From Security Weekly Wiki
Jump to navigationJump to search

Announcements & Shameless Plugs

PaulDotCom Security Weekly - Episode 264 for Thursday October 20th, 2011.

  • Friday October 28th is our 12 hour podcast for Hackers for Charity - we have a special interview with Johnny Long, Kevin Mitnick and other special guests in the works.

Guest Interview: Mike Poor

7:30 PM EDT

Mike poor.jpg

Mike Poor is a founder and Senior Security Analyst with InGuardians. Mike is an author and editor of the international best seller Snort 2.1 book from Syngress, and is a Handler for the Internet Storm Center. Mike teaches Intrusion Detection for the SANS Institute and has supported Intrusion Detection and Incident Response teams for the military, and has worked for Sourcefire as a research engineer.

  1. Mike, describe for us the state of intrusion detection today? Is it still dead? Back from the grave like a zombie?
  2. What are some of the most common pitfalls that organizations fall into with respects to intrusion detection?
  3. Is intrusion prevention useful and do you see a lot of organizations blocking attacks with this technology?
  4. So-called "smart firewalls" seem to be all the rage these days, blending IDS, IPS, and A/V into the firewall, is this a good idea?
  5. How does our software go about killing us? (Reference: http://inguardians.com/pubs/FriendlyTraitor.pdf)
  6. Defensively, what is the number one thing that organizations don't do?
  7. Offensively, what is the one thing that penetration testers can do better?

Five quick questions:

  1. Is shell just the beginning?
  2. When playing ass grabby-grabby, would you want to go first or second?
  3. Windows, OS X, or Linux?
  4. Who would you rather make out with, Jenna Jameson, Linux Torvalds, or Ed Skoudis?
  5. 3 words you use to describe yourself...

Stories For Discussion

Paul's Stories

Jack's Stories

Other Stories