Category Archives: Uncategorized

Extending the Rudder

August 19, 2010 – 8:30 pm

The challenges and benefits of mobile devices in the enterprise.  The last 18 months has witnessed a barrage of smart phones and tablets coming onto the market. While these devices score high marks for being “cool” I can honestly say, the INFOSEC pessimist in me says “Malware Vector” and the enterprise solutions person in me [...]

By John M. Smith | Also posted in citrix android, citrix ipad | Tagged , , | Comments (1)

Project Poindexter: (Non-Citrix Related) Grabbing Pix URL logs checking them for malware.

July 11, 2010 – 3:15 pm

This is my first non-Citrix related post, I don’t plan on making it a habit but someone suggested that I post this in case it is valuable to other INFOSEC types.  Let me start off by saying I am not a traditional security guy, I don’t have an abundance of hacking skills, I am not [...]

By John M. Smith | Also posted in Advanced Persistent Threat, Information Security, Monitor Malware, Syslog | Tagged , , , , , | Comments (0)

Project Poindexter: Endpoint Analysis Log Harvesting

June 26, 2010 – 1:14 pm

About four years ago management wanted to know which users were failing their endpoint analysis scans and to what extent we were compliant with endpoint analysis. We spent over $30K on a product called “Clear2View” and it did some rudimentary scans logging for us but the data was not very easy to query even though [...]

By John M. Smith | Tagged , , , , , | Comments (0)

Edgeisight Under the Hood: Part 2 (Will be moved to Edgesightunderthehood.com)

December 15, 2009 – 1:58 am

Okay, so in this blog posting I want to continue covering a few more views in Edgesight that I like to run ad hoc queries against.  Today’s view is called   vw_es_archive_application_network_performance.  This view provides information network delay, server delay, xenapp server, process name and downstream hosts that your XenApp servers communicate with.  I have used this table to [...]

By John M. Smith | Also posted in Citrix SQL Queries, custom edgesight reports, Edge Sight, EdgeSight, Edgesight Custom Queries, Edgesight Custom Reports | Comments (7)

Xen and the art of Digital Epidemiology

November 27, 2009 – 3:32 pm

In 2003 I started steering my career toward Citrix/VMWare/Virtualization and at the time, aside from being laughed at for running this fledgling product called ESX Server 1.51, most of my environment was Windows based. There were plenty of shrink-wrapped tools to let me consolidate my events and the only Unix I had to worry about [...]

By John M. Smith | Also posted in Application Firewall, Netscaler, Secure Ticket Authority, Security | Comments (0)
Follow

Get every new post delivered to your Inbox.

Join 76 other followers