You can't secure what you don't acknowledge.SM

Friday, January 22, 2010

What are your thoughts on Web hosting / colo providers?

Better think things through when giving up the reigns and letting a third-party Web hosting or colo provider run the show:

When using a Web hosting provider can be bad - really bad - for your business

You'd think Network Solutions would have better security controls in place.

When will people pull their heads out of the sand? Maybe never??

Speaking of this specific vulnerability, here's a recent bit I wrote on Acunetix's blog about on looking past layer 7 and fixing all Web-related issues.

My latest information security content

Here are my latest information security articles and a podcast focusing on Web security and document security. Enjoy!

First, my Web security articles:
Changes coming to the OWASP Top 10 in 2010 (read the comments too, I stirred the puddin' with this piece!)

Free Web proxy tools you need to get to know

Securing Web servers in Windows environments

...and a document security podcast (this is a really interesting story if you haven't heard about it)
Document redaction and the recent TSA leak

You know the drill - as always, be sure to check out for all of my information security articles, podcasts, webcasts, videos, Twitter updates, and more.

Wednesday, January 20, 2010

Twitter - how about some capacity planning?

Keep getting the Twitter is over capacity this morning. Good sign they're popular...still not good for business.