http://www.secuobs.com Observatoire de la securite Internet fr webmaster@secuobs.com 2009-07-11 18:13:08 - Roer.Com Information Security Blog Information security for entrepreneurs : I am sick and tired of all the comment spam that clogs up this blogIs it time for me to set up a captcha servcie or something similarThe Akismet plugin certainly is no longer up to the task of keepingthe new comment bots at a distance, so I need to do something So far,I see three choices:1 Leave it as is, and spend a lot of time cleaning up2 Disallow comments all together, and loose the litle interaction Istrive to build I love comments from readersit is those left byrobots I dislike :3 Find a solution that enables people to easily add comments, andautomatically keep the spam awayOption two is no option So what I will do is go for option three, anduntil I find a viable solution, I will use option one - as it willcontinue to mess with my mind until I have found a solution Or helpme prioritize correctly, so to sayAny and all tips and ideas are more than welcomed I will write a poston what solution I choose, and whyThanks :IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGEIMAGEhttp://www.secuobs.com/revue/news/119215.shtmlhttp://www.secuobs.com/revue/news/119215.shtml Secuobs.com : 2009-06-30 12:30:37 - Roer.Com Information Security Blog Information security for entrepreneurs - I will be giving a speak at the Security 2009 even in Oslo, October1st 2009My topic is strategic use of information security from a top levelexecutive point of view I will post link etc as soon as it isavailableIMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGEIMAGEhttp://www.secuobs.com/revue/news/115216.shtmlhttp://www.secuobs.com/revue/news/115216.shtml Secuobs.com : 2009-06-29 20:48:24 - Roer.Com Information Security Blog Information security for entrepreneurs - This is a great image of the humans extraordinary destructivecreativityIMAGEMore great images about humans, not security nor weapons here:http://wwwbehancenet/Gallery/FM365/242634http://www.secuobs.com/revue/news/114963.shtmlhttp://www.secuobs.com/revue/news/114963.shtml Secuobs.com : 2009-06-22 19:38:27 - Roer.Com Information Security Blog Information security for entrepreneurs - IMAGEI am spending quality time at an airport again The bar serves one ofmy favorite beers - Guinness And as in all bars in an airport, thereare plenty of other people who mend their thirst with alcohol Likethis bloke across my table I know his name, The company he is with,what he does there and similar info He knows nothing about me Thisis not uncommon, mind you Getting people to talk is simply a matterof listening Asking the right questions Buying another beer Thesame mechanisms you play when picking up someone on the town So whydo I care to write about it this time This blue eyed man with lightblond hair, a tendensy of loosing some of it on the top, and a facethat could belong to a 25 and a 45 year old Resting carelessly on thechair, his Dell XPS laptop on the table and his beer in his handMidlevel executive, perhaps big accounts sales guy He is anothersecurity guy And now I know his story The story of his customers,what he did in this country, where his favorite office is and who theyare currently combatting in court I must admit it is very tempting tospill his gut all over my blog, but I do not believe he would learnanything at all So I will only ask you - that is you, not him - toremember that keeping your mouth shut comes with te job Even when youdrink a beer at a foreign airport Who knows - perhaps I where paid byyour employer to check how much you talk Then you would know What ifI where a competitor A customer Someone who see an opportunityAwareness is not only for the others Awareness is for us too Right-- Post From My iPhoneIMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGEIMAGEhttp://www.secuobs.com/revue/news/112304.shtmlhttp://www.secuobs.com/revue/news/112304.shtml Secuobs.com : 2009-06-16 16:39:19 - Roer.Com Information Security Blog Information security for entrepreneurs - Ever since moving back to Oslo, I have had some challenges with mynetwork access from my office Due to walls thick as an averageamerican excuse me if I offend you, made out of steel enforced stoneand concrete, I decided that I would use two Wifi APs and just bridgethem I have Wifi just out in the hallway, and the reception has beenfine with my laptopSince I moved my workstation here some time ago, I have had some realchallenges with accessing any segments of the net outside of my smalloffice segment laptop, workstation, testbench, printer I knew thatthe wifi connection where to blame And I knew I had to fix it myselfAnd as you know, I fix my own stuff only after I have fixed all theother stuff I believe I am not alone in thisI dreaded to have to drill holes in the walls, and stretch cablesfrom a security point of view, I probably should, and being lazy, Ijust postponed itUntil