Posts Tagged ‘infrastructure security’

Passwords, how many do you have?

Posted: December 29, 2010 in Mozilla, Security
Tags: , , ,
9

So after my blog post, I have received many questions about passwords, how many to use, and what is appropriate. Based on the questions, there are many people who use the same password for everything. First off, don’t use the same password for everything. Using just one password for every site is a big risk. [...]

“Are we secure yet” Summit 2010 follow-up

Posted: September 4, 2010 in Mozilla
Tags: , , , ,
0

Want to run this on your own network? Do you remember seeing this at the Mozilla Summit 2010? Maybe you recall my previous blog post: Mozilla Summit – “Are We Being Secure?” and are password(s) safe? So if you want to run this yourself, here is the location to the code and directions: svn.mozilla.org/projects/infrasec/are_we_secure. As [...]

Mozilla Summit – “Are We Being Secure?” and are password(s) safe?

Posted: July 21, 2010 in Mozilla
Tags: , , , , ,
4

The play off the famous “Wall of Sheep”, aka “Wall of Wonder”, aka “Wall of Shame” that is displayed at most security conferences but done in a manner which isn’t shameful.

Load Balancer Logging – XFF

Posted: November 16, 2009 in General
Tags: ,
0

One of the biggest issues with logging and  in environments where you can lots of diverse logs is getting accurate meaningful logs. In an application load balanced environment, either NetScaller, F5, Zeus, or whatever, if the load balancers are in proxy mode, you are not getting the real client IP address unless you use these [...]

Introduction

Posted: November 9, 2009 in General
Tags: ,
0

For those who don’t know me, I am new to the Mozilla team as of three weeks ago. My responsibilities in a nut shell are to make sure the infrastructure here at Mozilla is secure. Being an open environment,  it will be a challenge to secure but one that I embrace. My background has been [...]