DISQUS

I suspect the demand for its use isn't there simply because most people's e-conversation are 1) not deemed sensitive enough to require privacy, 2) Average Joe isn't going to understand the concept of signing especially if you try and relate what private / public keys are, and 3) folks probably expect e-mail messages to be already private, just like they expect phone conversations to be so, even if they somehow know that phone lines can be tapped because unlike physical messages (such as on paper) you can't "see" network transmissions unless you've heard of the term "packet sniffer."

This kind of rolls into the same thing with PKI. Many browsers (until recently) didn't do automatic CRL checks. Almost all users blindly click "accept" when they see a server certificate that's self-signed or signed by an untrusted authority. One could argue the old "user education" rhetoric, but the average person's expectation of security is grossly over-simplified when it comes to things like this to make it practical, IMO.

My problem is that almost everyone I correspond with don't know what encryption is and wouldn't be bothered to use it even if they did. They probably figure that since their web-based mail interface is running with "the yellow lock icon," their messages are transmitted securely. Well, we know how that goes...

But would one have to think in Russian?

(10 points if you know which movie I got that from...)

Good stuff. I did a similar write-up, although it's mostly based on Server 2003 and it covered PEAP, EAP-TLS, and PEAP-TLS.

http://wicked-styles.com/bitsandpieces/articles...

I can somewhat see why Joe Average IT Guy might not understand your choice in OS X, but I'm surprised you'd be questioned by infosec types. I touch OS X myself sometimes, but I'm more Windows / Linux focused for my tools given the kind of work I do. That said, I personally wouldn't hesitate to use OS X as my platform if I did mostly security work.

If you have to justify your use of a particular platform to someone, I'm not sure if merely stating that x other security pros diong the same thing is going to make a convincing statement because it's still somewhat vague. Especially for people doing security, it's probably more helpful to understand exact reasons rather than "because a bunch of other folks doing the same work likes it." I do some minor "security" work and I know I prefer specific answers rather than broad, generalized references that really don't clarify anything.

Maybe it's also because many people have the image of over-zealous Apple fanboys in their heads.

These are two of my favorite variants of the original:

http://www.youtube.com/watch?v=3GJOVPjhXMY
http://www.youtube.com/watch?v=3lIDRGOHI1E

I think you're referring to a tactical reload where you release a mag that still has ammunition in it, catch it with the other hand while inserting a new one, and pocketing / holstering the old mag. A combat reload is where you drop the mag and insert a fresh one as soon as the old one is out of the well.

Or, at least this is what I remember from a defensive pistol course I took a while back.

Clip, or magazine?

You should check out engrish.com.

You should check out engrish.com.

I think I know what you mean, but for me it's the whole, "I keep my body in a highly natural / optimized state by digesting 'organic' and 'clean' foods because it makes me feel healthier and one with the Earth" subliminal message everytime I go there. Don't get me wrong, the food there is generally good (their produce tastes way better than what's at Safeway), but it also costs a nice penny or two more. That pisses me off.

I guess I'm just jealous that I'm not as financially comfortable as all those yuppies who shop there and seem to be able to afford it easier. Or something.

Excuse me while I go check the logs on my brain's IDS...

I think I know what you mean, but for me it's the whole, "I keep my body in a highly natural / optimized state by digesting 'organic' and 'clean' foods because it makes me feel healthier and one with the Earth" subliminal message everytime I go there. Don't get me wrong, the food there is generally good (their produce tastes way better than what's at Safeway), but it also costs a nice penny or two more. That pisses me off.

I guess I'm just jealous that I'm not as financially comfortable as all those yuppies who shop there and seem to be able to afford it easier. Or something.

Excuse me while I go check the logs on my brain's IDS...

I only quickly parsed through the article (I skipped a lot of it because I got the general idea)...

I have friends on both sides and it's interesting (but no longer surprising) that the various marketing campaigns have greatly influenced their attention. Lots of folks resolve their demons by exercising convenient, emotionally-based judgments rather than ones based on some degree of critical analysis. When you have common values skewing towards glamor self-image and lifestyle conveniences over hard work and the paying of dues to improve oneself, you inevitably end up with unskilled, undisciplined, and unmotivated grown-up kids who can't deal with the real world. A lot of people are completely unaware of the gears driving their behavior and actions underneath the hood.

