Tech evangelism and Miso soup like no other
Posts tagged infosec
The “I Don’t Want To Be A Dick” Syndrome of Information Assurance Management
Sep 12th
Information Assurance remains a growing field of expertise, maturing on an almost daily basis. The industry has exploded over the last 10 years even though the concepts of IA has been around since as early as the 1960’s. Although the industry and its practitioners continue to evolve, those in upper-management have a difficult time fully grasping the core principles. As in many areas of management these days, there are far too many gun-shy managers who are more concerned with appearances and perception than properly mitigating risk to the networks they are charged with protecting.
Stop Password Masking – Is Usability More Crucial Than Security?
Jul 6th
Jakob Nielsen, a widely known expert in the field of web usability, recently stirred up a shit storm of controversy after proclaiming that it is time to stop masking passwords because usability suffers. He claims hinges on the lack of true feedback when typing passwords. Making matters worse, world-renowned security expert Bruce Schneier agreed with Nielsen, hopping on the same idiotic train Nielsen is driving. Is password masking really such an important issue in need of immediate resolution?
HOWTO Install Squid Web Proxy Server with Active Directory Authentication
May 14th
Web Proxy servers are an essential aspect of a solid network perimeter defense strategy. Exposing the fragile desktop client to the internet at-large by allowing direct connections to the internet is dangerous and may lead to compromise. This can be exasberated if the overall network security strategy is not sufficient. Web Proxy servers can help alleviate a number of security concerns while offering a central facility for logging and content verification. In an enterprise environment, Web Proxy servers are used to enforce acceptable use and security policies. Learn how to configure Squid to enable Active Directory authentication for an enterprise web proxy solution.
Information Security Basics
Jan 3rd
Whether you run your own home network or are part of the IT shop administering the corporate network, there are some basic information security protocols which should always be followed. These tips are designed to help you, the administrator, adequately protect the network from the myriad of attacks available today. Ensuring your network is free of compromise is vitally important for all network users because it allows for the continued, uninterrupted operation of the very network they rely upon to perform their job.
This list is, by no means, designed to be all-inclusive. It is merely a small subset of tips which should help set most people in the right direction. These tips are generally married with more complex solutions, producing a far more comprehensive effort than the mere implementation of these basics.
Recent Comments