Collaborate Disseminate
Happy birthday TaoSecurity Blog, born on this day in 2003!The best way to digest the key lessons from this site is to browse my four volume Best of TaoSecurity Blog book series, published in 2020. It’s available in print as seen here, or as a properly … Continue reading Happy 22nd Birthday TaoSecurity Blog
Happy birthday TaoSecurity Blog, born on this day in 2003!The best way to digest the key lessons from this site is to browse my four volume Best of TaoSecurity Blog book series, published in 2020. It’s available in print as seen here, or as a properly … Continue reading Happy 22nd Birthday TaoSecurity Blog
Probably once a week, I see posts like this in the r/Ubiquiti subreddit. Ubiquiti makes network gear that includes an “IDS/IPS” feature. I own some older Ubiquiti gear so I am familiar with the product.When you enable this feature, you get alerts like … Continue reading What Are Normal Users Supposed to Do with IDS Alerts from Network Gear?
On this day in 2004, Addison-Wesley/Pearson published my first book, The Tao of Network Security Monitoring: Beyond Intrusion Detection.This post from 2017 explains the differences between my first four books and why I wrote Tao. Today, I’m always… Continue reading My First Book Is 20 Years Old Today
When I was a sophomore in high school, from 1987 to 1988, my friend Paul and I had Commodore C64 computers. There was a new graphical user interface called GEOS that had transformed the way we interacted with our computers. We used the C64 to play game… Continue reading Retrieving Deleted Files on the Commodore C64 in 1987
In the fall of 1998 I joined the AFCERT. I became acquainted with the amazing book TCP/IP Illustrated, Volume 1: The Protocols by W. Richard Stevens. About a year later I exchanged emails with Mr. Stevens. Here is the last exchange, as forwa… Continue reading My Last Email with W. Richard Stevens
This is unusual. I found this “skills and interest radar” diagram I created in July 2005. It looks like my attempt to capture and prioritize technical interests. At the time I was about to start consulting on my own, IIRC.Copyright 2003-2020 Richard Be… Continue reading Bejtlich Skills and Interest Radar from July 2005
I wrote this on 7 December 2018 but never published it until today. The following are the “key network questions” which “would answer many key questions about [a] network, without having to access a third party log repository. This data is derive… Continue reading Key Network Questions
Cybersecurity is a social and policy problem, not a scientific or technical problem. Cybersecurity is also a wicked problem. In a landmark 1973 article, Dilemmas in a General Theory of Planning, urban planners Horst W. J. Rittel and Melvin M. Webber de… Continue reading Cybersecurity Is a Social, Policy, and Wicked Problem
I want to make a note of the numbers of words and pages in my core security writings.The Tao of Network Security Monitoring / 236k words / 833 pagesExtrusion Detection / 113k words / 417 pagesThe Practice of Network Security Monitoring / 97k words / 38… Continue reading Core Writing Word and Page Counts