Archives
- 2009.01.01: SANS 504 Mentor
- 2008.12.18: SOURCE Boston
- 2008.12.17: Making the world a little better
- 2008.12.05: Rogue DHCP servers cause perceived service outages
- 2008.11.25: Security lab environment ftw
- 2008.11.19: Creating a Certificate Authority with OpenSSL
- 2008.11.12: Risk Management presentation by Dr. Peter Tippett
- 2008.10.31: CISM
- 2008.10.29: Tips for getting started in information security
- 2008.10.27: Coding a buffer overflow exploit in a deliberatly vulnerable application
- 2008.10.22: Red Flag Compliance postponed for FTC-covered entities
- 2008.10.20: Taking up research again?
- 2008.10.20: Security 504: SANS Hacker Techniques, Exploits and Incident Handling
- 2008.10.14: Reconnaissance: don't post what you don't want found
- 2008.10.12: Apocalyptic Vulnerability Percentages - FUD 101
- 2008.10.10: The psychology of access control
- 2008.10.07: Into the breach
- 2008.10.05: Reliable Security
- 2008.10.03: FIRST Liaison
- 2008.10.03: New York Information Security Community
- 2008.09.30: The 10 Most Mysterious Cyber Crimes
- 2008.09.27: Phishing season opened
- 2008.09.22: tcp/32709 solved?
- 2008.09.15: TED talk Peter Hirshberg: The Web and TV, a sibling rivalry
- 2008.09.15: Patching users
- 2008.09.15: Surge in portscanning for tcp/32709
- 2008.09.04: Wisdom from Randy Pausch
- 2008.09.03: Google Chrome
- 2008.08.31: Writing code is easy, writing good code is hard
- 2008.08.28: SANS Mentor update
- 2008.08.26: Social Engineering 101
- 2008.08.25: Looking forward to learning again
- 2008.08.20: Back to school
- 2008.08.18: Prof. Bartlett's lecture on growth
- 2008.08.17: SANS Mentor SEC 504 in Long Island, NY
- 2008.08.11: Defcon
- 2008.08.09: Defcon day 1
- 2008.08.04: DefCon PC Hardening
- 2008.08.01: Teenage bot herder arrested in Netherlands
- 2008.07.31: Verizon's DNS attack scenarios
- 2008.07.29: 30 Days of DNS attack activity
- 2008.07.28: Passed my CISM
- 2008.07.25: The Metasploit DNS vulnerability exploit
- 2008.07.25: De-ice.net pentesting live CD's
- 2008.07.24: Going to defcon after all
- 2008.07.21: DNS vulnerability in the wild
- 2008.07.20: To be written...
- 2008.07.18: The Last HOPE, day 1
- 2008.07.17: The Last HOPE device preparations
- 2008.07.16: The Last HOPE 2008
- 2008.07.14: Confirmation bias
- 2008.07.09: DNS vulnerability
- 2008.07.08: GIAC Certified
- 2008.07.01: Security vendors
- 2008.06.27: URL shortening services
- 2008.06.25: Information Security Research
- 2008.06.24: China hosts malware
- 2008.06.20: Information Security at Colleges and Universities
- 2008.06.20: Law Enforcement
- 2008.06.16: Confidential Information Handling Policy
- 2008.06.12: Information Security in three steps
- 2008.06.10: Maintaining appropriate documentation
- 2008.06.09: Sending clear text sensitive information
- 2008.06.04: Essential Truths in Information Security: Be Reliable and Trustworthy
- 2008.06.02: The value of documentation in incident response
- 2008.05.31: Separation of duties is a tool, not a goal
- 2008.05.30: Mobility Changes (Almost) Everything!
- 2008.05.29: Essential Truths in Information Security: Better is worse than good enough
- 2008.05.23: Essential Truths in Information Security: Execute with precision and excellence
- 2008.05.21: "Security": Whose Responsibility?
- 2008.05.20: Telephone phish
- 2008.05.19: Essential Truths in Information Security: Never say "no"
- 2008.05.17: Flying long distance
- 2008.05.16: Essential Truths in Information Security: Perception is Reality
- 2008.05.13: Security through obscurity
- 2008.05.08: Essential Truths in Information Security: Understand what you protect
- 2008.05.07: EDUCAUSE/Internet2 Security Professionals Conference
- 2008.05.02: Off to EDUCAUSE/Internet Security Professionals
- 2008.04.29: EDUCAUSE/Internet2 Security Professionals Conference
- 2008.04.28: Trust, but verify
- 2008.04.28: Information security framework
- 2008.04.28: Embedded intelligence
- 2008.04.27: Setting account expiration in Windows XP
- 2008.04.24: Be careful with what you leave behind
- 2008.04.23: Vulnerability notifications?
