Tuesday, March 04, 2008 5:38 PM/EST
My colleague Michael Vizard covered Cisco's announcement of the ASR 1000 at CeBIT. I'm anxious to get a look at Cisco's new ASR 1000 Series Aggregation Services Router with Cisco IOS XE. The platform is supposed to be able to offer high availability for IPsec VPN, firewall services, NetFlow event logging, and DDoS detection and mitigation without stopping. Like I said, very interesting and I'm looking forward to getting a look at the device. In the meantime, poking around on Cisco's site yielded this gem for IT managers: a significant change in Cisco's maintenance policy for IOS XE. In the Cisco IOS XE Software End-of-Life Strategy document Cisco will start releasing IOS XE software every four months instead of waiting for a feature queue to fill as is the case for IOS. The good news is that this means network managers will be able to schedule maintenance on a predictable...
Thursday, December 06, 2007 3:16 PM/EST
At a recent speaking engagement about PCI and SOX compliance, I asked the audience to get out their wallets and pull out their credit cards. Then I asked them to hand the card to the person on their right. Everyone got out their wallet. Nobody would hand over the card. The point of the exercise was to get everyone thinking about PCI (Payment Card Industry-Data Security Standard) in a personal way. You can read more about my take on PCI and SOX compliance in my article. The event was our Security Summit 2007....
Thursday, August 30, 2007 7:01 PM/EST
I have access to the best commercial security test tools in the market including Mu Security's Security Analyzer and Core Security Technologies Core Impact. For a long time, however I've been a fan of open source security tool kits including STD. A couple days ago I became aware of Backtrack 2 when I was thumbing through one of the stacks of computer security books sitting on my bookshelf. (The book is Penetration Tester's Open Source Toolkit and you can read Richard Bejtlich damning and very informative review here (you have to scroll down a bit to get to Richard's post, but read some of the other reviews to get the full flavor of his American Idol reference.) But, I digress. I'm working my way through Backtrack2 in my lab testing, so I'll start at the top and say this looks like an excellent collection of no cost, penetration test tools....
