IBM announced yesterday that it had a terrible quarter. They missed earnings, the stock plunged, and Warren Buffett lost a billion dollars. Everyone assumes Warren Buffett is worried, or livid, and selling off the stock like it’s on fire.
My name, and my department’s name in general, gets thrown around a lot at work. We have a bit of a reputation as the can’t-do guys. Professionalism dictates I not go into specifics about what kinds of things we reject or disapprove, but if I were to explain them, no security professional would disagree with […]
In my day, I did plenty of hardware maintenance in the field. In fact, the only time one of my bosses ever saw me working, I was swapping out failed memory in a server. “How’d you know it needed to be done?” he asked. “It told me.” That’s why I always loved HP Proliant servers. […]
“So did you know there’s a Windows version of Shellshock?” a coworker asked the other day. “What, Cygwin’s bash?” I asked. “No, in CMD.EXE.” I thought for a second, back to some really nasty batch files I’ve seen that do goofy stuff with variables and parenthesis and other reserved characters. Suddenly it made sense. Those […]
A really bad remote code execution bug surfaced yesterday, in Bash–the GNU replacement for the Unix shell. If you have a webserver running, or possibly just SSH, it can be used to execute arbitrary code. It affects anything Unixy–Linux, BSD, Mac OS X, and likely many proprietary Unix flavors, since many of them have adopted the […]
Corporations are in business to make money. That’s the premise of the classic business book The Goal, and the point of The Goal is that a lot of companies forget that. That also means they’re not exactly happy to spend money unless there’s an obvious reason why spending that money is going to help them make […]
My tips for using Sysinternals’ Du.exe were well received last week, and my former coworker Charlie mentioned a GUI tool called Windirstat that I had completely forgotten about. For the command-line averse, it’s an incredibly useful tool. But there’s one thing that Du.exe does that makes the CLI worthwhile. It will output to CSV files for […]
I learned the hard way a few weeks ago how net neutrality can be equated with socialism, an argument that puzzles people who work on computer networks for a living and see networking as a big flow of electrons. I think it’s very important that we understand how this happens. Here’s the tactic: Find a […]
Early this week, Charter had a major outage affecting most of its customer base. Those who use third-party, non-Charter DNS servers were unaffected. This is a case where making a performance-related change to your system also makes it more reliable.
I guess the Windows technical support scammers are getting robo-dialers, because I got an automated call over the weekend telling me that my computer was sending alerts to their servers, and to press “1” to speak with a Microsoft Certified technician. So I pressed “1” to see what tactics this particular scammer would use.