Quick shout out to letsencrypt and cerbot2 . Amazing open source free applications that are keeping the web safe for everyone! I’ve just renewed my site certs and it was surprisingly easy, free and fast. If your like me and have a non critical site but care about security check them out and even consider a donation.
Just a quick shout out …. So one of the things that is some times talked about is the problem of the “non heterogeneous” or homogenous networking environment. The illusion that choosing the market dominant product (because everyone else buys it) is the right thing to do …. Anyhow it seems that Cisco is in a bit of bother due to its some what hated buggy protocol CDP. If your a cisco nerd and haven’t caught up on this it might be time to do a bit of serious patching!
Have a look at this wired article
Cisco Flaws Put Millions of Workplace Devices at Risk
And also the Reg have something about it
Tens of millions of Cisco devices vulnerable to CDPwn flaws: Network segmentation blown apart by security bugs
Stay safe on the Interwebs!
So I’ve been thinking a lot of late about machines, exploits and how to stop this sort of thing. I’ve been in situations where developers have created “stuff” on production machines and then left the company. The problem then becomes interesting if that code does not work with an up dated version of the software say wordpress, drupal or the operating system.
Your then in a situation (if the machine is a web server or open and available on the net) where about the only thing you can do is lock down the firewall and harden the old un patched OS and hope that no one finds a way in / attacks the machine.
It’s always good to have at least 2 people who understand custom code in any company especially if you have a number of web servers to mange. But even then re building something and re creating that functionality is not always easy – and management need to be aware of the fact that this will take time and cost money.
So if that keen shiny developer comes along one day promising you a widget that will sell your own grandmother and only cost you a few hundred bucks worth of con-sultan fees, my advice is to run screaming from the room.
The up shot I’m trying to put to you? Have the ability to own your own code – because if you don’t and if it gets hacked or is found to be vulnerable it’s going to cost you!
A simple approach is best – easier management and long term savings.
I’ve been following the company that says “Don’t be evil” on he issue of project Dragonfly – Googles “China” friendly search engine. The intercept has the lowdown on this project hear.
I have a belief that as companies get bigger they get more stupid and less focused. I think that this is indeed the case for Google. After reading the article I have to ask what sort of flavour of BS are these so called managers trying to stuff down the throats of humanity?
I’m starting to think it’s time to remove all my content from there platform.
Dec 1 post script 1
The register also has an article about the appalling behaviour of Googles’s senior management and it rightly points out that this is a company that is at a very serious fork in the road.
Dec 1 Post script 2
To expand on my thesis that “as companies get bigger they get more stupid” I also found this disturbing story…