NP-Incompletetag:np-incomplete.com,2008://12008-05-05T04:50:41Zadam j. o'donnell's blog.Movable Type 3.33BaySec Wednesday, May 7thtag:np-incomplete.com,2008://1.1042008-05-05T04:50:33Z2008-05-05T04:50:41Z Girls drinking a beer Originally uploaded by surfstyle BaySec is this Wednesday, May 7th at Pete's Tavern. As usual, you can find us by looking for the crowd of socially inept nerds to the left side of the bar....Adam J. O'Donnellhttp://philtered.net/~adam Girls drinking a beer
Originally uploaded by surfstyleBaySec is this Wednesday, May 7th at Pete's Tavern. As usual, you can find us by looking for the crowd of socially inept nerds to the left side of the bar.
]]>
Spam is now 30.tag:np-incomplete.com,2008://1.1032008-05-04T06:17:32Z2008-05-04T06:20:48ZSpam is now 30. Frankly, if spam still bothers you after all this time, buy a better filter....Adam J. O'Donnellhttp://philtered.net/~adam
Spam is now30. Frankly, if spam still bothers you after all this time, buy a better filter.]]>
Kraken Revengtag:np-incomplete.com,2008://1.1022008-04-29T18:13:25Z2008-04-29T18:16:05ZThere is a solid writeup by Pedram Amini @ TippingPoint on the Kraken RevEng here and here. Thanks to Richard Soderberg for the heads up....Adam J. O'Donnellhttp://philtered.net/~adam
here and here. Thanks to Richard Soderberg for the heads up.]]>
Show me yours...tag:np-incomplete.com,2008://1.1012008-04-29T06:25:15Z2008-04-29T06:25:19Z Bay to Breakers Bib Originally uploaded by Adam J. O'Donnell My bay to breakers bib arrived....Adam J. O'Donnellhttp://philtered.net/~adam Bay to Breakers Bib
Originally uploaded by Adam J. O'Donnell
My bay to breakers bib arrived.
]]>
Storm Defeated?tag:np-incomplete.com,2008://1.1002008-04-23T21:16:41Z2008-04-23T21:19:30ZApparently if you have kernel-level and below control of every Windows PC out there, you can pull out a botnet infestation. Let's see how long it takes for either the botters to be caught or for a new infection to...Adam J. O'Donnellhttp://philtered.net/~adam
botnet infestation. Let's see how long it takes for either the botters to be caught or for a new infection to come out that disables Windows Update. Thanks go to Bryan and Jose for the heads up.]]>
How Storm Communicatestag:np-incomplete.com,2008://1.992008-04-18T06:42:46Z2008-04-18T06:46:38ZThorsten Holz and team put together a fantastic paper on how the Storm Worm communicates and how it can be infiltrated. Thanks go to Jose Nazario for the heads up....Adam J. O'Donnellhttp://philtered.net/~adam
Thorsten Holz and team put together a fantastic paper on how the Storm Worm communicates and how it can be infiltrated. Thanks go to Jose Nazario for the heads up.]]>
Security Blogger's Meetup 2008tag:np-incomplete.com,2008://1.982008-04-16T07:18:29Z2008-04-16T07:18:34Z Security Blogger's Meetup 2008 Originally uploaded by Adam J. O'Donnell As you can see from the picture, I was very tired by the time the Security Blogger's Meetup rolled around at RSA. TechDulla, Alan Schimel, Jennifer Leggio and many...Adam J. O'Donnellhttp://philtered.net/~adam Security Blogger's Meetup 2008
Originally uploaded by Adam J. O'Donnell
As you can see from the picture, I was very tired by the time the Security Blogger's Meetup rolled around at RSA. TechDulla, Alan Schimel, Jennifer Leggio and many others have provided writeups (Martin McKeay has video) of the event, and I really can't add too much to what has been said.
Long story short: Good time, and hats off to Jennifer for pulling off a fantastic event.
