Blog

  • How Dot.Gov domains prevent election fraud and abuse

    There is a lot of talk about how foreign actors are attacking our electoral process. Election authorities (and other local governmental bodies) can thwart many of those threats by getting a dot.gov domain. Getting a dot.gov domain name is a simple and relatively inexpensive measure to discourage such mischief. Why get a dot.Gov domain? Challenges Read more

  • Hacking back from a glass house

    Our nation’s IT applications and infrastructure are quite vulnerable; public and private organizations are reluctant to harden these assets sufficiently to provide assurance against devastating counter attacks. An adversary may retaliate at a weak point, perhaps with little concern for precise attribution. Thus offensive operations should be conducted from an “all-of-government” perspective, ensuring that the… Read more

  • I’ve moved to WordPress

    It’s time to use the lessons the WordPress class I took a couple of years ago. Good company in a journey makes the way seem shorter. — Izaak Walton Read more

  • CloudBleed: CloudFlare Leaks Sensitive Information

    The internet infrastructure provider CloudFlare was recently discovered to be leaking server memory, potentially exposing sensitive information such as user passwords, authentication tokens, and other data. Cloudflare’s reverse proxies systems inserted random amount of server memory into webpages. As a result, visitors to these websites had unencrypted memory appended to the bottom of their browser… Read more

  • Automating the build process for effective DevSecOps

    Numerous organizations made a concerted efforts to move to Agile Development and DevOps. This effort has led to a number of positive steps that the IT security community can leverage to address the software security risks facing them. These steps significantly improve the security, availability, integrity, and reliability of the application portfolio. Effective configuration management… Read more

  • The perils of orphan blogs!

    Remember that blog you started a few years ago and haven’t updated? You may have lost interest but internet miscreants will still find your blog quite appealing. Blogging applications like WordPress, drupal, and joomla are all under constant scrutiny by the forces of evil. The latter are looking for outdated versions and plug-ins. Once they… Read more

search previous next tag category expand menu location phone mail time cart zoom edit close