Jon's Network

Network Security News, Analysis and Ephemera

Jon's Network - Murrieta, CA

Security

  • What to Do While Under a DDOS Attack
  • How to Pick a Password
  • PhishGuru Training System
  • Take the DoS Survey
  • Our Job Is Threat Reduction
  • Firefox Auto-Update Leads the Pack
  • Top 5 Concepts Every IT Security Professional Must Understand in 2008
  • Don’t Regulate Cyberinsurance Markets
  • Jericho Forum Moves Us Closer to Ideal Security
  • Newby in the WSJ
  • Latest entries to this category....

    What to Do While Under a DDOS Attack

    January 26th, 2010 · No Comments

    The Top 10 Things To Do While Under DDoS Attack by Barret Lyon

    [Read more →]

    Tags: Security

    How to Pick a Password

    March 9th, 2009 · No Comments

    Simple tips for better web password security from Sophos Labs on Vimeo. Sophos’ Graham Cluley explains how to choose a memorable password that is hard to crack. He also recommends using software to help you out: 1Password This is what I use. KeePass Free and open source.

    [Read more →]

    Tags: Security

    PhishGuru Training System

    August 29th, 2008 · No Comments

    PhishGuru PhishGuru is an email-based anti-phishing training system in which training messages are designed to look like phishing messages.

    [Read more →]

    Tags: Security

    Take the DoS Survey

    August 18th, 2008 · No Comments

    Computer Defense has a Denial of Service Survey to research people’s perception of it.

    [Read more →]

    Tags: Security

    Our Job Is Threat Reduction

    August 15th, 2008 · No Comments

    A computer crimes agent from the FBI told Richard Bejtlich that a company can reduce vulnerabilities, but it is up to the FBI to reduce threats. In other words, it is beyond the legal or practical capability of most computer crime victims to investigate, prosecute, and incarcerate threats. Richard points out this CDT press release [...]

    [Read more →]

    Tags: Law and Economics · Natural Law · Security

    Firefox Auto-Update Leads the Pack

    July 2nd, 2008 · No Comments

    Some interesting new research out of ETH Zürich showed that Firefox’s Auto-Update mechanism works the best at keeping users updated with the latest and safest version compared to all other major browsers. The report, Understanding the web browser threat, used Google’s browser data from the last 18 months to figure out a lower bound on [...]

    [Read more →]

    Tags: Firefox · Security · Web · Web Filtering

    Top 5 Concepts Every IT Security Professional Must Understand in 2008

    March 20th, 2008 · No Comments

    Top 5 Concepts Every IT Security Professional Must Understand in 2008

    [Read more →]

    Tags: Security

    Don’t Regulate Cyberinsurance Markets

    October 3rd, 2007 · 3 Comments

    Any such security regulation can only reduce the amount of wealth and comfort the economy produces because it is foisting one man’s values upon another – “for the public good”. At Bejtlich’s recommendation, I read with great interest Cyberinsurance in IT Security Management by Walter S. Baer and Andrew Parkinson. The bulk of the paper [...]

    [Read more →]

    Tags: Economics · Free Markets · Risk · Risk Management · Security · insurance

    Jericho Forum Moves Us Closer to Ideal Security

    September 25th, 2007 · 4 Comments

    The ideal state of security would be when a threat agent gets inside your domain, or gets access to your secrets, property etc., but it doesn’t matter.Hoff kicked off quite the discussion on the Jericho Forum (follow up here with links to the blogs that discussed JF). This slide deck (pdf), by Andrew Yeomans, Chairman [...]

    [Read more →]

    Tags: Frameworks · Jericho Forum · Security · Standards

    Newby in the WSJ

    August 15th, 2007 · 1 Comment

    Rob Newby is my hero today. He got a mention in the WSJ, my favorite paper, (even though I canceled my subscription a couple months ago). He submitted an article to Vauhin Vara after she asked him for “tips that employees can use to do a better job using IT without violating company policies”. She [...]

    [Read more →]

    Tags: Security