]]>
What the hell have I been doing? Part $e^{j\pi}$tag:np-incomplete.com,2008://1.972008-04-14T22:53:20Z2008-04-14T22:59:54ZI just submitted an article for IEEE Security and Privacy and spent the past week attending RSA. I did do a podcast for Schwartz PR during their RSA party that is available here....Adam J. O'Donnellhttp://philtered.net/~adam
IEEE Security and Privacy and spent the past week attending RSA. I did do a podcast for Schwartz PR during their RSA party that is available here.]]>
Stupid web 2.0 grumble grumble...tag:np-incomplete.com,2008://1.962008-04-14T22:52:03Z2008-04-14T22:52:45ZYet another means of promoting this site: Technorati Profile....Adam J. O'Donnellhttp://philtered.net/~adam
Technorati Profile.]]>
Malware shifts and value chains.tag:np-incomplete.com,2008://1.952008-04-12T01:33:02Z2008-04-12T01:46:08ZAmrit Williams is calling me on predicting malware emergence. His assertion is that by the time AV improves enough to push attackers onto Macs at their current market share, then attackers will shift to another layer altogether and abandon the...Adam J. O'Donnellhttp://philtered.net/~adam
Amrit Williams is calling me on predicting malware emergence. His assertion is that by the time AV improves enough to push attackers onto Macs at their current market share, then attackers will shift to another layer altogether and abandon the idea of monetized malware. I had always assumed that the value chain established by attackers would be largely preserved, but he may be right: there could be a point where AV is so good that attackers will just move to popping webmail accounts and routers rather than attacking client systems. Now wouldn't that be nice.]]>
Why Google is Brilliant; Case Study: Google App Enginetag:np-incomplete.com,2008://1.942008-04-10T16:43:48Z2008-04-10T16:48:06ZLet's say you are a startup and you choose to use the Google App Engine for your infrastructure. If Google buys you out, they don't have to port the code. They directly quantify your company's technology opex and revenue, since...Adam J. O'Donnellhttp://philtered.net/~adam
Google App Engine for your infrastructure. If Google buys you out, they don't have to port the code. They directly quantify your company's technology opex and revenue, since they see both the CPU overhead and the eyeball count via Google Analytics. Brilliant.]]>
RSA still hates the Irish.tag:np-incomplete.com,2008://1.932008-04-10T16:41:55Z2008-04-10T16:43:44ZNokia, the phone company that doesn't do security but does OEM SourceFire and CheckPoint technology, brought in the fake Bono....Adam J. O'Donnellhttp://philtered.net/~adam
brought in the fake Bono.]]>
Maybe RSA doesn't hate the Irish.tag:np-incomplete.com,2008://1.922008-04-08T17:06:33Z2008-04-08T17:10:20ZBono was walking the RSA floor last night. He was there for Nokia, which rocks security apparently. I guess RSA doesn't hate the Irish too much....Adam J. O'Donnellhttp://philtered.net/~adam
Bono was walking the RSA floor last night. He was there for Nokia, which rocks security apparently. I guess RSA doesn't hate the Irish too much.]]>
RSA hates the Irishtag:np-incomplete.com,2008://1.912008-04-07T17:09:09Z2008-04-07T17:18:43ZBecause I have an apostrophe in my last name, I attempt a SQL injection attack every time I fill out a form. The RSA conference is aware of this, and requires everyone who has an apostrophe in their last name...Adam J. O'Donnellhttp://philtered.net/~adam
Because I have an apostrophe in my last name, I attempt a SQL injection attack every time I fill out a form. The RSA conference is aware of this, and requires everyone who has an apostrophe in their last name to stand in a separate line. Apparently they have not yet learned that it is possible to secure a webapp against the dreaded ' without blacklisting the content.
I find this to be equivalent to segregation against those of us who have apostrophes in our name, and by the principle of transitivity, RSA is attempting to segregate out the Irish without posting an "Irish Need Not Apply" sign. Mark my words, first they will come for our crypto keys, and then they will come for our potatoes.
BusinessWeek covers Apple Securitytag:np-incomplete.com,2008://1.902008-04-06T03:15:01Z2008-04-06T03:16:30ZThis article on the potential emergence of Macintosh malware appears with auspicious timing....Adam J. O'Donnellhttp://philtered.net/~adam
This article on the potential emergence of Macintosh malware appears with auspicious timing.]]>
