a few fairly good reasons why we put a firewall there and closed access to almost anything. And absolutely none from DMZ to the inside network. - We need it for penetration testing, and we really need the openings ASAP, said the beforementioned project manager. I suddenly felt very fortunate not chewing on my cream cheese bagel with hot tea an inch from my face. What the hell was the man suggesting? ...
Post a Comment
Read more

ABA recommends separate PC to do business

That is probably the most ridiculous recommendation in a long time... ABA (American Banker's Association) recommends a separate computer to do your bank business on-line. That is, no web browsing or e-mail stuff. And yes, I am aware of the fact that the recommendation points to small businesses, not private persons. But the fact remains that this is stupid. ABA still says doing bank business on-line is safe and this is where the questions start popping up in my head. If it is safe for small or mid-size businesses, why not for large? How about private banking, or is it too petty to worry about? Why aren't the ABA focusing on securing perimeters and infrastructure on the bank's side, instead of pushing security concerns out to the customers? What's next? Someone clever comes up with the idea that on-line banking isn't so secure anymore and a new recommendation emerges. Please do not transport your money bag in your day-to-day car on your way to the bank. Consider hi...
Post a Comment
Read more

The King - 75th anniversary

The King would have been 75 today. Happy birthday - wherever you are!
Post a Comment
Read more