today I just had enough of Skype dropping every other minute,downloading being impossible, and worse - not being able to use myworkstation to upload changes and administer the all the secret stuffthat I mess up around the mesh No, I will not tell you where andwhat, since I do not want you to know that it is me that creates themessSince I am still lazy, I decided that I would not take the elevatordown to the server room and fetch cable, connectors, drill and therest of the bits and pieces required to mount a cable Instead, I wentout in the sunshine, and just bought myself a new AP, reasoning thatthe Linksys ethernet bridge that I bought back in 2005 possiblyearlier too, had finally decided to die on me, and that it was just amatter of switching it with a different box I picked up a Jensen APwith switch included, and where able to clean my office while ditchingtwo devices, bundles of cable and two PSUsThe Jensen thingie is a cheap box, and after some initial fidling withthe setting, connected straight to the AP in the hallway So far, itseems to be stable, and give me a link to the net that is not going tobug me too much I hopehttp://www.secuobs.com/revue/news/110243.shtmlhttp://www.secuobs.com/revue/news/110243.shtml Secuobs.com : 2009-06-09 14:54:35 - Roer.Com Information Security Blog Information security for entrepreneurs - As most of my readers know, I really have a hard time with the airportsecurity circus So much more fun it is when it actually turns out tobe a nice experience Like today, when there where 9 sec staff waitingto intimidate me, and no line at all I smiled, they smiled, and theywhere not only polite but also fun They joked even No, I did not tryto explain that the chewing gum was really plastic explosives I donot think they would treat me as nice if I had -- Post From My iPhonehttp://www.secuobs.com/revue/news/107398.shtmlhttp://www.secuobs.com/revue/news/107398.shtml Secuobs.com : 2009-06-08 13:42:45 - Roer.Com Information Security Blog Information security for entrepreneurs - I am now leaving for the European Conference of Junior ChamberInternational, where I will conduct trainings, party and meet friendsfrom all over the world I might get inspired to write some posts, butthen again, I may be way to busy enjoying myselfAnd - I hope to get the Most Outstanding Trainer Award, as I have beennominated to gethttp://www.secuobs.com/revue/news/106902.shtmlhttp://www.secuobs.com/revue/news/106902.shtml Secuobs.com : 2009-06-08 10:45:02 - Roer.Com Information Security Blog Information security for entrepreneurs - This is the question asked by the Infosec Cynic What is your opinionIMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGEIMAGEhttp://www.secuobs.com/revue/news/106874.shtmlhttp://www.secuobs.com/revue/news/106874.shtml Secuobs.com : 2009-05-29 18:37:09 - Roer.Com Information Security Blog Information security for entrepreneurs - Guest post by David Aminzade – Regional Director TufinThree years ago I bought a house in the south of Italy and since thenI have been trying to immerse myself in the local culture It recentlyoccurred to me that actually there was a great deal of similaritybetween the nuances and national characteristics of Italy and thechallenges faced by security professionals todayA love of SpaghettiA rule base that has evolved over several years with several vendors’products and many different security administrators will certainlyresemble the characteristics of spaghetti When you start pulling onone end you never know what the consequences areEven in the south of Italy companies now-a-days need to improve theefficiency of their firewall operation and make what they have gofaster and further as budget for hardware or software upgrades areunder close scrutiny The ability to understand which rules are mostfrequently used, enable the security professional to improveperformance by ensuring a close match between rule ranking and ruleusage This is even more the case when non used rules and shadowedrules can be clearly identified These classes of rules only addcomplexity, degrade performance and increase business continuity riskFirewall overviewAll road signs are only suggestionsFor all of you who have driven in the south of Italy you will knowthat all traffic laws, which by the way are still contained in theItalian criminal not the civil code, are merely suggestions to beadhered to or ignored depending on the situationSuch is often the case when people are writing new or changingexisting security rules We all know that we should include a commentor a clean up rule but sometimes expediency makes us ignore these goodpractice guidelinesThe need to meet with a growing number of compliancy requirementseither internal audit reviews, external audit demands such as SOX orBasel II or from industry specific requirements such as PCI-DSS is farmore costly if a history of indiscipline has existedIt is of little use spending money to optimise your firewallinfrastructure