Disqus - Latest Comments for edsmiley

Re: Windows 7 and XP Mode (XPM)

edsmiley — Tue, 05 May 2009 11:27:44 -0000

Hey Tim,

Thanks for the comment. I think the difference between this and boot camp is that Boot Camp boots Windows XP itself and does not run within an operating system. However, I guess you have the same type of thing when you run VMware fusion on your mac, you still need to patch the machine.

However, what I can see from this is that it will always be running in the background. From the Within Windows link it says "XPM does not require you to run the virtual environment as a separate Windows desktop. Instead, as you install applications inside the virtual XP environment, they are published to the host (Windows 7) OS as well. (With shortcuts placed in the Start Menu.)" So this might be an out of sight, out of mind type of mentality. Will the virtual XP be annoying and yell patch me! patch me! like a regular installation?

Thanks Tim for the intriguing comment,
Ed

Re: Calling all forensics experts!

edsmiley — Sun, 12 Apr 2009 09:14:48 -0000

@H. Carvey: Thanks for the response. I would love to hear more about this background that few see. Perhaps a series of blog posts would be in order?

The root of my question that I kinda mention in the reply to Dave is that "the industry" always throw around this magically number (usually $200) for each compromised record. When you are talking thousands of records, to me it would be worth it to use every means possible to see if this data was accessed and (hopefully) prove it was not. I guess it is up to the company as Dave points out but are things ever done this way? How would you be able to successfully prove that the data was not accessed in a court of law?

Great stuff guys! Thanks again!
Ed

Re: Calling all forensics experts!

edsmiley — Sun, 12 Apr 2009 09:04:06 -0000

@davehull Thanks for the reply. It adds a different realm of thinking to the statements. I see how the words are cleverly crafted with worlds like unauthorized individuals. It might be hard to tell whether authorized or unauthorized individuals accessed it.

Companies have done SSN conversions years ago but still many of them have PII squirreled away in old databases and spreadsheets. However, I am sure a lot of them have never been touched in years and were only kept by that person who is the pack rat and afraid to delete anything. Would situations like this be easier to forensically tell if they were accessed or not?

Thanks again for the comments!

Re: 2 Kindle or Not(ebook) 2 Kindle

edsmiley — Sat, 07 Mar 2009 14:43:27 -0000

I am also curious about the 2700+ feeds you read. My biggest question is how do you deal with duplicates? I have like 150 feeds and seeing post after post of the same thing makes me skip through posts quickly and I am sure miss a lot of information. Have any tips? Maybe another blog post. :-)

Ed

Re: 2 Kindle or Not(ebook) 2 Kindle

edsmiley — Fri, 06 Mar 2009 20:11:40 -0000

Can you even send a PDF to the Iphone app without owning a Kindle. Apparently your Kindle is assigned an email address and this is what you would send the pdf to. However, I see no email address associated with the app. Was looking forward seeing how a PDF looked. Would be nice for manuals while in the server room or at a users desk.

Ed

Re: 2 Kindle or Not(ebook) 2 Kindle

edsmiley — Thu, 05 Mar 2009 17:06:35 -0000

I am on the fence like you. What I am looking to do is to get a Safari Bookshelf subscription to have 'all you can eat' Oreilly books. I know that this works on the Iphone and supposedly on the Kindle, but I wonder how well. I activated a free trial of a Oreilly Book and it is readable on the Iphone, not as nice as the Kindle app, but readable. So that is my dilemma.

I am curious as to how well converted PDF's look on the Iphone Kindle app. I don't really think I mind the 10 cents/pdf, but the pay for free blogs is kinda outrageous. Have you converted any PDF's and read them on the Iphone yet?

The Kindle app on the Iphone really made the pendulum swing towards not getting a Kindle because I have my Iphone EVERYWHERE I go. Although the screen is much nicer on the Kindle, still another item to carry around. Instead, I might be looking at a Lenovo IdeaPad S10 instead and saving some coin. :)

Ed

Re: Twitter’s New Account Protections

edsmiley — Wed, 14 Jan 2009 20:27:02 -0000

Hey Chris,

To add to the oddity, I did the same steps as you but tried Twitterific on my Iphone and it authenticated and allowed me to post. Went back to the site, still locked out. Very odd indeed.

Ed

Re: SecuraByte Episode 05 Happiness, Fail Whale beaches Itself!!!

edsmiley — Fri, 09 Jan 2009 00:16:06 -0000

Very interesting post from Richard Stiennon on his prediction of pretty much this very event last November. Perhaps this 'hacker' followed this as a recipe. :-)

http://threatchaos.com/2009/01/twitter-hack-pre...

Re: Securabit Episode 17 for xmass Santa gave us an Nmap book to give away!!!

edsmiley — Fri, 09 Jan 2009 00:06:42 -0000

You guys were talking about the SANS 508 course. Here is the site that has a cheat sheet and the toolkit workstation vmware download.

http://forensics.sans.org/community/downloads/

Re: Bookmarks for December 26th through January 6th

edsmiley — Wed, 07 Jan 2009 11:14:00 -0000

Thanks Matt! Love your blog BTW. Lots of great tips for us sys admins.

Re: Palin Yahoo Email Hacked

edsmiley — Wed, 17 Sep 2008 18:24:51 -0000

I have found that the wikileaks site comes and goes. This link might work better:

http://wikileaks.org/wiki/VP_contender_Sarah_Pa...

Re: SecuraNibble: Snort Sensor Tutorial

edsmiley — Tue, 16 Sep 2008 21:58:29 -0000

Superb screencast Chris!!! Looking forward to seeing more of these.

Ed

Re: Bookmarks for August 30th through September 5th

edsmiley — Sun, 07 Sep 2008 23:52:11 -0000

Disqus test