J Wolfgang Goerlich's thoughts on Information Security

Archive

RSSAccess Control (0)

Date Title Rating

RSSActive Directory (3)

Date Title Rating
2009-04-17 Replication and Transfering Operations Master Roles None
2009-04-03 Domain controller holds the last replica None
2009-04-03 Troubleshooting Active Directory replication None

RSSApache (2)

Date Title Rating
2009-11-16 Audit for SSL/TLS renegotiation None
2009-03-29 Apache Versus Internet Information Services Security None

RSSArchitecture (10)

Date Title Rating
2011-10-04 Comments on Cloud computing disappoints early adopters None
2011-09-30 Private clouds, public clouds, and car repair None
2011-09-21 Cost justifying 10 GbE networking for Hyper-V None
2010-07-01 Cisco's new business tablet None
2009-12-21 A prediction on cloud computing adoption None
2009-05-26 Disposable end-point model 4.7
2009-03-13 Open Up and Lock Down None
2009-01-02 Security is Design None
2008-04-25 Perimeter-less Security and Clouds on the Horizon None
2004-05-08 Encrypting private circuits (VPN over Frame Relay and MPLS) None

RSSBiometrics (1)

Date Title Rating
2009-03-22 VeriFace Facial Recognition None

RSSBusiness Continuity (24)

Date Title Rating
2011-09-16 Impact driven risk management and business continuity None
2011-07-12 Out and About: GrrCon None
2011-04-06 Disaster recovery metrics - beyond RTO and RPO 5
2011-02-26 Out and About: Storage Networking World 2011 None
2009-09-25 Making and mounting Vss snapsnots in Windows Server 2008 None
2009-04-20 Virtualization and BCP Webinar Today 5
2009-04-13 Virtualization Webinar next Monday None
2009-02-11 DRP Training, Testing and Auditing None
2009-02-10 CA Case Study on our use of ARCserve and Hyper-V None
2009-02-02 Relying on Third Parties for DR None
2009-01-30 Extreme IT: Chevron's Hurricane Disaster Recovery None
2008-12-29 Power Outages in Michigan None
2008-11-11 Security Journal: Developing Secure Disaster Recovery Programs None
2008-09-02 Baseline Article on Business Continuity Planning None
2008-08-27 How Microsoft Hyper-V Helped My IT Shop Revamp Disaster Recovery None
2008-06-25 Best Practices award for Business Continuity None
2008-04-06 Virtualization for Disaster Recovery: Strategies None
2008-04-05 Virtualization for Disaster Recovery: Metrics None
2008-03-18 Selecting backup data centers for DR None
2008-02-28 The Machine Stops None
2008-02-10 Out and About: Storage Networking World None
2005-04-18 Budgeting for disaster recovery None
2004-11-05 Disaster Recovery Metrics None
2004-07-22 Defining Business Continuity and Disaster Recovery 4

RSSCryptography (5)

Date Title Rating
2010-01-08 Microsoft embraces and extends IPSec NULL None
2009-11-16 Audit for SSL/TLS renegotiation None
2009-02-28 Criminal Intent and Cryptography (IANAL) None
2008-01-10 2008 US Presidential Elections Predicted None
2008-01-10 Reading your SSL Web Traffic None

RSSEncryption (7)

Date Title Rating
2011-07-13 Browsing in public with PuTTY 0.61, Firefox 5.0, and Amazon EC2 None
2011-04-24 Dropbox - risks and remediation None
2011-03-11 Cord Blood Registry breach - encryption controls and media controls None
2011-03-04 Miss the basics, miss the boat - Core Blood Registry None
2010-01-08 Microsoft embraces and extends IPSec NULL None
2005-06-29 Load balance SSH without "Potential Security Breach" or "Someone Is Doing Something Nasty" None
2004-05-08 Encrypting private circuits (VPN over Frame Relay and MPLS) None

RSSForensics (3)

Date Title Rating
2011-08-02 iOS Forensic website None
2008-10-02 iPhone Forensics book None
2004-10-22 Detecting information leakage in Windows Server None

RSSGeneral (16)