- 2008.04.21: Protection does not equal prevention
- 2008.04.18: Some students get it...
- 2008.04.14: Planning for failure
- 2008.04.12: A new type of nomads...
- 2008.04.11: Code review can only do so much...
- 2008.04.10: Taking notes
- 2008.04.07: Incident Management
- 2008.04.05: Capture the flag is fun!
- 2008.04.03: Ethics
- 2008.03.27: Information security vs. Flying an airplane
- 2008.03.27: Malware targeting crypto keys
- 2008.03.27: Teaching Computer Security
- 2008.03.24: Why Hacking Changed
- 2008.03.22: Information Classification
- 2008.03.21: Hacking Movable Type to get ScribeFire to work
- 2008.03.19: NYMISSA: Ethical Hacking
- 2008.03.18: SANS Security 504: Hacker Techniques, Exploits and Incident Handling
- 2008.03.14: Adam on...
- 2008.03.12: Spam
- 2008.03.11: Hate/love relationship with vendors
- 2008.03.11: Carnival of the Security Catalysts Community for 03/11/08
- 2008.03.10: Safety vs. Security
- 2008.03.06: Educause Security Professionals Conference
- 2008.03.04: On policy writing
- 2008.02.29: Sometimes I need to remind myself...
- 2008.02.23: Hard disk encryption hack: ISC got it right
- 2008.02.21: Passwords are the root of all evil
- 2008.02.19: Soldering station?
- 2008.02.18: Polytechnic ISIS blogs
- 2008.02.17: Knight Rider
- 2008.02.16: Long Island Information Security Forum
- 2008.02.11: Educause Security08
- 2008.02.06: Better is worse than good enough
- 2008.02.06: Phising attacks and user awareness
- 2008.02.04: Yet another cable damaged...
- 2008.02.04: Botnet hunting
- 2008.02.01: Becoming a Security Expert
- 2008.02.01: Microsoft wants to by Yahoo!?!
- 2008.01.31: It Sounded Good When We Started; A Project Manager's Guide to Working with People on Projects
- 2008.01.31: 11 Truths the security industry hates to admit
- 2008.01.30: InfoSec Threat Horizons: 2008 - 2010
- 2008.01.29: Fraud, Privilege, and the Insider Threat
- 2008.01.29: Information security management
- 2008.01.23: Identity
- 2008.01.23: Roles and Responsibilities in Information Security
- 2008.01.18: Article on a hypothetical WiFi worm
- 2008.01.14: Fake profiles on Facebook
- 2008.01.11: Pragmatic CSO podcast #1
- 2008.01.10: Establishing an incident response team
- 2008.01.08: Large amount of web sites compromised. Where is the ISC?
- 2008.01.04: Policy development
- 2008.01.02: Information Security-- A strategic approach
- 2008.01.02: Loss of power
- 2008.01.01: Happy New Year!
- 2007.12.18: Locutus: wake up :)
- 2007.12.17: Partner access: Balancing security and availability
- 2007.12.13: Toaster hacks computer (I kid you not)
- 2007.12.12: Security and SME's
- 2007.11.28: On policy writing
- 2007.11.28: Anti-Phishing Phil
- 2007.11.26: Hire fewer better programmers, more testers, top architects.
- 2007.11.21: Happy Thanksgiving
- 2007.11.16: Insightful article on password policies
- 2007.11.06: 0x000000 Security password experiment
- 2007.10.08: Temporary Lack of Posting
- 2007.10.05: A glimpse of the future
- 2007.10.02: FBI at risk for internal espionage
- 2007.09.27: A new blog
- 2007.09.24: Computer Forensics: Recovering CD-RW contents
- 2007.09.23: TJX Stock Recovered From Breach; Web Site Still Vulnerable
- 2007.09.19: Gartner thinks that too much is spent on IT security
- 2007.09.18: Security Catalyst
- 2007.09.13: Report on the Sourcefire briefing
- 2007.09.10: Sourcefire event in Amsterdam
- 2007.09.06: The importance of logging for forensics investigations
- 2007.09.04: On IT Auditors...
- 2007.08.31: Developing secure web applications
- 2007.08.30: FBI Wire tapping systems
- 2007.08.29: VMWare Server on Ubuntu Linux
- 2007.08.27: Harvard Business Review Case Study On A Fictional Data Breach
- 2007.08.27: Interesting security position...
