Data Privacy Day 2012

January 23, 2012 · by John · in

It’s here again.   It’s not guaranteed to be more fun than Ground Hog Day, but it is important none the less. Data Privacy Day 2012 is on January 28th. There are numerous events being hosted across Canada and the US to…

Fixing CVE-2009-3555 in Lotus Domino

January 18, 2012 · by John · in

A vulnerability assessment turned up a potential issue with my Domino servers.  CVE-2009-3555, or a security concern with SSL renegotiation. There is an easy work around for Domino, add the following parameter in your notes.ini file. SSL_DISABLE_RENEGOTIATE=1   Reference: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555…

SANS Ouch! – January 2012

January 16, 2012 · by John · in

The latest edition of SANS Ouch! is out. Every month they publish a newsletter directed at the typical web user.  Not those of us with a heightened awareness of security, but people like your office manger, mail room clerk or…

Canadian House of Commons Employees Downloading Illegal Content

January 11, 2012 · by John · in

According to the activist group, The Pirate Party of Canada, House of Commons employees are downloading illegal content before Canada’s bill C-11, the strict copyright protection legislation comes into effect. The party used youhavedownloaded.com a site that scrapes torrent sites for IP…

Starting the New Year

January 3, 2012 · by John · in

I’m starting 2012 optimistically.  I have a few goals for the year: Achieve my CISSP certification. Finish the renovations to the basement. Find time to start running again. As a ways to an end, I have joined a CISSP study group,…

Security Theatre in the Hospital

December 21, 2011 · by John · in

I was listening to the radio this morning and heard this story about how the local children’s hospital is reducing waste. One of the things they are removing from the emergency rooms is the paper that lays across the examination…

Happy Thanksgiving!

November 24, 2011 · by John · in

Just a quick note to wish all of my American friends a happy thanksgiving. (Even though they didn’t wish me one on my thanksgiving.)

Domino Disk Performance

November 18, 2011 · by John · in

So, today marks the first day that I’ve had a chance to play with our new Domino server.   Most of the hardware is pretty standard.   IBM 3650M2 hardware, 12GB of RAM and 2 quad core CPUs. Usually, the…

RCMP Camera Gaffe and Security Policies

November 17, 2011 · by John · in ,

I read about the RCMP’s gaffe with leaving images from past investigations on a camera used for surveillance of a suspected graffiti artist, and immediately thought of this article entitled “IT Security policies Widely Ignored, Survey Suggests”. Is that what happened?  …

Anonymous and the City of Toronto

November 16, 2011 · by John · in ,

Toronto Mayor Rob Ford is confident that City of Toronto systems are secure after a threat from hacking group Anonymous. I read that in an article from SC Magazine.  He really couldn’t say anything else, but I wonder if he…