Friday, December 31, 2010

IPv6 deployment guides have been released by NIST

I really wasn't planning on posting anything until the new year, but this story in the SANS NewsBites prompted me to post this up.  NIST has posted a final version of its "Guidelines for the Secure Deployment of IPv6."

This has ramifications in a bunch of checklists that DoD auditors will be looking at.  From experience though, I know of many checks in the Application Security and Development checklist where this will have impact.  Specifically, you can look at: V-16781, V-6164, V-6165, V-19706, V-19707, V-19708, V-19709, V-16829, and mentioned in V-16822 and V-16836.

Saturday, December 25, 2010

Merry Christmas

I saw this on Roger's blog....pretty funny.

Garfield.....Merry Christmas

Thursday, December 23, 2010

This video reminds me of the legendary Dead Parrot Skit

I saw this linked on AndyITGuy's site.  Hysterical.  I've been a big Monty Python fan for a while, and this video reminded me of the Dead Parrot skit.  I hope you enjoy.

It's been a while

I looked at my last post, and was a little surprised to see that it was dated in November.  Yeesh.  It has been a very busy month and change for me.  There have been multiple trips to a particular client in order to help them ramp up security of their IP.  And, of course, the write-up of those trips.  Then, I had to write up the test results from a classified enclave....always fun when you have to write up the findings when you did not actually test the system.  It's very hard to write mitigations and rationales when you haven't seen the system and what makes it up.  And, to top it all off, I had data and a laptop dropped off on my desk from a test that occurred a couple of weeks ago.  I've only skimmed through the data, and it is incomplete at best.  From what I can gather the test was more of a dog-and-pony-show for some high up brass.

I've updated a couple of previous posts with recent pertinent information.

There may be some interesting news concerning content on the site in the coming weeks.  Hopefully I can keep my musings to a minimum and get some actual content up.

Enjoy any holiday break you might take.