• RT @danphilpott: Like shuurl.com as more secure URL service, 1 extra click but gives page image, full URL & site rating from Web of Trust #
• RT @carnal0wnage: blackhatdc valsmith and collin’s talk was really good tracking blog spam back to russia #
• RT @carnal0wnage: and code injection back to china #
• RT @mubix: RT @BlackHatEvents: Moxie Marlinspike’s presentation about new SSL attacks is now online is here: http://bit.ly/ALxHT #
• RT @danphilpott: First talk was about CyberWATCH educational program, http://cyberwatchcenter.org #issanova #
• RT @danphilpott: CAG to have draft release out on CSIS web site, possibly on Monday. #issanova #
• RT @danphilpott: Asked if FISMA practitioners consulted (part of consensus) prior to CAG release. Unsurprisingly answer was no. #issanova #
• RT @danphilpott: @rybolov Second speaker here is a Congressional aide. And he just referenced Jack Bauer. #
• RT @carnal0wnage: BlackHat DC Day1 writeup minus tshirt bitching http://tinyurl.com/b2tbov #blackhatdc #
• RT @danphilpott: Back from #issanova, little disturbed by approach of CAG but what saw looked reasonable for addressing subset of security. #
• RT @rybolov: @danphilpott so Consensus Audit Guidelines isn’t really a consensus is it? #
• RT @danphilpott: Maybe Michael Muckin’s Vista Security Internals paper at BlackHat DC 2009 will suffice-pdf: http://zi.ma/0f0927 #
• RT @rybolov: @danphilpot CAG is like guys you’ve never heard of before who write their own crypto–where the hell did they come from? #
• RT @dojosec: DojoSec Monthly Briefings – March 5, 2009 – http://www.dojosec.com/?p=35 #
• Word! RT @rybolov: Once again, I ask: how can you do “security testing” when you don’t have requirements to build with in the first place? #
• This is where most of our day jobs fit in anyway. RT @mubix: Blogged Winning Hacker Competitions as Defenders http://tinyurl.com/blqumu #
• RT @danphilpott: NIST released SP 800-106 Randomized Hashing for Digital Signatures: http://is.gd/khGc (PDF) #
• RT @danphilpott: NIST release SP 800-107 Recommendation for Using Approved Hash Algorithms: http://is.gd/khGG (PDF) #
• RT @danphilpott: This is different, NIST released the comments for draft SP 800-120: http://is.gd/khIZ (PDF) #
• RT @danphilpott: NIST released ITL Security Bulletin on Security of Cell Phones and PDAs: http://is.gd/khKn (PDF) #
• Go Dan. RT @rybolov: @danphilpott goes all crazy on the Consensus Audit Guidelines: http://tinyurl.com/byf944 #
• Guess I should have read ahead. RT @danphilpott: Posted “The 10 CAG-egorically Wrong Ways to Intro Standards”: http://is.gd/kiiX #
• RT @carnal0wnage: modern social engineering webcast http://www.ethicalhacker.net/content/view/235/1/ #
• Wow, this is awesome! RT @novainfosec: via @wadew: REL: tinyurl protections. checkout: http://www.requestpolicy.com/ #tools #
• Yeah, this weekend I got like 50 new random followers. I’ll have to report them. RT @wadew: FYI: report twitter spammers to @spam #
• RT @securitytwits: RT @lennyzeltser: Anyone tracking time b/t patch & exploit? Feels like window is decreasing, but I wonder what data says. #
• RT @rybolov: CAG article: http://tinyurl.com/cd2tgk #
• RT @rybolov: CAG article is BS because the agencies aren’t pushing the standard, it’s done from outside by SANS tools. #
• RT @mubix: @securitytwits RT @jeremiahg: Posted the “Top Ten Web Hacking Techniques of 2008″ http://is.gd/kxCF #

Tags: digest, grecs, twitter

This entry was posted on February 23, 2009 at 11:59 pm and is filed under NoVA Email Lists/Networking. You can follow any responses to this entry through the RSS 2.0 feed.