If you’re seeing this in your feed, have you also seen a bad Star Wars joke? Because I’ve got one on the new blog. Please add https://shostack.org/feed.xml, or replace the feed you’re reading with it. (This is the Emergent Chaos version of this post)
I’m in the process of replacing this site, adam.shostack.org, threatmodelingbook.com and the associates.shostack.org site with a new, unified https://shostack.org. I’ll be saying more about the redesign, but as part of it, I’m migrating the blog over there. There are a few new posts there that I forgot to mirror here, including:
- Threat Modeling Through the JoHari Window
- Training – October
- Zen and the art of not quantifying risk
But most important – update your feeds! If you’re reading via RSS or ATOM, please update your feed to https://shostack.org/feed.xml. For various reasons (WordPress is a mess) it’s complex to update the feed you’re reading to carry these new posts.
Over the years, a number of people set up Feedburner accounts to proxy RSS from our blogs into their system. I generally support the emergence of such chaos, but I cannot provide support or management. Google is end of lifing the old Feedburner, and for those of you reading via Feedburner RSS, I humbly ask that you update to https://adam.shostack.org/blog/feed/ or https://adam.shostack.org/blog/comments/feed/ (with comments).
I was looking at the server logs here, and I discovered that a lot of readers are still showing up. Thank you!
I’ve moved my blogging to https://adam.shostack.org/blog/. That’s where I post.
However, since you’re still here, I’m going to sometimes cross-post.
When I started blogging a dozen years ago, the world was different. Over time, I ended up with at least two main blogs (Emergent Chaos and New School), and guest posting at Dark Reading, IANS, various Microsoft blogs, and other places. It made less and less sense, even to me.
I decided it’s time to bring all that under a single masthead, and move all the archives over.
From now on, I’ll be posting at Adam Shostack and Friends/. If you read the site via RSS, please take a moment to update your feed to https://adam.shostack.org/blog/feed/. Oh, and everyone who’s been part of the jazz combo has an account over at the new blog, and I expect a new Mordaxus post any day.
If there’s too much content here (there?) and you’d like a lower volume set of updates on what Adam is doing, Adam’s New Thing gets only a few messages a year, guaranteed.
Hossein Derakhshan was recently released from jail in Iran. He’s written a long and thoughtful article “The Web We Have to Save.” It’s worth reading in full, but here’s an excerpt:
Some of it is visual. Yes, it is true that all my posts on Twitter and Facebook look something similar to a personal blog: They are collected in reverse-chronological order, on a specific webpage, with direct web addresses to each post. But I have very little control over how it looks like; I can’t personalize it much. My page must follow a uniform look which the designers of the social network decide for me.
The centralization of information also worries me because it makes it easier for things to disappear. After my arrest, my hosting service closed my account, because I wasn’t able to pay its monthly fee. But at least I had a backup of all my posts in a database on my own web server. (Most blogging platforms used to enable you to transfer your posts and archives to your own web space, whereas now most platforms don’t let you so.) Even if I didn’t, the Internet archive might keep a copy. But what if my account on Facebook or Twitter is shut down for any reason? Those services themselves may not die any time soon, but it would be not too difficult to imagine a day many American services shut down accounts of anyone who is from Iran, as a result of the current regime of sanctions. If that happened, I might be able to download my posts in some of them, and let’s assume the backup can be easily imported into another platform. But what about the unique web address for my social network profile? Would I be able to claim it back later, after somebody else has possessed it? Domain names switch hands, too, but managing the process is easier and more clear— especially since there is a financial relationship between you and the seller which makes it less prone to sudden and untransparent decisions.
But the scariest outcome of the centralization of information in the age of social networks is something else: It is making us all much less powerful in relation to governments and corporations.
Ironically, I tweeted a link, but I think I’m going to try to go back to more blogging, even if the content might fit somewhere else. Hossein’s right. There’s a web here, and we should work to save it.
Emergent Chaos has migrated. It’s a long story, and perhaps better left untold. Please let us know if you see issues with the new site.
Well, the world is full of chaos, some good and some bad, and today’s bad for those of you reading via Google Reader is that it’s going the way of Altavista (can you believe it was still around?)
So as you migrate away, please consider including Emergent Chaos in your migration–we’ll have new content here soon, unless chaos emerges in our lives.
More seriously, real content and perhaps even an exciting announcement or two. One of geographically limited interest, the other not.
I’ve updated to the latest WordPress for security fixes. Please let me know if you notice problems (blogname-at-gmail-com)
The Security Bloggers Awards were this week at RSA!
Congratulations to Naked Security (best corporate blog), Paul DotCom (best podcast), Krebs on Security (Most educational, best represents the security industry), J4VV4D’s blog (most entertaining), Andy Greenberg’s “Meet The Hackers Who Sell Spies The Tools To Crack Your PC (And Get Paid Six-Figure Fees)” and Jack Daniel for joining the Hall of Fame!
I wrote a blog post regarding the BSidesSF/RSA conf dust-up.
(If I knew how to work Adam’s twitter integration thingy, you’d have been spared this)
We’re honored to be nominated in three categories for the Security Bloggers Awards:
- Most Educational
- Most Entertaining
- Hall of Fame
On behalf of all of us who blog here, we’re honored by the nomination, and would like to ask for your vote.
We’d also like to urge you to vote for our friends at Securosis for “Best Representing the Security Industry.” We don’t think Securosis actually is the best representative of the industry today. But I think they represent what we all ought to aspire to be, a empirical, business-aware industry. So please consider them as a part of the broad “New School” sort of slate. We’d also like to put a word in for the ThreatPost podcast as a great mix of technical and non-technical content, and for Veracode for best corporate blog. We’re suggesting Veracode in large part for Chris Eng’s empirical and side-splittingly funny thought leadership videos, but also for a general avoidance of FUD in their blogging.
But whomever you like, please take a moment to vote.
(Cross-posted from the New School blog.)
Earlier today I noticed something funny. My Google profile picture — the picture associated with my Gmail account, my GChat account, my Google+ account, etc — had vanished. A bug? Nope.
It turns out, Google — without telling me — went into my account and deleted my profile picture.
See “Dear Google+” for the details of why MG Siegler’s picture looks like this:
Yet another reason that we, retro-style, run our own blogs.
Two changes here at Emergent Chaos this weekend: first, a new, variable width theme which is a little tighter, so there’s more on a screen. Second, I’ve moved the twitter summary to weekly, as comments were running about 50-50 on the post asking for opinion. I think that may be a better balance.
And a bonus third: someone else’s navel for you to gaze at: