I wish I had some mod points to mod parent up. I would also suggest they remove the bureaucracy involved in the C&A and pen testing phases. Anyone who's ever been a part of the process can clearly see what little value is added against APT.
ESX-I ftw. Ignore any recommendations for VM Player/Workstation, you'll lose a lot of resources to system operating system over head. I built a ESX-i server for less than $200 bucks 16GB of ram with Phenom II 945. This included 3TB of storage and an Antec case. On this set up I virtualize 45-50 OS's simultaneously with no problems.
The notion of having a single point of failure "security" device contradicts one of the primary foundations of security principle: Defense In Depth.
Multiple layers of security is essential in safe guarding your systems, placing them all one one unit is nothing short of moronic.
As a security engineer(CISSP&CSSLP) with several years of experience in C&A and pen testing, I must say that the results aren't a surprise by any means.
What I DO find disturbing is the amount of detail provided in a public report given the fact that the FAA has yet to fully apply it's remediation strategies for the vulnerabilities identified.
Is there any info as to what tools they used for app testing? My experience shows that tools such as App Detective and Web Inspect actually inflate the number of findings. This is due to the fact that the applications identify vulnerabilities by instance and not by category/type.
If you already have a data plan for your mobile phone then give this application a try: http://www.wmwifirouter.com/
It will turn your cell phone into a Access point. I use this application all the time when i'm on the road or when my connection goes down at home.
"So we are to understand that dark matter, acted on only by gravity, forms sheets and filaments? We know very well what shapes distributions of particles form over time with only gravity acting on them and they look a lot like galaxies and very little like sheets and filaments. Can anyone clear this up for me?"
It's fairly simple to explain, the darker the matter--> the sweeter the juice.
I'm not a Microsoft fanboy by any means, but has anyone considered the possibility that the forced update could be due to a unknown critical exploit in WU?
You worked as a recruiter. So were you the one who hired the guy who said hes good with an AXE to administer the companys AIX system? My experience is that recruiters are some of the dumbest people in the industry and ex recruiters with no jobs sitting at home and posting on/. are dumber still I worked as a recruiter immediately out of college while waiting for my clearance to go through. I can attest that majority of your technical recruiters aren't exactly tech savvy in comparison to the rest of us, but there is a reason for that. If they were technically inclined enough to actually be in the IT workforce then they would. To be a technical recruiter requires a different skill set that the majority of IT individuals do not posses (people skills etc).
So to answer your question, no I was not that tech recruiter...I have my CISSP and I work as an information security engineer. In response to your assumption that I'm a stupid unemployed ex recruiter posting on/. only further proves your ignorance.
If I were to make a rude assumption without any basis such as yourself, I would look at the fact that you posted at 2 a.m. and seemed quite hostile...thus concluding that you're an out of work recent college grad who is pissed off at the world.
Good day
Microsoft is also a fond supporter of H1B visa immigrants http://en.wikipedia.org/wiki/H1B_visa/
From my own personal experience working as an IT recruiter in the past, H1B Java Developers with similar education and experience often would work for about 30% less than a US citizen.
Just imagine...'Sailing high above Uranus and seeing the Uranus rings spread out beneath us like a giant, copper medallion is like exploring an alien world we've never seen before. It just doesn't look like the same place. It's so utterly breath-taking, it almost gives you vertigo.'
commonsense (km'n-sns')adj.
Having or exhibiting native good judgment: "commonsense scholarship on the foibles and oversights of a genius" (Times Literary Supplement).
Slashdot Mirror
I wish I had some mod points to mod parent up. I would also suggest they remove the bureaucracy involved in the C&A and pen testing phases. Anyone who's ever been a part of the process can clearly see what little value is added against APT.
I guess those 9 year old kids in China took the term jail break....literally.
The real offence here is horrible taste in music!
ESX-I ftw. Ignore any recommendations for VM Player/Workstation, you'll lose a lot of resources to system operating system over head. I built a ESX-i server for less than $200 bucks 16GB of ram with Phenom II 945. This included 3TB of storage and an Antec case. On this set up I virtualize 45-50 OS's simultaneously with no problems.
why didn't they just encrypt the disks? If it's supposed to be sensitive information, store it securely!
Because that would require common sense and competence.
The notion of having a single point of failure "security" device contradicts one of the primary foundations of security principle: Defense In Depth. Multiple layers of security is essential in safe guarding your systems, placing them all one one unit is nothing short of moronic.
We'll get Chuck from the Nerd Herd and he can "flash" 'em.
The fear of being subjected to pasty hairy man boobs just might get the operations team at the FAA to get off their asses and do their job.
As a security engineer(CISSP&CSSLP) with several years of experience in C&A and pen testing, I must say that the results aren't a surprise by any means. What I DO find disturbing is the amount of detail provided in a public report given the fact that the FAA has yet to fully apply it's remediation strategies for the vulnerabilities identified. Is there any info as to what tools they used for app testing? My experience shows that tools such as App Detective and Web Inspect actually inflate the number of findings. This is due to the fact that the applications identify vulnerabilities by instance and not by category/type.
If you already have a data plan for your mobile phone then give this application a try: http://www.wmwifirouter.com/ It will turn your cell phone into a Access point. I use this application all the time when i'm on the road or when my connection goes down at home.
that I found this article to be quite *enlightening* I need to go to bed.
couldn't figure out why the darn thing kept blowing itself up....
"So we are to understand that dark matter, acted on only by gravity, forms sheets and filaments? We know very well what shapes distributions of particles form over time with only gravity acting on them and they look a lot like galaxies and very little like sheets and filaments. Can anyone clear this up for me?" It's fairly simple to explain, the darker the matter--> the sweeter the juice.
"The filter is so effective that it can purify dirty river water and even fecal matter."
Absolutely if the Identification-->Authentication-->Validation process required to do is bypassed or circumvented.
I'm not a Microsoft fanboy by any means, but has anyone considered the possibility that the forced update could be due to a unknown critical exploit in WU?
Is a dog like Astro and I'll be all set!
Sorry, it's really late/early...I just couldn't resist.
I wonder if Mr. Gates foresaw that one coming!
PSSSSH whats next??! Soon they'll want wages, and voting rights! We all saw the ramifications of this when we granted the above mentioned to women!
Someone get Will Smith, Jeff Goldblum, and a Mac ASAP!!
Microsoft is also a fond supporter of H1B visa immigrants http://en.wikipedia.org/wiki/H1B_visa/ From my own personal experience working as an IT recruiter in the past, H1B Java Developers with similar education and experience often would work for about 30% less than a US citizen.
\waves hand *You will over pay for this Cloak*
Just imagine...'Sailing high above Uranus and seeing the Uranus rings spread out beneath us like a giant, copper medallion is like exploring an alien world we've never seen before. It just doesn't look like the same place. It's so utterly breath-taking, it almost gives you vertigo.'
commonsense (km'n-sns')adj.
Having or exhibiting native good judgment: "commonsense scholarship on the foibles and oversights of a genius" (Times Literary Supplement).
Synonyms: astute, businesslike, commonsense, down-to-earth, earthy, hard, hard-boiled*, level-headed, matter-of-fact, practical, pragmatic, pragmatical, prudent, rational, real, reasonable, sane, sensible, shrewd, sober, sound, unfantastic, unidealistic, unromantic, unsentimental, utilitarian
Antonyms: "Commonsense Homeland Security"