• fiddles
• vernacular
• fallacy
• short answer
• deloitte

s7ephen tkrpata singe ryanaraine hdmoore rmogull mroesch lenlynch lmwalsh2112 amrittsering jeremiahg al3x alexsotirov gattaca mckeay chriseng rybolov thepiratenation petevosspr halvarflake cjp nikolaidis i0n1c cesium dinodaizovi ZotOConnor anton_chuvakin infosecsurvivor alecmuffett gadievron lbhuston rgaucher securid lmacvittie fabienneus abaranov rs_ mfratto DidierStevens daveg_mtso Beaker beldridg adamjodonnell drinfosec ryanlrussell BreakingPoint zrlram Panda_Security sans_isc dakami clubhack hal_pomeranz arbornetworks teamcymru lostinsecurity

Beaker: @randybias Intercloud is trademarked by Trend Micro ;) 2009-11-21 20:14:32

rmogull: @daveshackleford Stop whining. They have a Subway (at least they did 3 years ago). 2009-11-21 20:10:24

rmogull: @dragosr I humbly submit to your mastery of the sublime. 2009-11-21 20:09:22

fbz: i am ill on the couch and net is off because he is filling his new custom network device woodworking project #furniture #geek 2009-11-21 19:58:28

ZotOConnor: @cjhc You might say Direct Access allows for true perimeter defining and segmentation in a permiterless world of laptops and remote workers. 2009-11-21 19:57:34

singe: @sp_ian's talk got a big thumbs up from people I spoke to. Home now, bed. 2009-11-21 19:45:58

lostinsecurity: @alramonl It's a long story :) 2009-11-21 19:40:58

lostinsecurity: MacOSX Server, Zimbra or Kerio? Hmm 2009-11-21 19:39:05

rmogull: @marcinw Why bother? You live out East :) 2009-11-21 19:35:30

rmogull: @DennisF Nice! Must. Go. Preorder. 2009-11-21 19:33:28

ryanlrussell: He's got @bre on with him 2009-11-21 19:26:47

securid: @rogueclown Don't worry. You could use the cannon for defense ;). We have shields too! 2009-11-21 19:20:41

ryanlrussell: Watching @textfiles live on http://www.ustream.tv/channel/scottathon .... Oooh... there's a game! 2009-11-21 19:17:30

cchristianson: @peterhefley That's awesome!!! Congrats sir. 2009-11-21 19:15:26

ryanlrussell: @labmistress Whatcha writing? 2009-11-21 19:05:40

mfratto: RT @MitchWagner: Gmail Creator Thinks Email Will Last Forever. <- he's right. 2009-11-21 19:04:36

mfratto: @alexhutton unrelated thought but I have been in guitar stores the had sinage forbidding Freebird and Stairway to Heaven. ;) 2009-11-21 19:03:36

mckeay: @andronin it's not just u. Sanctuary is a great idea with writers who just can't execute. Most episodes are good ideas badly written. 2009-11-21 19:00:05

mfratto: @mckeay three reasons. Telecom deregulation, more than one standard (data), subsidized phones. 2009-11-21 18:59:12

securid: RT @emmangoldstein: Anyone know where we can find an HD 68 male to HD 68 male Ultra SCSI 3 cable in the NY metro area today? 2009-11-21 18:56:33

tkrpata: Rapidly approaching 30, time to accept I will probably never "take it to the house." 2009-11-21 18:54:53

cjp: One state away!!! in Port Wentworth, GA http://loopt.us/rGKK0w.t 2009-11-21 18:54:23

mckeay: @andronin all I can think of is that Sanctuary has 2 teams of writer and one sucks worse than the other 2009-11-21 18:49:50

rmogull: @shrdlu Phooey. Slacker. 2009-11-21 18:46:06

mckeay: @GeorgeVHulme If I want to play with a Droid, I can't just pop the chip out of my iPhone and put it in a Droid though. Or can I? 2009-11-21 18:36:16

rmogull: @shrdlu Well then why didn't you apply!!! 2009-11-21 18:35:01

mckeay: @rmogull Yeah, you're so horrible! You let a 'sh!t' or a little worse fly every 5-6 episodes. I think we'll survive 2009-11-21 18:34:22

rmogull: There are 2 kinds of security metrics. Those that inform practical decisions, and those you use to feel important or scare people. 2009-11-21 18:33:36

mckeay: Odd thought: Why does my mobile phone carrier get a say in which cell phone I'm using? Land line carriers lost that privileged in the 70's 2009-11-21 18:32:39

rmogull: @mckeay with my language? No chance of approval. 2009-11-21 18:32:02

rmogull: RT @shrdlu: New bloggage: the meaning of metrics. http://layer8.itsecuritygeek.com/layer8/the-meaning-of-metrics/ 2009-11-21 18:29:27

rmogull: @shrdlu Awesome post- my fave of the week. You see my anonymization of losses one? 2009-11-21 18:29:08

mckeay: Old military (Airborne) joke: Q "Who'd jump out of a perfectly good airplane?" A "There's no such thing as a perfectly good airplane" 2009-11-21 18:27:21

mckeay: @mroesch Luckily they just came back and said we'd be leaving on time. But now I'm worried about the plane. 2009-11-21 18:23:18

cchristianson: @mckeay maybe it means "if we can fix it with duck tape, we'll be ready to go in no time" 2009-11-21 18:21:47

amrittsering: Lego Spinal Tap: Lick My Love Pump http://tinyurl.com/6kh9h7 and It Goes to 11 http://tinyurl.com/an8my2 <-- where the hell have I been? 2009-11-21 18:18:00

