Viewing posts from January, 2009
hash-house-terrorists
Posted by: admin 15 years, 8 months ago
In the latest completely stupid culture of fear incident, a couple of Hash House Harriers were arrested for putting flour on the ground near an Ikea. The sad part, well one of the sad parts, is that the man arrested is a German citizen who joined the running group to meet friends. Another sad part is this quote from the city spokesperson:
Mayorga said, "We can't take any situation lightly. We didn't know who these people were. We didn't know what this substance was and in the best interest of the citizens of New Haven, we had to take it seriously."I'm not an expert, but I'm pretty sure there is no chemical or biological agent that is effective by being thrown on the ground in pile outside. What would be good is for the city to have a process whereby an uninformed officer can make a call to someone who then says there is no need to call the Police, Fire, Health, state police and FBI for someone playing a harmless game.
punishment-and-security
Posted by: admin 15 years, 8 months ago
There is a very article in the NY Times about how groups can profit by punishing members, in particular, by punishing free riders.
In the experiment, investigators at the University of Erfurt in Germany enrolled 84 students in the investment game and gave them 20 tokens apiece to start. In each round of the game, every participant decided whether to hold on to the tokens or invest some of them in a fund whose guaranteed profit was distributed equally among all members of the group, including the "free riders" who sat on their money. Because the profit was determined by a multiple of the tokens invested, each participant who contributed to the fund enjoyed less of a return than if the free riders had done so as well.
ralph-reed-and-email-security
Posted by: admin 15 years, 8 months ago
The Radical Georgia Moderate blog has a post about accidentally getting access to a Ralph Reed campaign email account.incentive-plan-for-an-information-security-team
Posted by: admin 15 years, 8 months ago
It has occurred to me that you could develop an interesting incentive program for an information security team, assuming that you believe a couple of data points (or can come up with your own) and your primary concern is a data breach. In my opinion, security people are all too often incented only to maintain security - not to optimize the investment in security. Interests need to be aligned.
i-for-one-welcome-our-ceylon-overlords
Posted by: admin 15 years, 8 months ago
From the Register:
A US defence department advisory board has warned of the danger that American war robots scheduled for delivery within a decade might be riddled with malicious code. The kill machines will use software largely written overseas, and it is feared that sinister forces might meddle with it in production, thus gaining control of the future mechanoid military.
Recent Posts
- Blast-RADIUS attack
- The latest WiKID version includes an SBOM
- WiKID 6 is released!
- Log4j CVE-2021-44228
- Questions about 2FA for AD admins
Archive
2024
2022
- December (1)
2021
2019
2018
2017
2016
2015
2014
- December (2)
- November (3)
- October (3)
- September (5)
- August (4)
- July (5)
- June (5)
- May (2)
- April (2)
- March (2)
- February (3)
- January (1)
2013
2012
- December (1)
- November (1)
- October (5)
- September (1)
- August (1)
- June (2)
- May (2)
- April (1)
- March (2)
- February (3)
- January (1)
2011
2010
- December (2)
- November (3)
- October (3)
- September (4)
- August (1)
- July (1)
- June (3)
- May (3)
- April (1)
- March (1)
- February (6)
- January (3)
2009
- December (4)
- November (1)
- October (3)
- September (3)
- August (2)
- July (5)
- June (6)
- May (8)
- April (7)
- March (6)
- February (4)
- January (427)
2008
- December (1)
Categories
- PCI-DSS (2)
- Two-factor authentication (3)
Tags
- wireless-cellular-mobile-devices (7)
- Two-factor authentication (10)
- Wireless, cellular, mobile devices (6)
- NPS (1)
- Phishing and Fraud (111)
- Active Directory (1)
- pam-radius (3)
- privileged access (2)
- Cloud Security (10)
- Mutual Authentication (60)
- Web Application Authentication (1)
- Authentication Attacks (99)
- pci (50)
- Security and Economics (97)
- WiKID (133)
- pam (2)
- VPN (1)
- Installation (2)
- RADIUS Server (1)
- Open Source (64)
- Tutorial (2)
- Strong Authentication (35)
- Information Security (137)
- Transaction Authentication (13)
- Miscellaneous (100)
- Linux (2)
- transaction-authentication (6)
- Two Factor Authentication (254)