I am retiring this social media account. Find me as @hal_pomeranz@infosec.exchange
Orlando, FL
Joined November 2008
- Tweets 19,311
- Following 237
- Followers 13,672
- Likes 12
Somebody just offered me a gig doing DFIR with malware analysis for $75-85/hr. That’s not even close to market rates. What the heck is going on these days?
20
6
4
58
I agree it's a terrible precedent. I'm glad I'm not the one with the authority to make that call because right now my "better angels" are screaming for payback.
1
1
Hal Pomeranz retweeted
The Fall 2022 Scholarship for Service application window is now open at @LSU @LSUCCT. These scholarships provide a living wage, tuition, training funds & guaranteed jobs. @nolaforensix is the main professor and memory forensics R&D is the focus:
lsu.edu/cybersecurity/schola…
#DFIR
21
5
16
Of course the root could take action to remove the NS records and glue for .ru or any other TLD. I’m now wondering what the path would be for making that happen under current bylaws?
2
8
People are struggling more and more every day. Be compassionate. Even "easy" things are hard right now.
4
13
Hal Pomeranz retweeted
As I was typing out "popcorn.gif" I realized that if .gif ever becomes a TLD, the popcorn.gif domain will be worth millions...
6
2
1
57
It's a 64-bit Rocky Linux image, distributed as a directory from VMWare Workstation (vmdks, and a vmx file). You can download it yourself from archive.org/download/HalLinu…
Hal Pomeranz retweeted
RT for reach.
Applies for people currently in Ukraine.
Contact @Stekkz to apply.
🇺🇦 🙏 💪🏻
2
20
1
10
I'm happy to announce an errata update of my Linux Forensics class (also added @SecShoggoth's honeypot image for practice). archive.org/details/HalLinux…
If you'd like to be part of the first ever in-person run of the class register at kernelcon.org/training#linux…
1
12
1
31
I think we all agree here. SELinux isn't perfect but it will knock out the automated, ankle-biter level exploits and give you more visibility into higher-level attacks. Consider also that more adoption of SELinux would help expose and close the flaws in SELinux itself.
1
1
2
Some great stories about Boggs from @paulvixie during our recent panel discussion during WWHF Deadwood. It feels too soon to be losing these great inventors.
In the 1970s, David Boggs helped create Ethernet, the powerful etworking technology that connects PCs to printers, other devices and the internet in offices and homes. He has died at 71. nyti.ms/3porn9m
4
1
6
Ubuntu has gone with App Armor and so that’s the most natural choice for that platform. But SELinux is the choice on every other Linux platform.
1
2
Hal Pomeranz retweeted
I cannot overstate how impossibly difficult it is to attack a system running SELinux with setenforce 1.
Even if it's got openings and misconfigurations, an attacker is going to make buckets of noise finding the flaws.
Know who does ls -laZ? Nobody but attackers.
5
6
1
35
Q: Why is Hal going on about SELinux again?
A: Because I investigate lots of Linux intrusions that would have failed if SELinux was enabled.
At least come and learn to criticize SELinux from a position of knowledge and not FUD.
Coming up March 9-10 is @hal_pomeranz's 6-hour course, "SELinux – Necessary and Not Evil!" 10% of this course will be donated to @RuralTechFund.
What's your experience with SELinux? Good? Bad? Let us know!
Course details & registration can be found here: ow.ly/7q7a50I6lHa
8
20
103