Tue, 30 June 2009 Martin is off in Japan this week, so I'm joined by our good friend Amrit Williams from BigFix and the Techbuddha blog. Amrit and I start off by talking about the rolling blackouts in California and disaster preparedness, before jumping into the week's security news. Network Security Podcast, Episode 156 Show Notes:
Comments[0] |
Tue, 23 June 2009 We start the show off by wishing Martin luck with his presentation at the FIRST conference in Kyoto, foolishly trusting Rich with the keys to the podcast. Then Rich fawns over his iPhone 3GS a little too much, but he does manage to talk about some cool new security features. Rich
also rants a little on one of our PCI stories, and Martin updates us on
his XBox wireless situation. Finally, we geek out a bit on Adam Savage
appearing at DefCon. Show Notes:
Comments[0] |
Tue, 16 June 2009 This week we had a chance to talk to Jeff Moss, the founder of a couple minor security events, Black Hat and Defcon.
Of course some would say that they're the biggest social events of the
year, along with having the best presentations on cutting edge security
research, but what do they know. A lot apparently, given the number of
security professionals and hackers who'll be be making the trip to Las
Vegas at the end of July to attend both of these events. Jeff was recently asked to be a part of the Homeland Security Advisor Council, a diverse group of sixteen individuals who will be advising the DHS and Secretary Napolitano on the security concerns they're seeing in the real world. This group includes Govenors, both past and present, Mayors, CEO's and Presidents, though Mr. Moss is the only computer security expert. Jeff is still learning about what this really means, but we spent a significant part of the interview talking about what it means and the agendas he personally would like to see pushed at the DHS. One of his big concerns is the tradeoff we're making between security and privacy and if anyone is taking steps to measure those tradeoffs. Network Security Podcast, Episode 154, June 16, 2009 Time: 45:34 Comments[0] |
Tue, 9 June 2009 Rich was somewhere in the air over the Midwest today, which would have
made recording a podcast questionable at best. So rather than take any
chances with technology, we got a stand in for him in the form of our
very own Security Curmudgeon, Jack Daniel.
I met Jack face to face for the first time at one of the first big
'security' conferences I'd ever been to on the East Coast, Shmoocon
2007. I haven't made it back for another conference recently, but when
I do, I'm sure that there will be people like Jack who will give me a
warm welcome. Jack and I spend a little time bashing the CISSP yet again, we talk about some very interesting news stories and wrap up discussing getting involved in the security community. All in all, another good show. Network Security Podcast, Episode 153 Time: 41:41 Show Notes:
Comments[0] |
Tue, 2 June 2009 We hope no one begrudges us for taking last week off due to the
holiday, and we're back this week with all your juicy security
goodness. After a short discussion of our mutual weekends spent
recovering old hard drives and systems, we talk about the upcoming
Black Hat and DefCon conferences before digging into the news. We
discuss stories from a return of the L0pht Heavy Industries, to White
House speeches, and Mac security. Network Security Podcast, Episode 152, June 2, 2009 Time: 35:36 Show Notes:
Comments[0] |
Tue, 19 May 2009 We probably more the doubled the number of stories we talked about this
week, but we only added about 8 minutes to the length of the podcast.
You can consider this the "death by a thousand cuts" podcasts as we
cover a string of shorter stories, ranging from a major IIS
vulnerability, through breathalyzer spaghetti code, to how to get
started in security. We also spend a bit of time talking about Black Hat and Defcon, and celebrate hitting 500,000 downloads on episode 150. Someone call a numerologist! Network Security Podcast, Episode 151, May 19, 2009 Time: 42:24 Show Notes:
Comments[0] |
Tue, 12 May 2009 This is one of those good news/bad news weeks. On the bad side, Rich
messed up and now has to retake an EMT refresher course, despite almost
20 years of experience. Yes, it's important, but boy does it hurt to
lose 2 full weekends learning things you already know. On the upside,
this is, as you probably noticed from the title of the post, episode
150! No, we aren't doing a 12 hour podcast like Paul and Larry did (of
PaulDotCom Security Weekly), but we do have the usual collection of
interesting security stories. Network Security Podcast, Episode 15, May 12, 2009 Time: 38:18 Show Notes:
Comments[0] |
Tue, 5 May 2009 It's been a bit of a strange week on the security front, with good guys
hacking a botnet, a major security vendor called to the carpet for some
vulnerabilities, and yet another set of Adobe 0days. But being Cinco de
Mayo, we can just margarita our worries away. In this episode we review some of the bigger stories of the week, and spend a smidge of time pimping for a (relatively) new site started by some of our security friends, and a new project Rich is involved with. Network Security Podcast, Episode 149, May 5, 2009 Time: 34:08 Show Notes:
Comments[0] |
Tue, 28 April 2009 Rich and I are back from RSA, rested and ready to go! Baah, who am I
kidding; here it is four days later and we're both still so tired we're
barely able to talk coherently. Not that we'd let that stop us from
recording a podcast. Never has and probably never will. In any case,
we start tonight with a recap of some of our observations of the 2009
RSA Conference and move on to the current media hype over the swine
flu. Use the swine flu as a learning exercise in how to cope with
media hype, a good excuse for reviewing your own disaster preparedness
plans and a way to get some of the same issues dealt with by your
management. The hours you spend looking at your options today may save
you hours or days down the line. Network Security Podcast, Episode 148, April 28, 2009 Time: 40:06 Show Notes: Comments[0] |
Tue, 28 April 2009 Rich and I tried our best to get a podcast recorded and posted last
night, and we were partially successful; at least we got the podcast
recorded. But the editing and posting part was well beyond my
capabilities once I got back to the hotel room last night. But it's
here, bright, shiny and new first thing in the morning. RSA has been a hectic and exhilarating event so far, and the best part is yet to come! Rich and I had just finished our panel discussion, Avoiding Security Groundhog Day, and were joined by Rich's partner at Securosis, Adriane Lane. We found the quietest spot possible at RSA, which happened to be the near the top of the escalators. Yes, quiet space really is that rare at RSA. Network Security Podcast, Episide 147, April 21, 2009 Comments[0] |