- 2007.08.24: Intrusion report at fark.com
- 2007.08.22: Microsoft Security Response Center (MSRC)
- 2007.08.22: Gartner on Security and Risk Management
- 2007.08.18: Even port scanners are boring...
- 2007.08.17: Storm botnet fighting back
- 2007.08.16: Web site maintenance
- 2007.08.16: Reporting phishing to eBay? Don't email abuse....
- 2007.08.15: MS Patches: Input validation and virtualization
- 2007.08.10: I want to go too!
- 2007.08.08: Thoughts on Information Security
- 2007.08.05: Michael Farnum quits...
- 2007.07.31: Moved to rimuhosting
- 2007.07.27: It is calm at work...
- 2007.07.05: Certified Information Systems Auditor Study Guide
- 2007.07.03: Daemon
- 2007.07.03: Security Metrics
- 2007.06.27: Global Economy at work
- 2007.06.26: Terrorism in perspective
- 2007.06.25: If Architects Had To Work Like Web Designers
- 2007.06.23: Addicting
- 2007.06.19: Computing problems
- 2007.06.12: Catching a fly.
- 2007.06.07: Upgrade to Movable Type 4 (beta)
- 2007.05.28: VoIP service
- 2007.05.22: USB TV Card
- 2007.05.19: Personality Types
- 2007.05.13: Moved to Movable Type
- 2007.05.09: Moving to Movabletype?
- 2007.05.09: Amazon.com wish lists updated
- 2007.05.07: Google reader
- 2007.04.30: Optical illusions
- 2007.04.08: Happy Easter
- 2007.03.04: Website moved to another server
- 2007.03.02: The day after....
- 2007.02.28: PhD awarded -- Proefschrift verdedigd
- 2007.02.27: Route naar de Universiteit
- 2007.02.25: Access Control and Service-Oriented Architectures
- 2007.02.21: Listening and reading is an art...
- 2007.02.20: Cisco documentation
- 2007.02.04: Centralized logging and audit of Windows-based servers and network devices.
- 2007.01.28: PhD thesis printed
- 2007.01.22: What makes a security incident?
- 2007.01.22: Your first Amazon.com purchase
- 2007.01.07: Thesis proofs ready
- 2006.12.24: Best wishes!
- 2006.12.16: Thesis
- 2006.10.30: Regaining control
- 2006.10.25: Social engineering
- 2006.10.16: Whoops....
- 2006.10.04: Verdonk
- 2006.10.01: Moving house (2),...
- 2006.10.01: Moving house,...
- 2006.09.28: News aggregator
- 2006.08.21: Sociological research study on fortresses Liefkenshoek and Lillo in the period 1585-1786
- 2006.08.14: New vulnerability in Windows
- 2006.08.14: Fresh chicken nuggets?
- 2006.08.08: Printer security
- 2006.07.24: Hosting?
- 2006.07.22: Hot, hot, hot and new job
- 2006.06.29: Presentation at FIRST 2006
- 2006.06.27: US Schools ban tag and soccer...
- 2006.06.19: Back from Switzerland
- 2006.06.07: Handling large volumes of email on a list
- 2006.06.05: Gone Geocaching
- 2006.06.05: Gone Geocaching
- 2006.05.18: Things going on...
- 2006.04.14: Google calendar
- 2006.04.05: Expert
- 2006.04.05: Formal education
- 2006.03.31: Programmer vs. coder
- 2006.03.18: Just a few thoughts I had today
- 2006.03.12: Fear of $topic_du_jour
- 2006.03.09: Site downtime
- 2006.03.07: What are your six sites?
- 2006.03.01: What do I want to be when I grow up?
- 2006.03.01: What do I want to be when I grow up?
- 2006.02.22: Dijkstra
- 2006.02.20: Re: Procrastrination
- 2006.02.13: Education vs. Training
- 2006.02.13: VMware giving away their server product
- 2006.02.12: Nice Slogan...
- 2006.02.08: New theme
- 2006.02.07: Google chat
- 2006.02.07: Google chat
- 2006.02.02: Proven technology
- 2006.02.01: AIRT at FIRST 2006
- 2006.02.01: Some snow
- 2006.01.27: So quiet,....
- 2006.01.27: On Darknets...
- 2006.01.27: Technorati
- 2006.01.27: Trackbacks switched on again
- 2006.01.27: Irritating ring tones
- 2006.01.19: Opening pages in Firefox by pasting a URL
- 2006.01.17: Do not speed in South Carolina
- 2006.01.15: Welcome to the South!