Date Title Rating
2012-01-02 Happy New Year 2012 None
2011-09-20 Six notebooks, three controls, and a third of a presentation 5
2011-07-11 iPad for the office None
2011-05-29 Egpyt's Mubarak fined for Internet cut-off None
2011-05-11 Everything includes training 5
2010-11-03 Crime and criminals (sans cyber) 4
2010-01-01 Happy New Year and how I spent Y2K None
2009-09-15 Food for Thought: Brain Train Smoothie None
2009-06-04 Egyptian Radio in the 1930s and Cybersecurity 5
2009-05-20 Your IT Skills are Dying -- Time to Study None
2009-05-11 InfoSec Poetry and Hacker Haikus 5
2009-02-13 Patience and Persistence None
2008-07-13 Information overload - how a day turns into a week None
2008-04-03 Effective Presentation Techniques None
2008-02-09 German YouTube Videos None
2004-07-26 5 ways to explain IT security non-technically None

RSSHistory (3)

Date Title Rating
2009-06-04 Egyptian Radio in the 1930s and Cybersecurity 5
2008-12-19 Metropolis None
2007-02-17 SQL Server Tip: Bulk load a csv file None

RSSHyper-V (14)

Date Title Rating
2009-12-14 Matriux - Upgrade to 2.6.32-7 and install the GPL Hyper-V integration 1
2009-12-14 Matriux - Downgrade to 2.6.18 and install Hyper-V's integration components 5
2009-12-13 Matriux - Penetration Testing from Hyper-V 5
2009-07-08 Virtualization and the physical security boundary 4
2009-06-28 Installing ARCserve on Hyper-V Core None
2009-04-13 Virtualization Webinar next Monday None
2009-03-11 Delegating management in Hyper-V None
2009-02-10 CA Case Study on our use of ARCserve and Hyper-V None
2008-12-10 Microsoft Case Study on Virtualization None
2008-10-16 Hyper-V Disk Issues None
2008-10-15 Hyper-V Scripting Guide None
2008-09-30 Huh? VMware's ESX KO's a roughly built Hyper-V package None
2008-08-27 How Microsoft Hyper-V Helped My IT Shop Revamp Disaster Recovery None
2008-03-28 Hyper-V RC Tip -- Installing and Setting IP None

RSSIIS (3)

Date Title Rating
2009-11-16 Audit for SSL/TLS renegotiation None
2009-08-11 Excel Extension Hardening and Web Applications 4.8
2009-03-29 Apache Versus Internet Information Services Security None

RSSIntellectual property (1)

Date Title Rating
2011-07-25 Protect IP and the Professors' Letter 4

RSSOperations Security (17)

Date Title Rating
2011-09-23 Learning the wrong lesson from DigiNotar None
2011-03-11 Cord Blood Registry breach - encryption controls and media controls None
2010-01-19 Google and China, Internet Explorer and Aurora 5
2009-12-13 Matriux - Penetration Testing from Hyper-V 5
2004-04-29 Concluding Information Security for Intellectual Property None
2004-04-26 Engaging with the business on Intellectual Property issues None
2004-04-23 Avoiding infringement: Trade secrets None
2004-04-21 Avoiding infringement: Patents None
2004-04-18 Avoiding infringement: Copyrights None
2004-04-17 Avoiding infringement: Trademarks None
2004-04-16 Avoiding infringement None
2004-04-13 Protecting your assets: Trade secrets None
2004-04-11 Protecting your assets: Patents None
2004-04-08 Protecting your assets: Copyrights None
2004-04-03 Protecting your assets None
2004-04-02 Providing Information Security for Intellectual Property None
2003-11-13 Strategies for allowing guest access 5

RSSOut and About (9)

Date Title Rating
2011-09-12 Grand Rapids on Friday (GrrCon) None
2011-07-12 Out and About: GrrCon None
2011-06-02 Out and About: Detroit's B-Sides None
2011-02-26 Out and About: Storage Networking World 2011 None
2009-04-13 Back from the mountains None
2008-08-12 Out and About: Practical Risk Management None
2008-08-01 Out and About: ISSA None
2008-03-27 Out and About: Xerox next Week None
2008-02-10 Out and About: Storage Networking World None

RSSPhysical Security (3)

Date Title Rating
2011-03-11 Cord Blood Registry breach - encryption controls and media controls None
2011-03-04 Miss the basics, miss the boat - Core Blood Registry None
2009-05-15 HVAC Security Controls 4.5

RSSProject Management (3)

Date Title Rating
2012-01-05 The team, the tools, and the time 4.5
2011-05-11 Everything includes training 5
2011-02-26 Project management beyond scope, budget, time None

RSSRisk Management (17)

