Patrick Gray takes some time out to reflect on day two of AusCERT's annual conference on the Gold Coast.
Day two of AusCERT's conference on the Gold Coast was a cracker. Old school security legend Bill Cheswick took a spirited and humorous look at passwords in his plenary talk. mp3 The basic premise of his speech is complicated passwords are a really bad idea -- instead we should look at restrictions on repeated logins, for example. Well worth a listen.
There were some other excellent presentations, including one from iDefense's Kimberly Zenz -- she's an expert on cybercrime in Russia.
Her overview of the cybercrime landscape in that country was fascinating. mp3
Database security guru David Litchfield also gave conference delegates a look at his soon-to-be-released forensics tool. Interview mp3.
Peter Gutmann's talk, Things that make us dumb: Why security interfaces lead to insecure actions is a great presentation if you feel like vindicating your users for making bad decisions when it comes to security. (He delivered a similar talk at Kiwicon, which you can hear here... Part 1| Part 2)
This report was typed live from a presentation on Cyberstorm II being delivered by the Attorney General Department's Stephen Stroud on day three... that one will be in tomorrow's highlights!