SEARCH RESULTS
 
Showing 1-10 of 15 records
 
Expand article

The Oracle speaks

2008-05-07 19:55:42 by HASH0x8472728 in StillSecure, After All These Years
 
...assign a VLAN via RADIUS attributes, you can assign ACLs for that port in addition to assigning a VLAN. This is great if you have the right switches. It helps protect the other endpoints within a quarantine VLAN and adds an extra layer of security. Cisco switches do not have this capability unless youre running Cisco NAC and a Cisco ACS...
 
Tags: stillsecure safe access, safe access, slow nap adoption, nap, cisco switches, switches, dave, acls, cisco nac
 
 
 
 
Expand article

Ask the Auditor: Who is Responsible for Information Security?

2007-12-29 06:24:50 by Editor in Security Links
 
...assign information security responsibilities to an information security management function, all parts of the organization have information security responsibilities. Security goals include a mixture of technical, procedural, and oversight controls, all of which should be reviewed or tested to ensure they are (a) adequate, as defined to...
 
Tags: information, information security, information policy, information security risks, information assurance, information security governance, information security managers, information security management, assign information security
 
 
 
 
Expand article

Setting file ACLs with PowerShell part 4

2007-11-29 09:34:00 by Keith Brown in Security Briefs
 
...assigned a value. Here's an example a = 42 [Int32] $b = 42 $a = "this works just fine" $b = "this generates an invalid cast exception This syntax allows you to create type-constrained variables. Now when I assign an object to $b, PowerShell will first try to cast that object to System.Int32 (you could also have used "int", by the way). The...
 
Tags: values, invalid enumeration values, enumeration, enumeration values, new-object security, object, powershell, invalid cast exception, cast
 
 
 
 
Expand article

Would armed security officers in Omaha have saved lives?

The Article has images
2007-12-11 00:17:00 by John Sexton in The Bullet Proof Blog
...assign a Police Officer to watch every entrance, you would need more than 250,000 Police Officers to report for duty on the first day That does not even take into account the number that would be needed to relieve officers on sick leave, admin leave, vacation, promotion, etc. Does anybody really think that we will have a 400,000 strong...
 
Tags: officer, female security officer, security, security officers, police, police officers, police officer, security officer, mall
 
 
 
 
Expand article

"Crawling" Toward SDL

2008-03-06 22:13:00 by sdl in The Security Development Lifecycle
 
...assign someone to do a retrospective model (perhaps as part of a pre-release review). This will likely give you a better understanding of your overall architecture and uncover holes in places you may have inadvertently overlooked Tools that will perform security analysis on your application This is probably one of the most often discussed...
 
Tags: sdl, security, perform security analysis, application security, application, applications security, security issues, issues, non-microsoft sdl engagements
 
 
 
 
Expand article

SDL and Filtering

2008-03-13 15:00:00 by sdl in The Security Development Lifecycle
 
...assign a person from each discipline in their team to identify which SDL requirements need to be met and at what point in the product cycle. A program manager can now more easily identify the SDL requirements that need to be thought about and met during the Requirements phase of a product, and likewise a test engineer can identify and begin...
 
Tags: sdl, sdl requirements, product cycle, product, product team, sdl team, product type, type, code type
 
 
 
 
Expand article

Banning function calls, assurance, and retrofitting

2008-03-18 19:48:00 by Security Retentive in Security Retentive
 
...assign work to different people when it comes in, or randomly pull an item off a work queue for a customer service agent. None of these cases requires a cryptographically sound random number generator. For the most part, using rand() is a perfectly reasonable choice in this sort of situation When you decide that you want to ban certain...
 
Tags: code review experience, code, security sensitive context, context, security critical context, unsafe context, static analyzer, file defects, rand
 
 
 
 
Expand article

Xecrets: Access your passwords anytime, anywhere

2008-05-13 07:44:42 by Editor in Adventures in Security
 
...assign a unique password to each application, site, or device. Without a password vault to safely manage the growing number of logins, I'd have to regularly click the 'Forgot your password?' link. However, there are still times when I forget to drop my flash drive in my bag. In those cases, I either have to change many of my passwords or wait...
 
Tags: password, unique password, password manager file, password vault, regularly click, passwords, access, flash drive, safely manage
 
 
 
 
Expand article

Communicating about risk - part 2

The Article has images
2008-05-20 16:22:24 by JonesJ in RiskAnalys.is
...assigned to each qualitative label (e.g., Very High = 90% to 100% probable ). And, while this seems to be on the right track, there are two problems with it It often doesnt include a timeframe reference. In other words, does the likelihood statement refer to the probability of the event occurring this week, this year, in this lifetime It...
 
Tags: risk, managements risk tolerance, enterprise risk tolerance, risk tolerance, likelihood, risk analysis, likelihood connotes, lines, likelihood statement refer
 
 
 
 
Expand article

Sophos feeds Tim Greene a line of bull on virtual NAC

<