- 2005.12.21: Globetrotter
- 2005.10.30: Daylight savings
- 2005.10.09: The Internet is Shit
- 2005.10.04: Security lecture
- 2005.09.30: www.leune.com
- 2005.09.30: Feeling old
- 2005.09.28: Security lecture
- 2005.09.22: Removing red eye with Gimp
- 2005.09.22: Video editing with Debian GNU/Linux
- 2005.09.22: Botnets
- 2005.09.22: The Internet is Shit
- 2005.09.17: Temporary lapse of reason
- 2005.09.17: Re: Yay! The Once a Year Repave
- 2005.09.16: Friggin' Windows
- 2005.09.11: In the zone...
- 2005.09.11: More warning labels....
- 2005.09.09: Car seat
- 2005.08.31: Running Microsoft Windows XP without services
- 2005.08.23: Re: Biculturalism
- 2005.08.23: There is always room for coffee
- 2005.08.10: Optimus keyboard
- 2005.07.29: Windows XP Lesson 1 and VMWare Workstation Lesson 1
- 2005.07.28: Is the Internet getting safer?
- 2005.07.28: 2005 FBI CSI Report
- 2005.07.28: I don't understand it
- 2005.07.28: Re: remote desktop
- 2005.07.26: Windows XP Lesson 1 and VMWare Workstation Lesson 1
- 2005.07.26: Windows XP Lesson 1 and VMWare Workstation Lesson 1
- 2005.07.18: House under attack?
- 2005.06.20: Netherlands Air Force Open Days
- 2005.06.16: Bigger is not always better!
- 2005.06.16: Re: Is writing software for Windows just too damn hard?
- 2005.06.08: RSS Reader: stand-alone, integrated in mail client or web browser, or fully web based?
- 2005.05.26: Downgrading Debian GNU/Linux from unstable to testing
- 2005.05.19: Digitally signing messages with GnuPG from a PHP script
- 2005.05.19: Google rocks!
- 2005.05.19: Enterprise discontinued...
- 2005.05.17: Planting day
- 2005.04.16: Applied quantitative research
- 2005.04.15: Filed an intent to package of the PHP Pear RSS module with Debian
- 2005.04.08: Snow in March
- 2005.04.08: A valuable lesson
- 2005.04.07: A new semester...
- 2005.04.07: Ego, or destiny?
- 2005.04.07: Setting up a Debian apt-source
- 2005.04.07: Installing Debian GNU/Linux on a Dell GX280
- 2005.04.07: Halloween in the Netherlands
- 2005.04.04: Open-source vs. NDA
- 2005.04.04: Leaving VATSIM
- 2005.03.29: metar package released!
- 2005.03.29: Mozilla Firefox eats Microsoft Internet Explorer
Monthly Archives
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- October 2005
- September 2005
- August 2005
- July 2005
- June 2005
- May 2005
- April 2005
- March 2005
Categories
Category Monthly Archives
- Academia: October 2008
- Academia: August 2008
- Academia: June 2008
- Access control: October 2008
- Around the house: June 2007
- Around the house: October 2006
- Around the house: July 2006
- Around the house: June 2006
- Around the house: May 2005
- Around the house: April 2005
- Attacks and Exploits: December 2008
- Attacks and Exploits: November 2008
- Attacks and Exploits: October 2008
- Attacks and Exploits: September 2008
- Awareness: October 2008
- Awareness: September 2008
- Awareness: August 2008
- Awareness: July 2008
- Awareness: June 2008
- Awareness: April 2008
- Awareness: February 2008
- Awareness: January 2008
- Awareness: November 2007
- Blogging: March 2008
- Blogging: August 2007
- Blogging: June 2007
- Books: October 2008
- Books: January 2008
- Books: July 2007
- Career: October 2008
- Certification: January 2009
- Certification: October 2008
- Certification: August 2008
- Certification: July 2008
- Compliance: October 2008
- Compliance: June 2008
- Compliance: April 2008
- Compliance: January 2008
- Compliance: August 2007
- Computing: January 2008
- Computing: August 2007
- Computing: June 2007
- Computing: May 2007
- Confused: May 2008
- Confused: February 2008
- Debian GNU/Linux: December 2007
- Debian GNU/Linux: June 2007
- Debian GNU/Linux: July 2006
- Debian GNU/Linux: February 2006
- Debian GNU/Linux: January 2006
- Debian GNU/Linux: September 2005
- Debian GNU/Linux: May 2005
- Debian GNU/Linux: April 2005
- Essential Truths: October 2008
- Essential Truths: June 2008
- Essential Truths: May 2008
- Events: December 2008
- Events: October 2008
- Events: August 2008
- Events: July 2008
- Events: June 2008
- Events: May 2008
- Events: April 2008
- Events: March 2008
- Events: February 2008
- Governance: October 2008
- Governance: July 2008
- Governance: June 2008
- Governance: May 2008
- Haiku: March 2008
- Haiku: July 2007
