software

All things related to IT security, privacy and compliance.

Don’t forget to check out #InfoSecAndCompliance on Jaiku.

TrueCrypt Post Up On TAB

I take a look at one of the more interesting security tools to hit Apple desktops in quite a while in TrueCrypt 5.0 Brings Plausible Deniability To OS X Users over on The Apple Blog:

If you need/desire cross-platform compatibility, then TrueCrypt is a perfect choice. You can encrypt a virtual disk image onto a USB drive and take it from Windows to Linux to OS X and gain access to your all your secret data, something that is not possible with OS X secure disk images.

|

MarsEdit Post Up on TAB

Josh did the WordPress magic incantations once again and my notes on the recent update to MarsEdit is available for your critical review.

Be kind, folks…it’s been a tough week.

Technorati Tags:
|

[TAB] Making The Move: “Must Have” Apps for Your Fresh Leopard Upgrade

If you’re interested in what makes it to my MBPro post-Leopard, you can head over to The Apple Blog and read my latest post.

Quite the rabid followers of iStat Menus amongst the reader over there :-)

NOTE: Josh is much better at these serious article headlines than I am.

|

Papers - The Real iTunes for PDFs?

If your Desktop or Documents folders have ever been caught up in a sea of PDF files you need to read the review of Papers by fellow TAB blogger Stephanie Guertin. Looks like a pretty decent app. (And, yes, I know iTunes can already store PDF files)

Ars has a short take on the Papers as well.

Technorati Tags:
|

ActiveState Dishes Out Perl For Christmas

Not to be counted among the slackers, ActiveState busts out the Christmas presents early with a discount on their pro bundles and a 5.10 Perl release for all the major platforms.

Well done and good news for those that need a supported version of the best scripting language out there (sorry Python, PHP & Lua, Perl still rocks).

|

Microsoft Security SDLC Guide Updated - Developer Highway Code

Microsoft updated their sold, free guide to developing secure software. They discuss generic topics that apply to all development:

  • Integrating security into the SDLC
  • Security engineering objectives
  • Web app security design guidelines
  • Threat modeling (tho i’m not crazy about that term)
  • Security architecture & deisgn reviews
  • Security code reviews
  • Security devlelopment reviews

and also provide some specific guidance, checklists and information on Microsoft technologies.

A must-read for all developers.

|

Write-access To NTFS Partitions On OS X

HardMac posted news about beta software that enables write-access to NTFS partitions on your Mac. It requires signing up for beta access and requires a form to be filled out, but it doesn’t seem to require *valid* entries in the fields. No word on Leopard compatibility, comes with an un-installer and the pkg requires a restart.

I’ll try to test it against some NTFS partitions later tonight.

Technorati Tags:
|

Two Useful File/Disk Utilities

I get asked about recovering deleted photos about once a month and have never made a placeholder for the info here on RDN. These two utilities from CG Security - TestDisk and PhotoRec - will get you out of most disk and file jams (you can even recover lost partitions and/or make non-booting disks bootable again) and recover your over/under-exposed, red-eye-glaring and blurry snaps that your camera/machine accidentally deleted somehow without you touching it or even being powered on.

Both are open source and run on pretty much any machine you have.

|

Nike+ & Perl Goodness

Alex Lomas has released a very cool Perl module that gives you programmatic web-service access to your Nike+ running data.

I haven’t had time to play with it yet, so you’ll have to live with the author’s description for the moment:

You can: Authenticate to Nike+ and obtain the login token and cookie Retrieve your last run Retrieve your personal settings (name, perferred units, avatar etc.) Retrieve data on all your runs, ever Get specific pace information on a run (not yet implemented, sorry!) List all your goals and whether you’ve completed them or not List all your challenges See who’s taking part in your challenges, and how they’re doing Display direct URL links to home page/runs/goals/challenges that use the token to bypass login (CAUTION!)

|

Ascent Updated to 1.6

Montebello Software has released an update to Ascent. 1.6.0 Improvements and Bug Fixes:

  • New Feature: added speed, pace, gradient, and cadence zone support; ranges are settable in a new preference pane
  • New Feature: paths in the Detailed Map View can now be color-coded by zone
  • New Feature: laps can be highlighted in the Detailed Map View
  • New Feature: new zone types can be displayed in the Activity View
  • New Feature: zone type can be selected in the Activity View Statistics HUD
  • Added preference to set “below zone” color for heart rate coloring
  • Fixed problem with “last sync time” set incorrectly when tracks synced in an un-registered version of Ascent
  • Added “Are you sure?” dialog to “Clear Map Cache…” menu choice
  • Fixed bug that caused wrong max heart rate values to be shown in the browser for laps when units were set to metric
  • Fixed bug that was causing errors in “Active Time” displays for laps and tracks in the browser
  • Fixed problem where browser would show wrong values for certain fields if activity started at a non-zero distance
  • Fixed problem where selected activity after sync was not displayed in browser map or stat mini-views
|