Beaker: R @swardley Let's focus on the word "transferable" - this is a legal issue not a technical one. I could buy a boatload & allocate them today 2009-11-21 18:17:03

mroesch: @mckeay actually I think it means "you're probably hosed" 2009-11-21 18:15:20

gattaca: @cunningpike Er, no. Might be what I get stuck with. 2009-11-21 18:14:53

gattaca: @labmistress Oh, she wasn't with us. That was a RT from Rich Mogull. 2009-11-21 18:13:53

mckeay: I don't like it when the airline says flight is on "mechanical decision". What's that mean? "You might be hosed" I suspect. 2009-11-21 18:13:05

amrittsering: rt @shrdlu New bloggage: the meaning of metrics. http://layer8.itsecuritygee... < -- nice post 2009-11-21 18:11:22

Beaker: R @swardley I assume you mean that 'contractually' one can't resell reserved instances? There's nothing rly stopping someone from doing that 2009-11-21 18:00:52

adamjodonnell: I am really hard on some of my kitchen tools. I have had to order new parts for the blender/food processor 2x in 2 mo. 2009-11-21 17:56:38

ryanlrussell: "Kung Pow: Enter the First" is on in the background. The WTF is very distracting. 2009-11-21 17:56:08

Beaker: RT @brynmorgan: @Beaker: #cloudifornication - Genius! < It's really the name of one of my presentations, but it's now a verb ;) 2009-11-21 17:51:21

rmogull: @reppep just over 1 year. And tell Julia we say hello! 2009-11-21 17:47:06

chriseng: @jeremiahg @WeldPond That was the point. I'm not saying "fix b/c it's exploitable," I'm saying "fix just in case it's exploitable." 2009-11-21 17:37:35

mckeay: Libsyn offered to create a iPhone App for #NetSecPodcast. If they did, I wonder what the chances are it'd get turned down by Apple? 2009-11-21 17:33:52

jeremiahg: @WeldPond nothing wrong w/ SAST. Just not the best for measuring "hackability", instea defect reduction. lack of distiction confuses devs 2009-11-21 17:32:45

ryanlrussell: @whymomdrinksrum Don't ruin your eyes! They're one of your best features. 2009-11-21 17:31:20

rmogull: I will fully admit I'm not strong enough for what they just did. Pretty amazing. 2009-11-21 17:21:28

mckeay: I really hate having a three hour layover in Denver airport, but at least the people watching opportunities are pretty good. 2009-11-21 17:20:21

zrlram: That's what I call a phantastic start into the weekend: drinking a latte at farley''s! 2009-11-21 17:20:05

rmogull: Wife's sister and my brother in law adopted the daughter they were fostering since she was a few days old. Saved from a bad situation. 2009-11-21 17:19:57

petevosspr: its a good day to die ... in #mw2 2009-11-21 17:19:51

ryanlrussell: @wildisthewind That's a lot of New Moon denial there... you sure? "I'm only touching myself while watching this out of SPITE." 2009-11-21 17:16:38

ryanlrussell: The Avamar 5 integrations with vSphere looks really slick. You made me get excited about backup technology. You sick bastards. 2009-11-21 17:14:56

securid: @shwood There was a great steak house there called "Scotch and Sirloin" 2009-11-21 17:14:44

gattaca: RT @rmogull: Adoption ceremony complete. We now have a new niece! http://yfrog.com/1ygbzj very cool 2009-11-21 17:08:08

securid: Just because you can, doesn't mean you should! 2 kids 1 parent and the science center..... 2009-11-21 17:06:59

Beaker: My @rackspace Cloud servers are humming away talking to my #AWS cloud instances. I feel so dirty. CLOUDIFORNICATION indeed! ;) 2009-11-21 17:03:38

rmogull: Adoption ceremony complete. We now have a new niece! http://yfrog.com/1ygbzj 2009-11-21 17:01:50

ryanlrussell: Cool house http://bit.ly/6AEUC4 2009-11-21 17:01:01

lmacvittie: @treestand Beautiful weather for opening day, ain't it? 2009-11-21 16:59:39

securid: http://twitpic.com/qdimt - great lakes science center's cannon. I wonder if I can borrow it? 2009-11-21 16:44:06

mfratto: BTW, Voice search on the #Droid totally rocks. It's like magic. :) 2009-11-21 16:30:33

