security Archives

Home » security » Page 15

PIF file type meaning

Dave Farquhar Retro Computing, security September 17, 2018September 15, 2018

When it comes to file types you should never trust, PIF belongs high on the list. PIF used to be an important file type, but it’s largely obsolete today. But if you’re curious, here’s the PIF file type meaning.

Get ready for a trip down computing history lane. But this once-important file format is risky today. In all honesty, it’s largely outlived its usefulness in most instances.

Dave Farquhar

David Farquhar is a computer security professional, entrepreneur, and author. He has written professionally about computers since 1991, so he was writing about retro computers when they were still new. He has been working in IT professionally since 1994 and has specialized in vulnerability management since 2013. He holds Security+ and CISSP certifications. Today he blogs five times a week, mostly about retro computers and retro gaming covering the time period from 1975 to 2000.

dfarq.homeip.net

Are PDF files safe to open?

Dave Farquhar security September 12, 2018September 8, 2018

Are PDF files safe to open? It depends. Don’t you hate when security people say things like that?

There are risks involved with PDF files, but you probably also can’t avoid PDFs entirely. So here’s what you can do to work with PDF files safely.

Dave Farquhar

dfarq.homeip.net

Cyber security and cryptography

Dave Farquhar security September 11, 2018November 27, 2018

Cryptography is one of the more difficult concepts to master when studying for a certification like CISSP. I know from my own experience it’s really easy to let the details overwhelm you. After seeing an acquaintance’s Linkedin post, I thought I’d write about cyber security and cryptography and what you really need to know.

Let me start with one thing. I have never, ever had to encode or decode anything by hand. I’m very confident I can stay employed another 20 years in the cyber security field and never have to do the math myself.

Dave Farquhar

dfarq.homeip.net

CISSP vs CEH

Dave Farquhar security September 7, 2018September 7, 2018

CISSP and CEH are two of the most common computer security certifications you’ll see in security program job descriptions. If you want to advance your career by becoming a certified professional, you might consider each of them. Here’s my experience of CISSP vs CEH.

Dave Farquhar

dfarq.homeip.net

Vulnerability assessment vs penetration test: What’s the difference?

Dave Farquhar security September 3, 2018December 23, 2019

You can expect any midlevel or higher security certification test to require you to compare and contrast a vulnerability assessment vs penetration test. The difference is important. But since I still see people confusing the two, let me explain them.

I conduct vulnerability assessments for a living. I’ve done some light pentesting in the past, but I’m happier doing assessments. I don’t want to be a penetration tester. That seems strange to some people. Maybe that gives me a good perspective to compare and contrast the two, because both have their uses. But they aren’t interchangeable.

Dave Farquhar

dfarq.homeip.net

Cleanbrowsing.org review

Dave Farquhar security August 27, 2018October 11, 2019

I’ve advocated using something other than your ISP’s DNS for years. There’s little if any downside to doing so, and tons of upside. My current favorite third-party DNS is Cleanbrowsing.org because it does so much to improve performance and security. Here’s my Cleanbrowsing.org review.

First things first: Don’t worry about how much Cleanbrowsing.org costs. It has useful tiers available as a free service, even though it’s tremendously valuable.

Dave Farquhar

dfarq.homeip.net

Should I buy a used Chromebook?

Dave Farquhar Hardware, security August 15, 2018August 22, 2018

Should I buy a used Chromebook? I asked myself that question for years. And argued with myself about it. Finally I decided to take the plunge and bought one. Here are the pros and cons to buying a used Chromebook, and what you should look out for to protect yourself.

Overall I recommend them. For less than the price of a year of Lifelock, you can do something that really will make a difference in how secure your personal finance is.

Dave Farquhar

dfarq.homeip.net

Extract a MAC address from Excel data

Dave Farquhar Office, security July 31, 2018August 3, 2018

A vulnerability scanner like Nessus or Qualys will record the MAC address of every computer it finds. But Qualys doesn’t output the MAC address in a nice column format. It mixes a lot of other data into the cell. So I had to figure out how to extract a MAC address from Excel data to give an infrastructure team an inventory they wanted.

Dave Farquhar

dfarq.homeip.net

Is there a virus on my phone?

Dave Farquhar Android, security July 23, 2018September 8, 2018

Is there a virus on my phone? Or your phone? I can’t know for certain, but probably not. Here’s what to do if your phone says it has a virus and wants you to visit a web page or pay someone money.

I’ll tell you what you really need to do, and I’ll even show you a neat trick so you’ll see fewer of these messages. And none of this will cost you anything, either.

Dave Farquhar

dfarq.homeip.net

Inherent risk definition

Dave Farquhar security July 16, 2018July 16, 2018

Sometimes you’ll hear insurance professionals, banking professionals, computer security professionals, and other people who deal with risk talk about inherent risk and its counterpart, residual risk. If these are unclear to you, or you just need a refresher, you came to the right place. Let’s take a look at a simple inherent risk definition and example, as well as residual risk.

Dave Farquhar

dfarq.homeip.net