I don’t know why I do it, but I invariably wobble on diets on Tuesdays. So I’m doing the only thing I can – I watched the Biggest Loser with a few slices of Hawaiian pizza, a diet Pepsi, and a Violet Crumble to wash things down to get a bit of a sugar rush…
No more excuses – weight loss starts now
I’m home for the foreseeable future, so it’s time to stop blaming being on the road for getting the right food down my neck, and not exercising. It is difficult to get high quality, low sugar, low GI foods in the USA. There is a myth that everything is high fat here, but it’s a…
Ajax Security by Billy Hoffman and Bryan Sullivan
I’ve had the manuscript of this book for about two weeks now. I approached this review from the point of view of having had a contract to write an Ajax security book myself, with No Starch Press. I actually approached Billy to see if he wanted to help write my book at Black Hat in…
OWASP / WASC AppSec 2007
It’s that time of the year again! Time to register for the OWASP / WASC AppSec 2007 Conference. Training Schedule Conference Schedule Secure Registration This is the conference track I dream about when I cry to myself re: lack of web application security in other security conferences. Awesome speakers, the Breach cocktail party (register now!…
Why does forum software has more security features than “enterprise” tool chains?
I am constantly amazed by the sheer lack of security in the average “enterprise” tool. I’ve looked at many over the years, and most are designed to the “soft squishy center” anti-security model. Typically: They do not implement any form of strong authentication, nor any facility to integrate with known strong authentication solutions They do…
Fucktard drivers
What is it with “sporty” coupes and their drivers? We were nearly killed coming home from the hospital by 8CR J60, a Black Infinity of some description. There’s a complete fucktard behind the wheel, who will hopefully get a nice moving violation from the police tomorrow. I hope with all my heart that this is…
Cultural Learnings from the Great United States Of America
Well, I was watching this new show called “The Big Bang Theory” last night (on Tivo-To-Go at the hospital, but that’s for another blog entry another time). It’s written by Chuck Lorre who has done a lot of great comedy, including Two and a Half Men. I quite liked it, as what’s not to love? Cosmologically-correct lyrics…
Security Engineering
One of the really cool things my job allows me to do is go teach developers and managers about application security. In the past, I’ve half jokingly said “when the revolution comes, X will be first against the wall”, where X is a product or company who has no clue about security and worse, they…
InfoSec Sellout Pwned
It’s sort of ironic funny when a blogger who is against FUD in the security industry get pwned by sploggers. Seriously not safe for work:
Notes from Black Hat
Well, I had fun. You have to be basically a kill joy to not have fun in Vegas. Black Hat is getting busier and busier every year, and this year is no exception. There would have been easily three thousand folks at the event, and it was approximately 1.5-2.5 thousand too many, especially during breaks…