lmacvittie: Sounds of Toddler toys: "Red. Diamond. Green. Square. Yellow. I AM OPTIMUS PRIME! Blue. Circle. " 2009-11-21 16:29:54

mfratto: Side effect of people jumping on the #Droid bandwagon: Fixing ActivSync: http://is.gd/50qnb, screen blanking http://is.gd/50qo5 #fb fix pls 2009-11-21 16:27:26

securid: at the Great lakes science museum. 2009-11-21 16:21:06

hdmoore: @D1N wish they had a live demo to mess with, appliances are too smoke and mirrors :) 2009-11-21 16:20:00

hdmoore: @p4ula ruby-gnome2 is pretty well broken on win32 and buggy with 1.9.1, looks like a lost cause for a thick client 2009-11-21 16:19:28

abaranov: @Peter_French '/me' ? you are showing your age! 2009-11-21 16:16:50

hdmoore: @i0n1c oh, ok. there is also memdump.exe fmt (in the metasploit tree and used by msfpescan) 2009-11-21 16:14:00

singe: @Peter_French Beer o'clock at Catz Pygamas (sp?) in Melville from 7pm #zacon 2009-11-21 16:08:43

abaranov: @barryirwin you wouldn't be the first person to fall asleep in a lecture hall. #zacon 2009-11-21 16:08:18

rgaucher: @DinisCruz wahou -- I am not doing a good job then! Oh, but well, in most cases, you CANNOT get those req. fulfilled... #real-life 2009-11-21 16:07:35

singe: @AndrewMohawk's surprise slide. I'm assuming RT added that. Good for a laugh. http://is.gd/50poi #zacon 2009-11-21 15:55:25

lmwalsh2112: Email hack reveals global warming conspiracy among scientists: http://bit.ly/4uGo8I 2009-11-21 15:52:28

gattaca: Took my pants in for alterations. Suddenly nervous about the possible results. #fail http://yfrog.com/4euitxj 2009-11-21 15:47:07

cjp: On the road again... in Fort Mill, SC http://loopt.us/JaG1tQ.t 2009-11-21 15:44:41

s7ephen: @dionthegod yea exactly...other than server accept() and signal handler cases I cant think of many cases where you'd have that much control 2009-11-21 15:44:35

s7ephen: @6 That's like a horrible anxiety nightmare I've had made reality. 2009-11-21 15:42:27

s7ephen: @dionthegod yea yer right,but I feel like the majority of concurrency bugs that result in crashes wont be, but I'm behind on exploit stuff 2009-11-21 15:41:26

mfratto: @Beaker do tell. 2009-11-21 15:33:17

Beaker: Well that was a little weird. 2009-11-21 15:29:42

singe: Emotiv http://www.emotiv.com/epoc.html available for purchase 21 Dec 2009 for $299 to US citizens only. #zacon 2009-11-21 15:13:59

singe: Uh oh, @barryirwin just intro'ed Windows 2003 as "fully patched", that means we're going to see 0day right? #zacon 2009-11-21 14:39:33

lostinsecurity: It seems that the time when I can get transparent and encrypted backups is near!! Although it is a hack, it works! 2009-11-21 14:28:53

lostinsecurity: FileVault discarded because of its crappy Time Machine support. Waiting for PGP v10 to test it! #wde #encryption 2009-11-21 14:28:05

lostinsecurity: RT @threatintel: Blog: IE 0-day. Exploit targets a vulnerability in the way IE uses CSS information. http://bit.ly/7ZcjYG 2009-11-21 14:26:39

singe: Why do Mozilla Personas need Internet access to work? Just cache the effing things Mozilla. 2009-11-21 14:21:28

s7ephen: I wonder how useful Cuzz will be. -doesn't find exploitable bugs, and devs will just WaitForSingleObject()/ IsBadReadPtr()/try-except more. 2009-11-21 14:15:21

mfratto: @GeorgeVHulme ... <this new thing> a <dominant thing> killer is silly. Products succed because they are good and not based solely on name. 2009-11-21 14:07:20

mfratto: @GeorgeVHulme re: building a light os. Frankly any monkey can do that. Usurping windows or osx is something else. The rush to proclaim ... 2009-11-21 14:03:15

s7ephen: Cuzz Summary: It fiddles with the thread scheduler to produce "thread concurrency bugs". Not really a fuzzer at all IMO. 2009-11-21 13:57:57

s7ephen: I just watched the presentation on Cuzz http://is.gd/50lYE Microsoft vernacular for "heisenbugs" is "concurrency bugs". 2009-11-21 13:57:05

s7ephen: @i0n1c win32dd . talk to @msuiche ;-) 2009-11-21 13:51:40

s7ephen: RT @lordparody Video #2 for the reversing tutorial of CSAW Challenges 2.exe, 3.exe, and 4.exe are up: http://bit.ly/T5ESO 2009-11-21 13:50:57

singe: Yusuf is only missing his pinkie at his lip as he demonstrates x6 speedup over SQLninja style data extraction. #zacon 2009-11-21 13:47:06