Home > Poetry > More Security Prose – Weekly Security Review

More Security Prose – Weekly Security Review

September 22nd, 2007 Leave a comment Go to comments

This week in security,
it’s time to review.
What new vulnerability
are you subject to?

Let’s scan Full Disclosure
and find us a bug.
Some new crafty malware
from a cyber-crook thug?

What poor security choice
has some CSO made?
First the VA, then Pfizer, 
now A-mer-iTrade?

All things virtual are scary
vulns are real, take a look
and the TSA’s profiling
your choices of book

Some MIT looney
with a fake bomb on her chest
almost got lit up
by New England’s best

Compliance and legal
are all such a mess
Sarbanes-Oxley and HIPAA
PCI’s DSS

Raytheon bought Oakley,
Shimel got GoogleJacked
while some poor Joe from CITI
had his LimeWire hacked

Peer to Peer and those BotNets
will be our dear network’s death
The next malware vector is
ye olde PDF!

Maynor’s been holed up
with guns, pills and code
Now the statutes are lifted
he’s blowing his load

Curphey’s gone Blue
Ptacek’s gone MIA
Newby’s gone English
Mogull’s rejoined the fray

McAfee’s Dewalt
went on a tirade
seems that cybercrime’s
bigger than the world’s whole drug trade

De-perimeterization,
the Jericho way
doesn’t mean sell your firewall
on Craigslist or eBay

To model or measure
metrics or SWOT
Just don’t define Lindstrom
as something he’s not

Rothman’s now helping
Grandma secure her kit
from malware like trojans and botnets
and shit

Pescatore says we need Security-three-point-oh.
InfoSec costs too much and has nowhere to go
He casually proffers his bold Gartner bet
by the year 2010 we’ll be ahead of the threat.

That’s it boys and girls
till I rhyme once again
Stay happy, stay secure
and now…
EOM

Categories: Poetry Tags:
  1. dre
    September 21st, 2007 at 22:32 | #1
    Reply | Quote

    What a shady bunch of characters in such a screwed up industry.
    Where did you get SWOT from? That's not really a model vs. measure argument… SWOT is like one strategy tool out of hundreds in Six Sigma that just happens to apply well to security, especially infrastructure (i.e. what most people think security is).

  2. Marcin
    September 22nd, 2007 at 00:39 | #2
    Reply | Quote

    wow.. Hoff.. I need some of whatever you're takin, that's some deep stuff there.
    SWOT, schmot! don't mind dre, as long as it rhymes, right?? 😛

  3. shrdlu
    September 22nd, 2007 at 03:56 | #3
    Reply | Quote

    Beautiful stuff, Hoff!! I just want to know how you manage to find time and brain cells to DO it … as a parent myself, it's all I can do some days to find my way to bed …

  4. Christofer Hoff
    September 22nd, 2007 at 04:19 | #4
    Reply | Quote

    "Where did you get SWOT from? That's not really a model vs. measure argument… SWOT is like one strategy tool out of hundreds in Six Sigma that just happens to apply well to security, especially infrastructure (i.e. what most people think security is)."
    …ummm, it rhymed. 😉
    Chill.

  5. Rob Newby
    September 23rd, 2007 at 01:51 | #5
    Reply | Quote

    Once again I salute you and your enormous literary brain. You're like a cross between Shakespeare and Schneier. Ew, bad picture.
    However, self-appointed "Security Grammarian and Grouch" that I am, and whereas Schneier probably doesn't give a monkey's, Shakespeare would have known that this is poetry, not prose.

  6. Christofer Hoff
    September 23rd, 2007 at 05:24 | #6
    Reply | Quote

    Oh not again! Crap. I honestly don't know the difference. I will, however, go and find out.
    Forever in your debt (and grammarian shadow)
    Hoff

  1. No trackbacks yet.