Relying too much on your sense of smell to guide you in life is eventually going to lead you into a trap.

I only quickly parsed through the article (I skipped a lot of it because I got the general idea)...

I have friends on both sides and it's interesting (but no longer surprising) that the various marketing campaigns have greatly influenced their attention. Lots of folks resolve their demons by exercising convenient, emotionally-based judgments rather than ones based on some degree of critical analysis. When you have common values skewing towards glamor self-image and lifestyle conveniences over hard work and the paying of dues to improve oneself, you inevitably end up with unskilled, undisciplined, and unmotivated grown-up kids who can't deal with the real world. A lot of people are completely unaware of the gears driving their behavior and actions underneath the hood.

Relying too much on your sense of smell to guide you in life is eventually going to lead you into a trap.

Why even use VMware Server instead of ESXi? I tried VMware Server 2.0 when it was in alpha and it was horrible compared to 1.x. Of course, it was an alpha, and I could see how they're trying to make the management interface more like their Infrastructure offerings (VC, VIC), but I still thought it was bad.

ESXi, on the other hand, works quite well for free.

Why even use VMware Server instead of ESXi? I tried VMware Server 2.0 when it was in alpha and it was horrible compared to 1.x. Of course, it was an alpha, and I could see how they're trying to make the management interface more like their Infrastructure offerings (VC, VIC), but I still thought it was bad.

ESXi, on the other hand, works quite well for free.

Nice idea and I'd like to be optimistic and believe something like this could happen. But that said, political leaders (including those in Congress) also have to cater to the uninformed masses and their perceptions. While I'd like to hope we'd become much more efficient in assessing our real security risks and addressing the root causes of issues rather than just the symptoms, I fear that useless security theater will prevail for some time due to the general public's ingrained biases and dependencies on easy, emotionally-satisfying results rather than complex strategies that directly address the underlying problems.

Nice idea and I'd like to be optimistic and believe something like this could happen. But that said, political leaders (including those in Congress) also have to cater to the uninformed masses and their perceptions. While I'd like to hope we'd become much more efficient in assessing our real security risks and addressing the root causes of issues rather than just the symptoms, I fear that useless security theater will prevail for some time due to the general public's ingrained biases and dependencies on easy, emotionally-satisfying results rather than complex strategies that directly address the underlying problems.

There's an older book called the Universal Command Guide which did the same thing. It doesn't seem like a newer edition is out though with more recent *nix info:

http://www.amazon.com/Universal-Command-Guide-Operating-Systems/dp/0764548336/ref=pdbbssr_1?ie=UTF8&s=books&qid=1225131802&sr=8-1

There's an older book called the Universal Command Guide which did the same thing. It doesn't seem like a newer edition is out though with more recent *nix info:

http://www.amazon.com/Universal-Command-Guide-Operating-Systems/dp/0764548336/ref=pdbbssr_1?ie=UTF8&s=books&qid=1225131802&sr=8-1

For extra credit, add the NPS / RRAS roles and set up an SSTP server. Watch out for the CDP nitpicks (at least, that's where I ran into issues with the client did the CRL check). What's the OpenBSD box for?

For extra credit, add the NPS / RRAS roles and set up an SSTP server. Watch out for the CDP nitpicks (at least, that's where I ran into issues with the client did the CRL check). What's the OpenBSD box for?

It's what happens when you stare at monitors one too many hours, a mistake I made a couple of decades ago with TV. I'm at the same age you're at and I'd better get on the LASIK pretty soon.

It's what happens when you stare at monitors one too many hours, a mistake I made a couple of decades ago with TV. I'm at the same age you're at and I'd better get on the LASIK pretty soon.

That was one of the best parts of his "Life is Worth Losing" album. Smart guy - he saw how it all works since he apparently lived outside of the human continuum, or something like that. R.I.P., George.