We ran into Kevin Flynn when were trolling for trouble at the recent VoiceCon show in Orlando. He sat
down with us (our feet were killing us AND he is a bit tall...I for one did not want to crane my neck) and chatted about the state of voice security for Cisco and why we seemed to be the only ones talking about Security at a VOICE show.
Get podcast episode number 171 directly if you don’t already have our RSS feed or iTunes set up...(c’mon...get with it)
New podcast posted on the value of honeypots...check it out.
Nuttin' Honey
Remember that commercial where some goober is sitting down eating cereal and his wife ask him what he is stuffing his gourd with and repeats over and over "Nuttin' Honey" while she keeps getting more angry, then she goes and grabs a crowbar and...or wait maybe the is the GTA version...
Anyway, I think we all know the best knowledge is field knowledge. Field knowledge trumps book only knowledge by a factor of 100:1. When it comes to security, reading it from a book is a good start or really more of a primer on security but certainly not the best way. Consider that it takes over a year to get a book published, the material you are reading is long forgotten by hackers and they have moved on to something new. I think that is why podcasting is so popular. It is fresh, up to date and certainly takes up less space on your book shelf.
Robb and I just finished a podcast on honeypots. I would say we "demystified" honeypots, but Robb has a trademark on that word and his wife can beat up mine, so... If you are not familiar with honeypots, they are basically traps to monitor (not catch) hackers. Honeypots present a target for a hacker to hack that is very low risk to us. Now we can sit back and monitor. Honeypots give us a real world jump start into what is happening in OUR region with regards to hackers. Different areas/businesses tend to attract different types of attacks. A honeypot really levels the playing field and allows us to learn from hackers actually practicing the craft in real time. Hey it is like going fishing with Bill Dance or riding along with
NASCAR driver Jimmy Johnson.
There are a few different types of honeypots and methods to consider when building a "honeynet" Robb and I go over this and discuss some of our tips and tricks in creating a honeynet. Nothing beats learning the tricks of the trade by the folks that trade in it. Robb and I both strongly recommend setting up a honeypot to increase your skill set. But heed the cautious we bring up in the podcast.
Hey, Robb and I will be in Orlando at Voice Con next week. Stop by the booth and say hey ya. Robb has an open AMEX card so we will make him buy the beer!
Jimmy Ray
Great Podcast on 'Becoming a Hacker' released today. Check it out! This is based on one of the top
questions that Jimmy Ray gets
whenever he demonstrates his hacking prowess. What does it mean to be a hacker and what does it take? This is interesting stuff based on the Feb 4 Blog Entry ‘I wanna be a hacker in 5 steps or less’ Check it out and let us know what you think.
Now Jimmy Ray is one of the most ethical hackers I know. He likes to dig in and see how things work. He likes to see how things fail and he is very good about learning from others.
He also knows how to find wireless access when he needs it. Note that he is on his porch in Wisconsin...he is usually in the code cave (see picture above) with no windows...must be a warm day, but notice the pale skin...dead giveaway...
We got a chance to tape a podcast with Prem Ananthakrishnan on the subject of Troubleshooting the Cisco Network Admission Control Appliance. This really turned into a good 'best practices' session. Prem used to work in our TAC (Technical Assistance Center) so he turned out to be a great guest for covering this kind of information. 
His list included:
Deploy without looping
Managing Posture
How to troubleshoot AD SSO
Cannot start Active Directory SSO
Certificates
CAM/CAS Communication
User redirect does not work
Agent does not pop up
CAM is unable to get updates
Agent goes into a login loop
Be sure and check out the NAC Chalk Talk Series Prem and the rest of his team has been working on.
Hope you enjoy it! All of our podcasts are available on iTunes (just search under Cisco Interaction Network or TechWiseTV). You can also get a look at the entire podcast library.
We were focused on NAC recently as we got ready for our NAC Design show airing on TechWiseTV March 6. Check out the show notes for details on getting registered to view that show with Alok Agrawal as our special guest.
Check out first ‘home brew’ podcast..Jimmy Ray and I are trying to find a way to turn out more interesting information in a more casual fashion...we are extremely blessed to be part of Cisco and be on a team that helps us produce content in state of the art facilities with real producers...but sometimes...you just want to tone it down a bit, accept a few errors...relax. Well, thats home brew. Time will tell how popular this format is...why don’t you let us know? I have no idea if Cisco will let us populate this on our regular TechWise podcast channel...I hope so. I think the audience would still like it AND the following/download volume is huge already.
In this episode:
Leave us a comment...do you like this format at all?
From the report: The overall trends in spam and malware can be characterized by a large number of more targeted, stealthy and sophisticated attacks:
I sat down with Jon Orbeton from IronPort to discuss the 2008 Internet Security Trends Report that was recently released.
You can get the full report at http://www.ironport.com/securitytrends/
You can hit the podcast directly.