Date Title Rating
2011-10-17 Remediating IT vulnerabilities None
2011-10-12 I fight for the users None
2011-09-23 Learning the wrong lesson from DigiNotar None
2011-09-16 Impact driven risk management and business continuity None
2011-09-09 Building a vulnerability management program 3
2011-07-12 Out and About: GrrCon None
2011-06-15 Hello SSAE16 None
2011-06-15 Goodbye SAS70 None
2011-01-29 Internet kill switches 4
2010-06-29 Insurance None
2009-05-12 How to gracefully lose control over computing assets None
2009-04-14 Security Journal: Finding Security in Tough Times None
2009-02-02 Modulo automates risk management None
2009-01-19 Risk Management is prevention and Security Information Management is detection None
2008-08-12 Out and About: Practical Risk Management None
2008-07-22 Risk Management None
2004-04-02 Providing Information Security for Intellectual Property None

RSSSecurity (89)

Date Title Rating
2012-01-10 Software support for password strength None
2011-12-28 DNS covert channels None
2011-10-28 Small Business Security Advantages 5
2011-10-25 Effective Small Business Security Podcast 5
2011-10-14 How advanced are advanced attacks? 5
2011-10-13 How sophisticated are sophisticated attacks? None
2011-10-12 I fight for the users None
2011-10-10 Malware Removal Guide for Windows 5
2011-09-23 Learning the wrong lesson from DigiNotar None
2011-09-15 Cloud Security Alliance in SE Michigan None
2011-07-20 Find your personal credit cards, SSN, and passwords in a stack of documents None
2011-07-13 Browsing in public with PuTTY 0.61, Firefox 5.0, and Amazon EC2 None
2011-06-24 Unified threat management - multi-function firewalls 5
2011-06-15 Hello SSAE16 None
2011-06-15 Goodbye SAS70 None
2011-06-06 B-Sides Detroit overview 4.5
2011-06-02 Out and About: Detroit's B-Sides None
2011-05-29 Egpyt's Mubarak fined for Internet cut-off None
2011-04-24 Dropbox - risks and remediation None
2011-03-11 Cord Blood Registry breach - encryption controls and media controls None
2011-03-04 Miss the basics, miss the boat - Core Blood Registry None
2011-03-03 Bypassing IDS/NSM detection None
2011-01-29 Internet kill switches 4
2011-01-12 Netflows Simplified (Part 2) None
2011-01-05 Netflows Simplified (Part 1) None
2010-12-23 TJ Maxx security incident impact? None
2010-12-12 Can you capture all the packets on your network? None
2010-11-12 Net Neutrality basics None
2010-11-03 Crime and criminals (sans cyber) 4
2010-08-12 Social networking and loose lips None
2010-06-29 Insurance None
2010-06-04 Pentetration testing lab None
2010-04-09 Nessus Tip: auditing services on non-standard ports None
2010-03-27 SANS Investigative Forensic Toolkit (SIFT) workstation updates None
2010-02-12 Locking down USB flash drives in Windows 7 None
2010-01-19 Google and China, Internet Explorer and Aurora 5
2009-12-14 Matriux - Upgrade to 2.6.32-7 and install the GPL Hyper-V integration 1
2009-12-14 Matriux - Downgrade to 2.6.18 and install Hyper-V's integration components 5
2009-12-13 Matriux - Penetration Testing from Hyper-V 5
2009-11-25 WatchGuard 11.1 and HTTP headers None
2009-11-22 Pentetration testing Microsoft Office Communication Server None
2009-11-16 Audit for SSL/TLS renegotiation None
2009-11-06 Building our own cloud None
2009-09-02 TJ Maxx security incident timeline None
2009-08-11 Excel Extension Hardening and Web Applications 4.8
2009-07-08 Virtualization and the physical security boundary 4
2009-06-04 Egyptian Radio in the 1930s and Cybersecurity 5
2009-05-26 Disposable end-point model 4.7
2009-05-15 HVAC Security Controls 4.5
2009-05-12 How to gracefully lose control over computing assets None
2009-05-11 InfoSec Poetry and Hacker Haikus 5
2009-04-14 Security Journal: Finding Security in Tough Times None
2009-03-29 Apache Versus Internet Information Services Security None
2009-03-28 Cross Site Scripting: eWeek None
2009-03-22 VeriFace Facial Recognition None
2009-03-13 Open Up and Lock Down None
2009-03-11 Delegating management in Hyper-V None
2009-03-02 Fun Stuff -- Wireshark, L0phtcrack, Netcat None
2009-01-02 Security is Design None
2008-11-28 Nmap output to XML and SQL None
2008-11-25 Tip: Cygwin for Steganography in Sounds (.wav) None
2008-10-18 Clickjacking Revealed None
2008-10-16 Gmail Outage None
2008-09-26 VBScript Fork Bomb 5
2008-09-08 London Stock Exchange - When Good Systems Go Bad None
2008-07-28 DNS Cache Polution None
2008-07-21 Would you hire an ethical hacker? None
2008-05-06 Preventing scanning in paper None
2008-03-20 Inside the Twisted Mind of the Security Professional (Wired) None
2008-02-28 The Machine Stops None
2008-02-25 Motive, Expertise, Opportunity None
2008-02-20 Using Worms for Patching None
2008-01-23 A Project Approach to Securing Web Services None
2008-01-09 The Return of MBR Malware None
2008-01-03 Financial Information eXchange (FIX) Flaws None
2008-01-01 2008 Security Challenges None
2007-11-08 Prevent the computer screensaver from locking the console None
2007-04-08 Celebrating ten years of watching my back None
2007-02-26 Viewing cached credentials, clearing cached credentials, preventing cached credentials None
2005-09-22 Baking in security with a technology, practices, projects approach None
2005-06-29 Load balance SSH without "Potential Security Breach" or "Someone Is Doing Something Nasty" None
2005-05-07 Spot problem Windows Servers (automatic updates) None
2004-05-08 Encrypting private circuits (VPN over Frame Relay and MPLS) None
2002-11-22 Essential Insecurities Part 6 -- Conclusion None
2002-11-15 Essential Insecurities Part 5 - IP None
2002-11-08 Essential Insecurities Part 4 -- Ethernet None
2002-11-01 Essential Insecurities Part 3 -- Topology None
2002-10-25 Essential Insecurities Part 2 -- Cabling None
2002-10-18 Essential Insecurities Part 1 -- Introduction None

