The InfoSec Blog

Maybe I’m just punchy from dealing with too much real spam, but I found this hilarious.

Introducing–Penis Reduction Pills!

Shipped to you, not in the stereotypical plain brown wrapper, but in a
large box proudly labeled on all six sides. Because you wouldn’t be
ordering them if you didn’t need them, right? Just leave the bottle
around the house where the girl you are interested in can find them.

http://www.penisreductionpills.com/

(Note: placebos may have unintended side effects. Depending on the
context …)

Thanks to Rob Slade for bringing this to my attention - http://victoria.tc.ca/techrev/rms.htm

Related articles by Zemanta

• Penis Reduction Pills
• Sure, you’ve got a giant penis - but … [Bait And Switch]

http://search.cpan.org/dist/App-Asciio/lib/App/Asciio.pm

This gtk2-perl application allows you to draw ASCII diagrams in a modern
(but simple) graphical application. The ASCII graphs can be saved as
ASCII or in a format that allows you to modify them later

So what does this have to do with security?

Well, one of the security risks we face is that Microsoft Office applications (among others) have embedded Visual Basic, often with extensions. These have been susceptible to macro viruses.

Yes, I’m aware that there are mechanisms for defending against this, but they are software, and we know that in the long run errors will be introduced in upgrades or patches and the bad guys will find alternative avenues of attack. The real problem is that VB is embedded in the application.

So this is a solution. We go back to the “data is data” era, when data was not executable. See also all the “why HTML mail is evil” articles - go Google for them.

Happy Friday.

I’m no fan of Pen-testing, but its remarkable how people fail to learn from the past experience of others, even when that experience is so heavily publicised for such a long period of time that it is part of our cultural baseline.

Technorati Tags: Trojan Horse, penetration test

Scott Adams, the creator of the Dilbert cartoon, recounts in his blog his recent experiences with airport security and its oddities in “Dangerous Containers“. He tells of how a transparent 4-ounce container of shampoo that held only one ounce of fluid was confiscated becuase it could hold more than three ounces. In his typical manner he explores the threat that those three ounces of ‘nothing’, along with the larger quantity of ‘nothing’ in his not-full bag could be a threat.

The blog posting is not that funny. What is outrageous are the comments. Some people need to take life a lot less seriously.

Technorati Tags: scott adams, nothing, airport security, terrorism

With Thanks to Gary Hinson and Michael Gerdes who found this on the web and extended it …

1. Project Manager is a Person who thinks nine women can deliver a baby in one month.
2. Construction manager is one who thinks single woman can deliver nine babies in one month.
3. Controls manager is one who asks if the baby is in the budget (and if it saves money to adopt).
4. Project Engineer is a person who thinks he can deliver a baby even if no man and woman are available.

Read the rest of this entry »