Contrary to popular rumors, Red Hat’s recent webcast was not to announce an imminent acquisition. Red Hat instead laid out an ambitious cloud strategy, going as far as claiming that only Microsoft and Red Hat are positioned to deliver an end-to-end cloud stack. However, the most important announcement from Red Hat may well be overshadowed [...]

This past week, Google and Verizon introduced a joint legislative proposal. Shortly thereafter, blogs and forums filled with buzz and chatter over this two-page document. Many of those blogs and posts were targeted at Google, claiming that they are proposing things in violation of net neutrality. What exactly is net neutrality, and why is Google [...]

Back in June, the IEEE finally approved the 802.3ba standard. The standard began to be investigated back in mid-2006, and has finally culminated in the new 802.3 standard. This is the first time two connection speeds have been specified in one standard. The previously fastest IEEE standard was 802.3av for 10 Gb/s.

HP has introduced new high-performance security solutions aimed at preventing network breaches in a converged infrastructure by offering comprehensive data protection across both physical and virtual environments.

Today I was working on a Flex application which uses a lot of Remoting calls to a bunch of ColdFusion CFC methods. I wondered what the most efficient way of securing these methods would be since they are effectively wide open to the world as they all (have to) specify access=”remote”. This means that anyone [...]

Cloud computing has become the standard form of deploying large-scale web applications. Recently, I was asked about a servicing a start-up web service that projects itself having the type of user base and bandwidth that only a Cloud could properly serve. The issue at hand is scalability: should the site start with a minimal Cloud [...]

Software crackers who make money breaking other people’s software don’t usually get rich from their skills. With the release of iDefense Labs report on Emerging Economic Models for Vulnerability Research, this may be changing.

When recommending penetration testing for a corporate network the first question is usually, ”Why would we need penetration testing?” The first answer is, if you don’t they will. Everyday malicious and sometimes just overly curious people use their computers to run automated testing scripts that look for system vulnerabilities to record and potentially later exploit. Sometimes the [...]

If you’re reading this, odds are you are under attack. Your Web server is being crushed under the extraordinary load of thousands or even millions of bogus requests. How do you deal with it? Before we jump into that, a quick definition, courtesy of Wikipedia:

IBM has announced it has acquired network automation software firm Intelliden and will integrate the company’s technology into its Tivoli Software. Financial terms of the purchase were not released.