Apr
19
2007
Sourcefire has announced that the company will be expanding into a lot of new security specialties beyond Intrusion Detection and Intrusion Prevention. I think it’s a very good move for them and builds on their existing strengths, but only time will tell if it’s going to be a successful strategy. Over at SearchSecurity Nick Selby has written an interesting analysis of the Sourcefire move. I understand it a lot better having read the article.
Sourcefire’s strength has always been in analyzing network traffic, since that’s what IDS boils down to. They got a lot more in depth with their software when they introduced RNA. Adding anomaly detection, vulnerability assessment (passive or active, I wonder) and network access control is just extending that expertise even further. And, as the article notes, they’ve already got a foothold any many, many networks, which isn’t going to hurt them in the least.
Technorati Tags: security, snort, sourcefire
![[Slashdot]](http://slashdot.org/favicon.ico)
![[Digg]](http://digg.com/favicon.ico)
![[Reddit]](http://reddit.com/favicon.ico)
![[del.icio.us]](http://images.del.icio.us/static/img/delicious.small.gif)
![[Facebook]](http://www.facebook.com/favicon.ico)
![[Technorati]](http://technorati.com/favicon.ico)
![[Google]](http://www.google.com/favicon.ico)
![[StumbleUpon]](http://www.stumbleupon.com/favicon.ico)
Apr
17
2007
| Slowly but surely I’m getting the video from RSA edited and posted. I talked to Ron Gula a number of times before, but this was the first time I’d ever gotten to meet him face to face. Given that Ron was the creator of the Dragon IDS, one of the first commercial IDS’s I’d ever used, I was more than a little bashful when we talked off camera. Now adays he’s much better known as the CTO and CEO of Tenable Network Security and having one of the most technical security blogs on the Internet (I think Richard Bejtlich beats him, but only by a hair).
By the way, as an explanation for one of the comments I made during the interview, Larry Ellison from Oracle shunned RSA and sent one of his underlings in to give his presentation at the last moment. What a good way to show your support for the security community. |
|
Technorati Tags: security, mckeay, Ron Gula, Tenable Network Security, Tenable
Apr
17
2007
No, the two subjects aren’t related other than overlapping in time. I just thought it would be easier to write one short post rather than two micro posts.
First of all, I got Dugg for the first time yesterday morning; the lock picking video I posted a couple of weeks ago caught someone’s attention and was posted to Digg, tripling my normal traffic. I’ve got another video from Toool that I should have up in a couple of weeks, but I want to finish off some of the video from RSA first. Yes, I’m still working on that video; it takes a lot more work than I originally thought to edit a video, though I’m getting a lot better at it. If you tried to get to the site yesterday and it timed out, now you know why. My poor little home network wasn’t totally hammered, but it was definitely impacted.
Second, I tried playing with the BackTrack 2.0 LiveCD yesterday. On my HP dv8000, BackTrack recognizes all of my hardware and Kismet works like a charm. My only problem is the touchpad which has a few minor issues. Hooking up my wireless mouse made that problem go away. On the other hand, on my Mac Book Pro, all of the hardware is recognized properly when I use the ATI drivers, with the exception of my wireless card. There are ways to get BackTrack to recognize the card, or so I’ve read, but I didn’t have time to try them last night.
My moment of horror came this morning when I tried to boot the MBP: “No boot disk found”!!!!! I had read that the system was supposed to automatically go back to booting from the HD after using a LiveCD, but this was obviously wrong. A quick Google search turned up a solution, holding down the Option key during boot will take you to the boot device menu. I felt like such a noob, which I guess I still am concerning the MBP. By the way, holding down the ‘C’ key during boot is how you get a MBP to boot from CD.
Technorati Tags: security, mckeay, digg, Mac, wireless, Backtrack
Apr
13
2007
| I had a chance to interview Mike Rothman at RSA in February. We’d talked for months, but this was the first time I’d ever met him face to face. There were two things I didn’t talk to Mike about in the interview that I thought you might find interesting. First of all, he is the author of a fantastic book , The Pragmatic CSO. It’s a 12 step program on how to secure your company as a CSO. Second, along with a mutual friend, Michael Santarcangelo, he has created the Security Education Network, a support system for security executives. When a couple of guys like these get together, something interesting is bound to happen. |
|
Technorati Tags: security, mckeay, Rothman, RSA, Podtech
