Congrats guys, gotta say I'm jealous

Nice addition to an already cool prize Jayson.

Now that is cracking prize, nice work as usual Don

Thanks CMonkeyDO

'Get out of jail free' can still be useful/important for internal terms. In addition to cya, it can also help establish the boundaries and business needs during an incident.

For example, in the event of a incident involving malware on the companies main web farm, can you pull the network to stop additional propogation? Or does the web presence have to remain up and operational at all costs, regardless of how much more difficult it makes containment?

CYA, applies both internal and external in my opinion, although could equally be in the form of a 'procedure' rather than a get out of jail document for internal scenarios.

And in answer to original question; sorry, don't know of any template available for a starting point, despite looking

For EH-Netters concerned their new toy is broken, IronKey are claiming to not be vulnerable. Full write-up of the weakness and attack vector available from them here

Impelse,

not sure what the situation is in the States but I have read the t&c's for several ISPs when trying to figure out which provider to go for. In all cases I put a quick call/email into the support desk to query their AUP and explained my profession/hobby. In all cases they agreed that what I wanted to be doing would be acceptable, especially as I had made them aware in advance, and in several cases was told that they didn't implement all of the monitoring suggested by the contract/AUP, it was just there to cover them if they decided to do more in the future.

From my experience, if you talk to the providers and have an open discussion up front you shouldn't have a problem. Although they may try to sell you a business package over your standard residential. Of course this process could also easily be abused, so your mileage may vary once they receive complaints that you are doing 'naughty' things...

Nice review Joel, I was in two minds whether to pick this one up as I was concerned it might just be a re-hash of the PCI requirements with some 'explanation' that didn't go beyond what you would already know.

Sounds like it goes beyond what I was concerned about, I'll add it to my already increasing To Read list.

P.S. On a side note one of Joel's examples jogged my memory; I was waiting for the missus outside a shop bored recently and fired up my phone's wireless scanner to be nosey. Didn't want to poke around too much but found an SSID of 'epos' running WEP, could be interesting...

Hi Akolyte,

I've run Samurai in VMWare for a few different jobs, working with both the liveCD (booted on VMWare guest) and the official VM image (version 0.6). Ran fine for me in both NAT and Bridged VMWare networking modes without issue.

Can you provide any additional info to help diagnose your problems?

• Static or DHCP IP?
• VMWare mode tried?
• Can you reach your gateway IP?
• Can you reach other machines on the network?
• Can other machines on local network reach your Samurai virtual machine?

First day back in the office and back to my 'work' mindset.

All the best to everyone for the new year.

Hi Termight,

I didn't say that CCIE pays more than security, don't have the knowledge or stats to back that up. But from anecdotal evidence you'll likely find it easier to convince non-technical HR/Management/organisations to pay big bucks for a 'network guy' than a 'security guy'. Just business mentality. But as Hayabusa states, where/what do you want to work can be more important in the long run than who will pay the most money. Plenty of factors to consider.

Hi Termight,

humbled by the request, but I'm still just learning this stuff myself. But keep asking intelligent questions around here and I'll likely be around to help when and where I can.

I wouldn't give up on the Cisco certs completely, partly because it is easier to secure/compromise a network if you have an indepth understanding of a network, and partly because there is some really good money available if you can get your CCIE.

But at the same time I would also suggest the OSCP, is a brilliant course and will/would-have answered the queries you've had today, plus a whole lot more.

Andrew

The example you provide looks like it is C, so compiling with gcc would likely be the standard scenario. Plenty of resources to help you out here.

Even then, depending on your location, or that of the forums in question it may be illegal for the sys-admins to provide you with the personal details of another member. Law enforcement would be your only avenue, and then only if you can provide evidence that a crime has been, or is being, committed.

Even if the two IP addresses match, that still wouldn't prove that the actual user is the same person. Proxies, corporate gateways, etc. could all play a part.

I'm not a USA-ian, but I liked Schmidt's introductory video on whitehouse.gov. Know this is historically a tough position in any government as it isn't seen as a priority to other departments, but I hope you can pull it off and live up to billing.