I have been told to no longer cover technology issues on my personal blog (that’s this).
Unless/until circumstances change I won’t be posting anything related to technology or that could be construed in a way to potentially violate this policy.
Back before Gartner I ran my own consulting/development business for a while. It was reasonably successful, but when a better opportunity came up I shut down operations and joined the company that Gartner eventually acquired.
I’ve been running my eval copy of Vista (as a virtual machine) for a couple of weeks now and it’s a strange feeling. No, it has nothing to do with the new user interface (most of which won’t run in my virtual machine anyway), User Account Protection (UAP), or any of the new features.
No, I’m not calling all security researchers torturers. Before you flame me, read the post…
Not that I have any personal experience (beyond sitting through Black Dog the day my girlfriend dumped me), but torture is one of those things that rarely seems to give you the results you want, and even when it seems to work comes at an incredibly high cost
Being on the road this week, I missed the latest drama at the Month of Apple Bugs pointed out in this post by Chris Pepper. (One thing Chris doesn’t mention is that this backdoor was only included in a pre-release version of the exploit, not the released proof of concept code).
The BCS Championship is in Phoenix tonight (that’s the college football championship game for our overseas and raging-geek readers) and Ohio State seems to have brought around 60,000 of their fans into town.
Tomorrow morning I’m off on the wonderful 6 hour flight from Phoenix to Boston
I probably don’t have time to meet up, but if any of you are in the area and want to give it a shot let me know. *[Email:]: Email *[Twitter:]: Twitter *[Phone:]: Phone
I had the opportunity to review Rothman’s Pragmatic CSO before the holidays, and it got me thinking about complexity.
(Oh yeah, and it’s really good, but I’m not allowed to endorse anything so that’s all I’ll say.)
I’m catching up from being out (or sick) most of the holidays, so this is a bit of old news.
Richard expresses a little shock upon discovering that SAS 70 audits don’t evaluate security.
I’d be shocked if any service provider, or other organization for that matter, claimed to me a SAS 70 made them secure. As in I’d consider them totally fracking worthless.