The Ashimmy Blog: Baby you're the greatest!

I thought I would continue my Mike Rothman Daily Incite series today. The only dangers I can see in this are I might start getting grumpy and give up meat! But hey Fake Steve Jobs stopped blogging, maybe I can be Fake Mike Rothman. Seriously, this format allows me to comment on a bunch of different things in one blog post, so will go with it a while.

First of all I want to call out that today is my 19th wedding anniversary! My wife Bonnie (the real Boss) continues to amaze me every day. Most times it is around how she puts up with me. But seriously in this day in age where so many couples come and go, 19 years is an accomplishment. Marriage in some ways is a lot like security. You are not successful at it without a lot of hard work, staying on top of the game and being passionate about it and it seems I am always one step behind! In the meantime, I still feel like Ralph Cramden, happy to have my Alice. So in the words of Ralph - Bonnie, you are the greatest!

Now on to the news and have a great day!

Sourcefire goes into the 3rd party patch business. Shades of Ross Brown and eEye, the VRT at Sourcefire have released on their blog a “home brew patch” for the critical Adobe Acrobat vulnerability, which is actively being exploited in the wild. Adobe is supposed to have a patch out by March 11th. In the meantime just as happened in the past, we really don’t know if the 3rd party patch has been adequately tested. If it turns out it breaks something, Marty and team may wind up with egg in their face. As I have written before, generally I am against 3rd party patches. In the meantime, Adobe come on! If you want Acrobat to be ubiquitous, you need to do a better jog of getting patches out. This vulnerability has been kicking a long time!
Checkpoint comes out with '”software blades” for the UTM. Checkpoint has introduced a new concept in their UTM line up. They call them software blades. “The company describes a software blade as a security building block that is independent, modular and centrally managed.” The software blades operate on a software chasis. Checkpoint wants to sell each blade for $1500. I don’t now about you but this sounds a lot like StillSecure Cobia to me! Modular security apps that run as software that can be mixed and matched on the management platform. Very little is new under the Sun!
Top Ten web hacking techniques of 2008. And the winner is . . If you did not get enough on Oscar night here is the list of the academy awards of web hacking by Jeremiah with help from an all star cast of judges: The Mogul, HD Moore, Hoff and Forristal). Reading this post and Rich’s post on it, the mice continue to get smarter. That makes us work harder making better mouse traps. Jeremiah will be presenting on this at a bunch of conferences including RSA. You probably want to catch that one.
New kid on the block. A friend of mine, Jack Mancini who has been working in security since Symantec first bought Norton (or was that when Ralph met Norton?) has started his own security blog called “Secure or Not Secure”. Jack is just launching a new security VAR down here in Florida. He has already put up some good stuff and I am sure will continue to do so!

Anyway that’s my news for today. I am putting the Pragmatic CSO ad down here. If the real Rothman wants to work out a revenue share deal with me it might find its way back to the top!