and enable automatic compliance if you do not deal stopsubsequent non compliance The ability to flag non compliance to therelevant IT/security/compliance/business manager protects yourinvestment, maintains your firewall estate’s performance and ensurescost free ongoing complianceComplianceSleeping in the afternoonOne local habit that I have taken the most easily to is sleeping inthe afternoon The opportunity to wind down and take a nap after anice lunch is a great way to recharge your batteries I think thatthis should be added as a criterion for any new security investment“Does this investment allow me to take a nap in the afternoon” In summary it is clear to me that companies are looking for ways toremove cost from firewall administration whilst adding performanceThe ever increasing demands of compliance from all quarters means thatthe delivery of compliance needs to be automated and assured Toensure ongoing OPEX reduction and operational efficiency, rule changesgoing forward need to be assessed against and internal or externalbest practice standard automatically and violations flagged to theresponsible managerCiao Amicihttp://www.secuobs.com/revue/news/103167.shtmlhttp://www.secuobs.com/revue/news/103167.shtml http://www.secuobs.com Observatoire de la securite Internet fr webmaster@secuobs.com 2009-11-06 18:12:09 - Roer.Com Information Security Blog Information security for entrepreneurs : As promised, here is a report from the Security 2009 Conference that took place in Oslo in October The conference had focus on security issues related to the current economic situation, and how to deal with these issues IMHO, the conference fell a bit too heavy on product vendors jerking off from the stage, although most of them did quite well at controlling their need to mission their own solutions to be the right one for all As we all know, there is no one-size-fits-all when it comes to security It all depends on the risk profile of the organization, and their security strategy to uphold their profile I'll hold my horses for now, this post is a report, not a rant The day started out with mingling, breakfast and saying hello to the usual crowd that shows up at these things And some new of course As you may remember, I was still very much recovering from my car crash, and being the chair was a true challenge to me I did not have that much wit about me this day, which probably only served to show me off more serious, and more cocky than my usual self IMAGE Security_2009 Except from the producers jerking off from stage, there were two sessions I liked much The first one being Per Thorsheim http twittercom thorsheim talking about passwords His been studying the subject for almost a decade, and he has some interesting points Expect an interview with him At some point The second interesting session was Behavioral biometrics, by Dr Patrick Bourse His research is very interesting indeed, showing that using the type pattern of an individual, it is very easy and quick to determine if the one typing is the right person So for identification purposes, his research is truly promising IMAGE Security_2009 I'd like to thank Renate Thorseid from the Data Protectorate for her insights on privacy issues, and I am certain there where participants who learned something new In addition, Matias Cuba, from Fortinet, deserves a special notice for giving clear and valuable information without speaking of his products neither did he talk negatively about any competitors I used to work with Matias some years ago, and he is growing more professional by the day Thumbs up, Matias IMAGE Security_2009 In addition to the speeches, there was a round table session where the participants shared their experience and questions All over, the Security 2009 event went pretty well IMO I used the opportunity to talk about how the top level management and their actions are critical in any crisis Thanks for this opportunity to meet and network IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/158273.shtmlhttp://www.secuobs.com/revue/news/158273.shtml Secuobs.com : 2009-11-03 18:18:03 - Roer.Com Information Security Blog Information security for entrepreneurs - Transparency International, the international watchdog against corruption, claims the global ressession came about due to corruption, according to this article Fostering a culture of corporate integrity is essential to protect investment, increase commercial success and ensure the stability sought by poor and rich countries alike, particularly as we climb out of an historical crisis, saidTransparency International Chair Huguette Labelle Why am I not surprised We need to find efficient ways of controling and fighting corruption, as corruption are not only found in the 3rd world - we are all surrounded by it Just consider - when was the last time you either gave or recieved an expensive gift to a client, or from a vendor This happens all the time, and the size