- HAM Radio: February 2008
- HAM Radio: June 2005
- Hosting: July 2007
- Incident Response: January 2009
- Incident Response: December 2008
- Incident Response: November 2008
- Incident Response: October 2008
- Incident Response: September 2008
- Incident Response: August 2008
- Incident Response: July 2008
- Incident Response: June 2008
- Incident Response: May 2008
- Incident Response: April 2008
- Incident Response: March 2008
- Incident Response: January 2008
- Incident Response: November 2007
- Incident Response: October 2007
- Incident Response: September 2007
- Incident Response: August 2007
- Life: October 2007
- Life: September 2007
- Life: June 2007
- Life: May 2007
- Life: April 2007
- Life: March 2007
- Life: February 2007
- Life: January 2007
- Life: December 2006
- Life: October 2006
- Life: August 2006
- Life: July 2006
- Life: May 2006
- Mentor: August 2008
- Networking: April 2008
- Networking: February 2008
- Note taking: April 2008
- Pentesting: August 2008
- Pentesting: July 2008
- Policy writing: June 2008
- Policy writing: April 2008
- Policy writing: March 2008
- Policy writing: February 2008
- Policy writing: January 2008
- Policy writing: December 2007
- Policy writing: November 2007
- Publications: September 2008
- Publications: August 2007
- Quotations: April 2006
- Quotations: March 2006
- Risk: December 2008
- Risk: November 2008
- Risk: October 2008
- Secure Coding: November 2008
- Secure Coding: October 2008
- Secure Coding: August 2008
- Secure Coding: July 2008
- Secure Coding: April 2008
- Secure Coding: March 2008
- Secure Coding: February 2008
- Security: December 2008
- Security: November 2008
- Security: October 2008
- Security: September 2008
- Security: August 2008
- Security: July 2008
- Security: June 2008
- Security: May 2008
- Security: April 2008
- Security: March 2008
- Security: February 2008
- Security: January 2008
- Security: December 2007
- Security: November 2007
- Security: September 2007
- Security: August 2007
- Security: February 2007
- Security: January 2007
- Security: October 2006
- Security: August 2006
- Security: February 2006
- Security: January 2006
- Security: October 2005
- Security: September 2005
- Security: July 2005
- Site: August 2007
- Site: June 2007
- Site: May 2007
- Site: March 2007
- Site: September 2006
- Site: July 2006
- Site: March 2006
- Site: February 2006
- Site: January 2006
- Social Engineering: August 2008
- Social Engineering: May 2008
- Social Engineering: April 2008
- Software engineering: August 2008
- Software engineering: July 2008
- Software engineering: April 2008
- Software engineering: June 2007
- Software engineering: February 2006
- Software engineering: September 2005
- Software engineering: August 2005
- Software engineering: May 2005
- Teaching: January 2009
- Teaching: December 2008
- Teaching: November 2008
- Teaching: October 2008
- Teaching: August 2008
- Teaching: March 2008
- Teaching: February 2006
- The web: September 2008
- Thoughts and ponderings: September 2008
- Thoughts and ponderings: August 2008
- Thoughts and ponderings: June 2008
- Thoughts and ponderings: May 2008
- Thoughts and ponderings: April 2008
- Thoughts and ponderings: March 2008
- Thoughts and ponderings: February 2008
- Thoughts and ponderings: January 2008
- Thoughts and ponderings: November 2007
- Thoughts and ponderings: October 2007
- Thoughts and ponderings: September 2007
- Thoughts and ponderings: August 2007
- Thoughts and ponderings: June 2007
- Thoughts and ponderings: October 2006
- Thoughts and ponderings: June 2006
- Thoughts and ponderings: April 2006
- Thoughts and ponderings: March 2006
- Thoughts and ponderings: February 2006
- Thoughts and ponderings: January 2006
- Thoughts and ponderings: October 2005
- Thoughts and ponderings: September 2005
- Thoughts and ponderings: August 2005
- Thoughts and ponderings: June 2005
- Thoughts and ponderings: May 2005
- Thoughts and ponderings: April 2005
- Travel: May 2008
- Travel: September 2007
- Travel: June 2006
- Vatsim: April 2005
- VoIP: May 2007
- Vulnerabilities: August 2008
- Vulnerabilities: July 2008
- Windows: April 2008
- Windows: February 2007
- Windows: August 2006
- Windows: February 2006
- Windows: September 2005
- Windows: August 2005
- Windows: July 2005