Archive for May, 2008

Google Streetview Goodness

May 21, 2008

Update 06.26.2008- Google removed the hilarity from the streetview image, so this post is now old and busted…

This isn’t in any way, shape, or form security related. I was sent this link when I logged in at work this morning, and couldn’t pass up sharing it. (I LOVE Chicago…)

Google Streetview Goodness

Tiny URL in case the above doesn’t work


PCI 6.6 Webinar *TOMORROW*

May 20, 2008

For those interested- I will be speaking in a webinar tomorrow on PCI Requirement 6.6. My portion will be agnostic, focused on what 6.6 seeks, what activities will be required, and how to prove your process is working. The second half will be an unapologetic discussion on how WhiteHat Sentinel Service simplifies PCI Requirement 6.6.

If you would like to attend, the event is (tomorrow) Wednesday, May 21st at 11:00 AM PT (2:00 PM ET) sign up here.

For other background reading, check my prior 6.6 briefing, and the article in SC Magazine.

Put logs to work for you!

May 14, 2008

Auditing logs really stinks… the QSA’s out there attack a variety of sensitive touch points, and logging is a really tough one to both audit and review properly.

Raffy and the Splunk team have released some new PCI hotness where they make the log requirements 10.6 easily attainable.  If you haven’t heard of them, I would encourage you to check them out!