nterviews are conducted so that individuals can learn and understand situations, products or an individual better. Understanding someone within the confines of 140 characters has now been shown to be nearly impossible.

... I fucking hate twitter

TG Daily - The McCain Twitterview: Nice try, but no cigar

Best quote I hear this weekend at Outerz0ne:

Carebears live in clouds, not my fucking data!

Easton isn't alone. There have been at least 18 recent tweets about the fact that English has no grammatically correct substitutes for words like "he," "him," and "his" that do not have a gender implied.

So the news story is, People on Twitter are venting about the English language.

...

Ok, let me repeat that:

The topic that qualifies for "news" on CNN, is that people are using Twitter to complain about things.

[Lewis Black Voice]ARE YOU #@!$#@ing KIDDING ME!?!?

Screw CNN, Screw twitter. There is nothing of value here.

This just in: People discuss retarded things

See you all there on Saturday!

Americans may paint themselves in increasingly bright shades of red and blue, but new research finds one thing that varies little across the nation: the liking for online pornography.

A new nationwide study (pdf) of anonymised credit-card receipts from a major online adult entertainment provider finds little variation in consumption between states.

"When it comes to adult entertainment, it seems people are more the same than different," says Benjamin Edelman at Harvard Business School.

However, there are some trends to be seen in the data. Those states that do consume the most porn tend to be more conservative and religious than states with lower levels of consumption, the study finds.

Am I the only one wondering how you "consume" porn? Maybe I'm doing it wrong ;-)

Porn in the USA

      1     jump          	L1

      5     convert_b     	
      6     lessequals    	
      7     bitor         	
      
      L1: 

What is Scrubbr?

Scrubbr is a BSD-licensed database scanning tool that checks numerous database technologies for the presence of possible stored cross-site scripting attacks. The tool was partially inspired by "Scrawlr", a trimmed-down version of HP's WebInspect which was released for free after the so-called "asprox" mass-SQL injection bot exploited hundreds of thousands of insecure ASP sites.

If you can tell Scrubbr how to access your database, it will search through every field capable of holding strings in the database for malicious code. If you want it to, it will search through every table, every row, and every column. This will be very slow on large enterprise databases, but its very useful to have assurance that there is no malicious data anywhere in the system.

This is a sexy idea. Major kudos to the Aspect guys for yet again giving back to the Web Security Community.

This is another example of several new tools, projects, and products I've seen recently (some under NDA) that are premised on the fact that you will be hacked. Instead of prevention they are focused on detecting when you have been 0wn3d. I'm still not sure if this is the right approach but most of these solution are extremely cheap, have a low footprint, and do a fairly good job as there is a lot of low hanging fruit here.

OWASP Scrubbr

Funny (if your into that :))

xkcd - A Webcomic - TED Talk

In the mid-year report, X-Force conveyed that the use of Visual Basic Script or
VBScript with Web browser exploitation was three percent. Visual Basic Script
is an older language native to the Internet Explorer browser. Other browsers
such as Firefox, Opera, Chrome and Safari do not support this script language
although they are targeted by attackers far less frequently due to market share.
During the second half of 2008, VBScript utilization towards exploitation of IE
increased on a per-site basis by 562%. Thus, while VBScript is still utilized by
a small number overall, its increase indicates a potential trend. One possible
explanation is that most detection solutions only support JavaScript analysis
and therefore it is a form of obfuscation.

Please Please Please, release the VBScript Grammar!

xforce-2008-annual-report.pdf (application/pdf Object)

So I have this thing, I joking keep a list of people/things that I hope to one day punch in the face for some reason or another.

Mozilla is on it.
... actually twice.
web developers
Border/Customs Officials
Tim Bernes-Lee, father of the World Wide Web
Anyone at the end of a reliable transport connection
People who use eval() insecurely
Its go time Peleus!

But I digress

People have often wondered if I'll ever actually do any punching. Those people obviously have never seen what I drink. :-) However, I like to dream that one day, I'll be rich, and spend my time flying across the country, and administering some very necessary (if late) justice. And in my dream, it looks an awful lot like this:

You know, with all that money we've been making man we can buy alot of plane tickets...