and type of the gifts are ever increasing I do not mind a christmass card, or even a small flower or perhaps even a bottle of wine But when expensive trips, horses yes, this actually happend in Norway , cars, houses, contracts and so forth are becoming the standard, we have moved far off the target What experience do you have with giving or recieving gifts What is acceptable to you Where do you draw the line Thanks to canadianPI for the tip http://www.secuobs.com/revue/news/156778.shtmlhttp://www.secuobs.com/revue/news/156778.shtml Secuobs.com : 2009-10-02 11:00:33 - Roer.Com Information Security Blog Information security for entrepreneurs - Transperancy International, the international watchdog against corruption, claims the global ressession came about due to corruption, according to this article Fostering a culture of corporate integrity is essential to protect investment, increase commercial success and ensure the stability sought by poor and rich countries alike, particularly as we climb out of an historical crisis, saidTransparency International Chair Huguette Labelle Why am I not surprised We need to find efficient ways of controling and fighting corruption, as corruption are not only found in the 3rd world - we are all surrounded by it Just consider - when was the last time you either gave or recieved an expensive gift to a client, or from a vendor This happens all the time, and the size and type of the gifts are ever increasing I do not mind a christmass card, or even a small flower or perhaps even a bottle of wine But when expensive trips, horses yes, this actually happend in Norway , cars, houses, contracts and so forth are becoming the standard, we have moved far off the target What experience do you have with giving or recieving gifts What is acceptable to you Where do you draw the line Thanks to canadianPI for the tip IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/146780.shtmlhttp://www.secuobs.com/revue/news/146780.shtml Secuobs.com : 2009-10-01 15:48:35 - Roer.Com Information Security Blog Information security for entrepreneurs - I am spending the day chairing the Security 2009 event in Oslo, Norway I update my twitter account during the day http twittercom kairoer I will do interviews etc over the next month or so - have to heal my hand first IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/146440.shtmlhttp://www.secuobs.com/revue/news/146440.shtml Secuobs.com : 2009-09-14 21:01:43 - Roer.Com Information Security Blog Information security for entrepreneurs - Practical Intrusion AnalysisBook review Practical Intrusion Analysis Prevention and Detection for the Twenty-First Centrury, by Ryan Trost This book is a great resource to learn and to expand your knowledge and experience in intrusion analysis At first glance it seems to be very technical and it is while when your start reading it you realise that Trost want you to follow him on the journey from the first step He does this by explaining in detail things you may already know And you may feel like he treats you as a child at first But fear not he does this of a simple reason he needs to make sure that you both are on the same level As the book progresses, Trost shows you how to analyse your network traffic at great details, using practical examples that you easily can replicate using your own equipement And the level of understanding he engraves in your early in the book makes perfect sense later Another thing I enjoy much is his focus in intrusion analysis without sole focus on network intrusion He also covers RFID, biometrics, wireless and much other fun I am not really getting is the big focus on Web Application Firewalls WAF devices On the other hand, everything seems to be Web 20 these days, so it does have some relevance I like particularly well the geospatial intrusion detection section I do not think it is relevant to everyone to be able to track the intrusion to China or Russia, but for some it certainly is And understanding the global aspect of attacks is important, and being able to show the attack information on a map may proove very useful when communicating with the executives Over all, I am impressed by this book and highly reccomend it to anyone even remotedly interested in the topic of intrusion detection ISBN-13 978-0-321-59180-7 Author Ryan Trost Publisher Addison-Wesley Pearson Education Get it on Amazon Practical Intrusion Analysis Prevention and Detection for the Twenty-First Century IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/140731.shtmlhttp://www.secuobs.com/revue/news/140731.shtml Secuobs.com : 2009-09-10 20:07:42 - Roer.Com Information Security Blog Information security for entrepreneurs - I just made the first of a serial of posts covering the accident It is posted over at my motivational blog I have included some images too, from the vehicle and myself It is pretty rough stuff, you have been warned IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/139666.shtmlhttp://www.secuobs.com/revue/news/139666.shtml Secuobs.com : 2009-09-03 04:37:40 - Roer.Com Information Security Blog Information security for entrepreneurs - Just a quick post to inform you that I am currently at a hospital, recovering from a sever car truck actually crash last week Allthough I almost did not make it, I am doing great now, and recovering quickly So be warned that more cynic sarkasm and irony to be dished out from here in the near future Ps - thanks for all calls, flowers, wishes and everything - I really really appreciate it, and I had no clue that so many care so much for me Keep smiling to strangers IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/137194.shtmlhttp://www.secuobs.com/revue/news/137194.shtml Secuobs.com : 2009-08-14 20:56:02 - Roer.Com Information Security Blog Information security for entrepreneurs - Irish virus Friday fun Irish virus IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/130994.shtmlhttp://www.secuobs.com/revue/news/130994.shtml Secuobs.com : 2009-08-13 16:40:07 - Roer.Com Information Security Blog Information security for entrepreneurs - Staying up-to-date in this fast-paced word can be a challenge To the resque are groups and communities online - like LinkedIn groups I participate and moderate some groups Here are a couple of groups on LinkedIn that I find value in NorSEC - a group for Nordic security professionals only Vulnerability scanning Patch Management - specialized group Information Security Community - the largest infosec group, many interesting topics and people here There are many other groups available too - just search for Security on LinkedIn, and find the groups that interest you IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/130618.shtmlhttp://www.secuobs.com/revue/news/130618.shtml Secuobs.com : 2009-08-13 12:07:03 - Roer.Com Information Security Blog Information security for entrepreneurs - I have pointed you to resources on how to hack WEP enabled wireless networks in the past Now it is time to do so again, with a strong reccomendation that you immediately stop using WEP, and move on to WPA-PSK So if you are still on WEP, please make an appointment with yourself to change it And please do so now http://www.secuobs.com/revue/news/130571.shtmlhttp://www.secuobs.com/revue/news/130571.shtml Secuobs.com : 2009-08-09 13:38:46 - Roer.Com Information Security Blog Information security for entrepreneurs - As promised, I hereby post the update about the Security 2009 event where I will be speaking Date October 1st Venue Grand Hotel, Oslo, Norway More details and full program here See you there IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/129308.shtmlhttp://www.secuobs.com/revue/news/129308.shtml Secuobs.com : 2009-07-31 21:12:11 - Roer.Com Information Security Blog Information security for entrepreneurs - This is a great read for anyone even remotedly interested in Information Security and the principles that relates to attack vs defense Most security people seems to forget that security is merely and sometimes marrily parts of business as usuall , meaning security is never a means in it self, it is only there to sustain business As such, there should be no chock that security is very closely related to economics, not to technology This paper was released in 2001, and is equally relevant today Go on Read Why Information security is hard - an economic perspective, by Ross Anderson Should you not like it, you are allowed to kick your own butt http://www.secuobs.com/revue/news/127040.shtmlhttp://www.secuobs.com/revue/news/127040.shtml Secuobs.com : 2009-07-30 12:21:03 - Roer.Com Information Security Blog Information security for entrepreneurs - The other day, I went into an elevator, and ended up on a ride much like the one in the Charlie and the chocolate factory movie Except there where no chocolate There where only the Cynic Needless to say, I was stuck The cynic used his time good while I tried to control my panic And he played me like a 3-year old The resulting information leak is found here http wwwinfoseccyniccom 2009 07 30 kai-roer-stuck-in-the-lift-with-the-cynic Go on It is probably one of the best interviews about me that exists Oh Thank you, Cynic Remind me to take the stairs next time we meet IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/126474.shtmlhttp://www.secuobs.com/revue/news/126474.shtml Secuobs.com : 2009-07-29 21:14:27 - Roer.Com Information Security Blog Information security for entrepreneurs - I am consolidating the look and feel of my blogs First step is using the same theme template, dn hoepfully it will enable a more consistent look and feel I will play around with the themes until I am happy And you may add your comments and suggestions if you like Thank you for your patience IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/126235.shtmlhttp://www.secuobs.com/revue/news/126235.shtml Secuobs.com : 2009-07-23 01:34:45 - Roer.Com