Christopher Hoff, over at Rational Security discussed an interesting idea last week about VMWare’s ESXi. One of his readers theorized that maybe ESXi-based servers shouldn’t be considered as servers in some cases, but more like quasi-blade-chassis, since they essentially provide the same functionality. They’re exploiting the idea for auditing, but since I’m really too small [...]

Posted in General 4 Comments »

If you are running a lot of routers, with BGP peering, then you hopefully already know about this. If you don’t use BGP, then there’s not really much you can do besides plead to your upstream provider, but regardless, you probably should know. Security researchers have revealed that there is a major flaw in BGP [...]

Posted in General No Comments »

There’s some excellent discussion going on over at TechRepublic regarding SSL Certificates, and the way they’re treated by modern browsers. Firefox 3 all but refuses to let you access a site with an expired or self-signed certificate. Lots of other browsers are becoming more and more militant about it. The author of that article, Michael [...]

Posted in General 3 Comments »

In reality, there are far more than 5 ways to easily improve your network’s security and reliability, without spending hardly any money at all. I’ve just briefly gone over the most blatant 5 that make the biggest difference for next to no expenditure. Sure, a few office supplies might need to be sacrificed for the [...]

Posted in General No Comments »

How appropriate was yesterday’s blog entry? After writing it, I left for work. On my way to work, I got a call about the VPN not working for one of my users. I spent probably two hours troubleshooting her previously-working IPsec tunnel to no avail. I finally gave up and told her I had to [...]

Posted in General 2 Comments »

Have I told you about my VPN problems? No? Well, sit down a spell and have a listen. When it comes to my company, we’ve got two types of VPNs, really. There are the site-to-site VPNs, which connect, well, sites. My office’s router (a cluster of Juniper Netscreen 5GTs) have VPNs set up to each [...]

Posted in General 9 Comments »