Monday, November 21, 2011
Explaining the why of Web application security
Improving Web security by working with what you’ve got
Not all Web vulnerability scans are created equal
Why people violate security policies
As always, be sure to check out www.principlelogic.com/resources.html for links to all of my information security whitepapers, podcasts, webcasts, books and more.
Sunday, November 20, 2011
Once I reached the airport on my way back home I had several things occur to me regarding these people and their protests. The occupiers are the same folks who will:
- break in line
- cheat on tests
- ensure everyone gets a trophy
- buy into the notions of "fair share" as long as it works into their favor by only giving what they're capable of giving while taking whatever they need
- flip you off when they pull their car out in front of yours and you honk to make them aware of your presence
- hack into others' computers for ill-gotten gains just because they can
- never admit fault and hire lawyers to "prove" their cases
- be heard at all costs but go to great lengths to shut you up if your views oppose theirs
Ironically, there was a Rich Dad Poor Dad seminar in the hotel where we were presenting. It was chock full of people looking to better themselves. I thought, what an interesting juxtaposition considering all the people Zuccotti Park who were doing nothing productive but, were instead, only holding themselves back.
Folks, this is the very beginning of Socialist nations which, no doubt, evolve into Communist regimes - you know, the very political states in which "human rights" are violated and these same people would demand reprieve. It is interesting how these "smart" occupiers who claim to know it all have no real clue of history...much less how basic economics works. The free market that's based in New York City provides these very people and all of us the greatest opportunity in history to do well for ourselves and our families. But that requires work and these people aren't willing to do that. Too much risk and effort involved. They'd much rather argue for their own limitations.
I write about this because I believe STRONGLY in personal responsibility and limited government. Interestingly, both of these have a direct tie to the field of information security that has been very good to me and my family thanks to my willingness to take risks and work hard year after year to bring things to fruition. Yet, on both sides of the token - the anti-Capitalist occupiers AND the very people who *should* be held accountable for doing what's right to protect their networks and information - I see people continually burying their heads in the sand and pretending that everything is someone else's problem...It seems to be getting worse, but it's probably just me.
Major kudos to all of you who are not only willing to work hard but also willing to think outside the box and not be swayed by mob rule.