Information Security Blog Information security for entrepreneurs - So I have finally taken the time to review the comment spam challenge I have had in the past I do not mind that my blog is becoming more popular, but I do prefer real readers, not some bot filling it up with strange comments The past 2 years, I've used Akismet to control spam And up until the past few months, it has done the job without complaints The past few months, it has not been up to it Some research shows that the Drupal module of Akismet is no longer maintained, thus no longer being updated So much for open source, huh And I have grown tired of deleting false negatives and finally today I found what I hope is the solution Its name is Mollom It offers the same as Akismet, as free service, or optionally as a paid service if you need high availability, or a non-branded CAPTCHA I need neither, at least not at this poin, thus the free service works great for me I will test Mollom over the next few weeks and see how it copes with the task Hopefully false negatives will be down to zero now http://www.secuobs.com/revue/news/123753.shtmlhttp://www.secuobs.com/revue/news/123753.shtml Secuobs.com : 2009-07-11 23:03:15 - Roer.Com Information Security Blog Information security for entrepreneurs - Guest post by David Aminzade Regional Director Tufin Three years ago I bought a house in the south of Italy and since then I have been trying to immerse myself in the local culture It recently occurred to me that actually there was a great deal of similarity between the nuances and national characteristics of Italy and the challenges faced by security professionals today A love of Spaghetti A rule base that has evolved over several years with several vendors products and many different security administrators will certainly resemble the characteristics of spaghetti When you start pulling on one end you never know what the consequences are Even in the south of Italy companies now a days need to improve the efficiency of their firewall operation and make what they have go faster and further as budget for hardware or software upgrades are under close scrutiny The ability to understand which rules are most frequently used, enable the security professional to improve performance by ensuring a close match between rule ranking and rule usage This is even more the case when non used rules and shadowed rules can be clearly identified These classes of rules only add complexity, degrade performance and increase business continuity risk Firewall overview All road signs are only suggestions For all of you who have driven in the south of Italy you will know that all traffic laws, which by the way are still contained in the Italian criminal not the civil code, are merely suggestions to be adhered to or ignored depending on the situation Such is often the case when people are writing new or changing existing security rules We all know that we should include a comment or a clean up rule but sometimes expediency makes us ignore these good practice guidelines The need to meet with a growing number of compliancy requirements either internal audit reviews, external audit demands such as SOX or Basel II or from industry specific requirements such as PCI DSS is far more costly if a history of indiscipline has existed It is of little use spending money to optimise your firewall infrastructure and enable automatic compliance if you do not deal stop subsequent non compliance The ability to flag non compliance to the relevant IT security compliance business manager protects your investment, maintains your firewall estate s performance and ensures cost free ongoing compliance Compliance Sleeping in the afternoon One local habit that I have taken the most easily to is sleeping in the afternoon The opportunity to wind down and take a nap after a nice lunch is a great way to recharge your batteries I think that this should be added as a criterion for any new security investment Does this investment allow me to take a nap in the afternoon In summary it is clear to me that companies are looking for ways to remove cost from firewall administration whilst adding performance The ever increasing demands of compliance from all quarters means that the delivery of compliance needs to be automated and assured To ensure ongoing OPEX reduction and operational efficiency, rule changes going forward need to be assessed against and internal or external best practice standard automatically and violations flagged to the responsible manager Ciao Amici IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE IMAGE http://www.secuobs.com/revue/news/119550.shtmlhttp://www.secuobs.com/revue/news/119550.shtml Secuobs.com : 2009-07-11 19:42:41 - Roer.Com Information Security Blog Information security for entrepreneurs - This is the question asked by the Infosec Cynic What is your opinion http://www.secuobs.com/revue/news/119311.shtmlhttp://www.secuobs.com/revue/news/119311.shtml