Security Ripcord

Interesting Search Keywords

Here are some search keywords that have directed people to my site and that have stood out to me when reviewing readership numbers and other statistics. This will be updated periodically, so come back often.

Interesting:

  • colon source – ummm, errrr, well, I really don’t know what to say about that one
  • what a firewall and ids can tell you about an incident – That you need to turn on more logging
  • 192.168.2.242 – malicious insider? rouge computer? physical or virtual? wireless???? OH, NOOOSSSSS
  • why ssn is not a good primary key – some people just do not get it.  I guess in the end this is a legitimate questions but, please, come on…..how hard is it?
  • do porn sites track visitors – Hmmmm….where to start with this one? What do your pop-ups tell you?
  • security metrics iso – A Knoppix for Security ROI. Who’da thunk it???
  • why don\’t they get a white person to play ripcord instead of a black person? – Great!!!! Now I’m getting G.I Joe hits from ethnically concerned people.
  • i have a incident – Trouble!!! I hope all went well. Sorta makes you want to help.
  • lara intelguardians – Lara, you’ve been Googled
  • update gimp dll – I know what this means but it is still kinda dirty when you say dll and don’t spell it out
  • \”create a new user with uid 0\” – Hmmmm, got root?
  • the perimeter is dead – LONG LIVE THE PERIMETER!!!
  • oregon state employee fired for virus – Ouch
  • undercover police officers and tattoos – okay, is this just a wannabe cop checking to see if it is permitted….or…..is this somebody looking to see if somebody has started documenting this and put it online…probably the former but the latter is more interesting
  • security training liability – If you don’t do it, someone will sue. If you do it…..someone will sue. Either way, you are liable.
  • backtrack blog penetration – D’oh!!!….don’t point them here!!!!
  • unlimited access to sites through proxy – somewhere, out there, there is a policy violation going on right now….hmmm, should businesses who proxy monitor the queries that go through the proxy?
  • backtrack doesn’t keep configuration changes – I’m torn between laughing and understanding that this person just does not know
  • supervise pdf or ps or ppt or pps or mat or zip or gz or gzip or rar or tar “intrusion detection system” -biblio -curri -vita -vitae -xml -guide – err? trying to alert on certain extensions?
  • how to get rid of an sql injection – POST assessment Google Ops
  • sql injection description – ALL YOUR DATA ARE BELONG TO US
  • sceurity traveler schematics – no idea, unless they are referring to the Kensington Traveler USB Thumb Drive
  • big black security.com – WFT???? Larry, did you mix your search strings again?
  • security training roi – apparently it is not dead
  • breaking security with backtrack – no testing here, just break it
  • incident response plan cost justification – hmmmm, how much does it cost to re-install everything?
  • ethics of packet sniffing – is all in permission
  • pr0j3kt m4yh3m – who?
  • backtrack gentoo – would be very nice but maybe harder for them to maintain
  • professionalism and consistency quote – good to see this especially the same day as my post on the subject
  • maynor phrack – goats can search the Internet?
  • conducting mock penetration tests – don’t actually test it, just pretend
  • is it legal to run a site security assessment without authorization – hmmm, no
  • hydra on nokia n800 – sweet
  • how to handle the internet hacking – we’ll take care of it for you, buddy
  • ugly babies – I suggest rotten.com if it is still there – btw….yuck
  • cases where internet behavior has cost people their jobs – the Incident Response Reports would also be interesting
  • immunity debugger cost - YOUR SOUL!!! :) ….no, seriously, they are after your soul

Malware/Phishing:

  • paypal disclosure – now that might have some interesting fall out, but in the end it would just be another breach disclosure
  • paypal.txt – Probably “What is this file doing on my server?”
  • botnets google.com connections – not sure about this one
  • not-a-virus.remoteadmin.win32.netcat – dang ol’ netcat, I guess this is very bad if you didn’t put it there
  • … [user@localhost development]$ sha256sum paypal.txt … – hmm, not sure what to make of this one, from the output of a script command? shoulder surfing or VNC? “What is this file doing on my server?”
  • how end user mitigate the risk of being affected by a banking trojan – I smell some end-user training coming
  • good botnet podcast – from a device running SymbianOS 9.2…sweet, my blog has gone PDA!!

Helpful:

  • vmware slax could not nmap – please install nmap module
  • how long does it take to cut away – You’ve got the rest of your life…actually, once you break 1000 feet you better make you move quick. A well packed reserve should open in a couple hundred feet. But you are moving between 40 and 80 mph, approx.
  • application blocks paros achilles webscarab – blocking doesn’t help….review OWASP and WASC for real help
  • “nist 800-88″ – in summary….grind everything
  • filesystem loop detected backtrack 2 – somebody is using the find command on a BT2 HDD install

Bunny Ranch: No I do not have any personal experience as I have never been there. One security tip, though, DO NOT give them your ATM card pin number. That would be bad.

  • moonlite bunny ranch price list - may I see a menu, please?….er……no comment
  • bunny ranch episode 1 – if you are going to start at the beginning you need to…..opps…errr…..no comment
  • the women of bunny ranch – no comment
  • how much do woman at the moonlight bunny ranch cost? – still no comment

Go forth and do good things,

Don C. Weber