RSSSecurity Information Management (18)

Date Title Rating
2011-06-06 B-Sides Detroit overview 4.5
2011-03-03 Bypassing IDS/NSM detection None
2011-02-18 Egypt up, Libya down None
2011-01-12 Netflows Simplified (Part 2) None
2011-01-05 Netflows Simplified (Part 1) None
2010-12-12 Can you capture all the packets on your network? None
2010-06-04 Pentetration testing lab None
2010-04-09 Nessus Tip: auditing services on non-standard ports None
2009-01-19 Risk Management is prevention and Security Information Management is detection None
2008-11-28 Nmap output to XML and SQL None
2008-10-03 LinkedIn Security Information Management Group None
2008-08-23 A look at Q1 Labs' QRadar None
2008-06-10 Rolling your own SIM None
2008-04-25 Perimeter-less Security and Clouds on the Horizon None
2008-02-18 CMRR Secure Erase for Hard Drives Released None
2004-10-22 Detecting information leakage in Windows Server None
2004-06-13 Recover Office XP and Office 2003 passwords None
2004-06-13 Recover Office XP and Office 2003 passwords None

RSSStorage (10)

Date Title Rating
2011-04-24 Dropbox - risks and remediation None
2011-04-19 Innovating in storage - apps and clouds None
2011-03-04 Miss the basics, miss the boat - Core Blood Registry None
2008-10-07 Double-Take Software aquires netBoot/i None
2008-09-02 Baseline Article on Business Continuity Planning None
2008-08-27 How Microsoft Hyper-V Helped My IT Shop Revamp Disaster Recovery None
2008-05-09 WinBoot/I -- Check it Out None
2008-02-18 CMRR Secure Erase for Hard Drives Released None
2008-02-10 Out and About: Storage Networking World None
2008-02-01 Tiered Storage None

RSSSystems Engineering (34)

