Is Risk Assessment a Snake-Oil Discipline?
I’ve been thinking a lot recently about the usefulness of risk assessment. A while back I had an interesting conversation with Marcus Ranum about the…
Category: Mix
Performing a “Cold-Boot” Proof of Concept Without Princeton’s Bit-Unlocker
Most in the information security community have heard of the “cold-boot” attack against encryption products that was recently released by Princeton. They put out a…
A GTD Approach to Organizing and Reading Your Feeds
The fundamental problem when managing feeds is input management. Most of us simply have too many feeds to read in a single sitting. How can…
Outrageous Beliefs Are NOT Equal to Claims They Are Preposterous
One of the most common arguments I hear from the religious is that their beliefs and mine are the same. They believe they know what…
The Dunning-Kruger Effect | Daniel Miessler
This explains a lot. The Dunning-Kruger effect describes the phenomenon whereby people who don’t know anything about something think they know more than those who…
Hunting down subdomain takeover vulnerabilities
Subdomain takeovers are a well-documented security misconfiguration. Despite widespread awareness, developers still frequently forget to remove DNS records pointing to forgotten and unused third-party services,…
My Thoughts on Depression | Daniel Miessler
A new BBC piece is highlighting an alternate approach to depression. Rather than assume that it’s something that should immediately be countered with drugs, how…
Say Goodbye to U.S. Particle Physics
This is sickening. Fermilab, The United States’ main particle physics lab, is being hamstrung by congress’s latest omnibus bill. This is the same bill that…
Was the Last Time Your Last?
I used to be into BMX bikes. I was obsessed. Every little thing about it was interesting. The brakes, the handlebars, the different types of…
A Three-Dimensional Approach to Organizing Your Feeds Using Google Reader
I’m constantly optimizing how I do things, and nowhere is this more important to me than with my feed reader. I happen to use (and…
An Oversimplification of the Subprime Morgage Crisis
I’m not an economist, but I read a lot. Here’s what happened: greed + stupidity. Greed on the part of the lenders, i.e. taking advantage…
Apple vs. AT&T | Daniel Miessler
As you may have heard, AT&T’s chief executive disclosed last week that the second version of the iPhone will be coming next year. And most…