I moved this site over to Cloudflare. The previous CDN doesn’t give SSL to free accounts. I’ve wanted to get SSL on here for many reasons, such as using SSL to protect my logins. Additionally the use of SSL is necessary for the SPDY protocol, which should speed up the site. I”m expecting Cloudflare …
DigitalGuardian has named this blog as one of the Top 50 Infosec Blogs you should be reading. DigitalGuardian by Verdasys offers an interesting solution in the DLP area as well as advanced threat protection. Definitely worth checking out.
This is only a test. If this had been an actual blog post, lawyers would have sprung into action defending their right to keep their customers in the dark.
Its been fun, and I hope that I’ve helped or informed in some small way these many years. But its become clear that work policies and vender sensitivities dont allow for the type of blogging that I’d like to do. Stay safe out there.
On this date in 2004, I started this blog. In some ways it was about playing with the technology, first MovableType and later WordPress. In other ways its been a place to dump my brain with linked I wanted to remember. It became a place to talk about my experiences. Other people’s blogs and community …
Its been rather quiet on the blog for a while because of an unfortunate incident that occurred back in March. I never really believed I was anonymous. After all, the domain was originally registered publically rather than via a proxy, so it’s a simple matter to get my name and address. Nevertheless it is a bit disconcerting when …
WordPress 3.5.1 is out. This is a maintenance and security update. The security updates are for: ■ Server-side request forgery (SSRF) and remote port scanning via pingbacks. Fixed by the WordPress security team. ■ Cross-site scripting (XSS) via shortcodes and post content. Discovered by Jon Cave of the WordPress security team. ■ Cross-site scripting (XSS) …
Just a housekeeping note. For those of you who prefer to follow blogs via email instead of RSS feeds or via twitter, I’ve enabled that ability. If you’d like to do that, on the home page, on the right hand side, look under the “keeping up” section. I have a link for twitter, the rss …
WordPress 3.4.2 was released on September 6th. It contains security updates. I have installed the update on a couple of sites without issue.
One of the recommended security measures for WordPress is to change the default database prefix. When you use the default setting, hackers can more easily perform SQL injection attacks. The easy way to avoid this is to change the prefix before installing WordPress for the first time. If you forget to do this, you can either …