Date Title Rating
2012-01-10 Software support for password strength None
2012-01-05 The team, the tools, and the time 4.5
2011-12-28 DNS covert channels None
2011-10-10 Malware Removal Guide for Windows 5
2011-09-21 Cost justifying 10 GbE networking for Hyper-V None
2011-06-24 Unified threat management - multi-function firewalls 5
2011-06-06 B-Sides Detroit overview 4.5
2011-05-11 Everything includes training 5
2011-01-29 Internet kill switches 4
2010-10-06 Tools for converting files to ePub format 5
2010-08-16 Browse the Web over command line with Ncat None
2010-08-04 Hard Link Shell Extension None
2010-02-12 Locking down USB flash drives in Windows 7 None
2010-01-08 Microsoft embraces and extends IPSec NULL None
2009-11-25 WatchGuard 11.1 and HTTP headers None
2009-11-22 Pentetration testing Microsoft Office Communication Server None
2009-11-21 The pack is not online -- Diskpart errors on some file systems None
2009-11-06 Building our own cloud None
2009-09-25 Making and mounting Vss snapsnots in Windows Server 2008 None
2009-06-10 IP addressing by integer None
2008-11-25 Tip: Cygwin for Steganography in Sounds (.wav) None
2008-09-10 SQL Server Tip: Shrink Database None
2008-04-23 My standard IOmeter test None
2007-12-04 Tip: Cygwin for Gzips (.gz) and Tarballs (.tar) None
2007-11-23 SQL Server Tip: Find and Change File Locations None
2007-11-08 Prevent the computer screensaver from locking the console None
2006-03-05 Winlogon and the protection ring None
2005-09-22 Baking in security with a technology, practices, projects approach None
2005-06-29 Load balance SSH without "Potential Security Breach" or "Someone Is Doing Something Nasty" None
2005-05-07 Spot problem Windows Servers (automatic updates) None
2004-10-22 Detecting information leakage in Windows Server None
2004-10-12 Tip: Identifying file types None
2004-08-03 Clearing a DNS server cache using VBscript and WMI None
2003-11-13 Strategies for allowing guest access 5

RSSTroubleshooting (15)

Date Title Rating
2009-11-21 The pack is not online -- Diskpart errors on some file systems None
2009-11-05 Use Diskpart to Create and Format Partitions 5
2009-08-11 Excel Extension Hardening and Web Applications 4.8
2009-04-03 Domain controller holds the last replica None
2009-04-03 Troubleshooting Active Directory replication None
2008-10-16 Hyper-V Disk Issues None
2008-05-01 SSRS reports work on the server but not on the clients None
2008-03-12 XenServer hangs on Himem.sys when booting DOS None
2008-01-17 100% Processor Utilization on Windows Backup None
2007-04-08 Celebrating ten years of watching my back None
2007-02-26 Viewing cached credentials, clearing cached credentials, preventing cached credentials None
2007-01-28 Viewing and releasing file handles None
2005-08-17 Move an OS, set the IP, and see the IP address you have entered is already assigned None
2005-06-29 Load balance SSH without "Potential Security Breach" or "Someone Is Doing Something Nasty" None
2004-08-03 Clearing a DNS server cache using VBscript and WMI None

RSSVirtualization (20)

Date Title Rating
2011-09-21 Cost justifying 10 GbE networking for Hyper-V None
2009-12-14 Matriux - Upgrade to 2.6.32-7 and install the GPL Hyper-V integration 1
2009-12-14 Matriux - Downgrade to 2.6.18 and install Hyper-V's integration components 5
2009-12-13 Matriux - Penetration Testing from Hyper-V 5
2009-11-06 Building our own cloud None
2009-07-08 Virtualization and the physical security boundary 4
2009-06-28 Installing ARCserve on Hyper-V Core None
2009-05-26 Disposable end-point model 4.7
2009-04-20 Virtualization and BCP Webinar Today 5
2009-04-13 Virtualization Webinar next Monday None
2008-12-23 Virtual server Sprawl None
2008-11-14 More on VDI None
2008-11-13 XenDesktop and Virtual Desktop Infrastructure None
2008-10-16 Hyper-V Disk Issues None
2008-09-30 Huh? VMware's ESX KO's a roughly built Hyper-V package None
2008-08-27 How Microsoft Hyper-V Helped My IT Shop Revamp Disaster Recovery None
2008-04-06 Virtualization for Disaster Recovery: Strategies None
2008-04-05 Virtualization for Disaster Recovery: Metrics None
2008-03-12 XenServer hangs on Himem.sys when booting DOS None
2005-08-17 Move an OS, set the IP, and see the IP address you have entered is already assigned None

Uncategorized (7)

Date Title Rating
2011-05-24 Mark Twain on jury duty None
2008-12-12 System Center Data Protection Manager 2007 (DPM) None
2008-10-01 The Technology Angle of the Economic Situation None
2008-08-11 Viigo overdrives RSS on your Blackberry None
2008-05-20 Delegating to Strengths None
2008-05-17 SQL Tip: Last Update Time None
2004-04-04 Protecting your assets: Trademarks None

Total

213 posts

70 raters

    Log in