Front page
Silflay Hraka?

Bigwig is a systems administrator at a public university
Hrairoo is the proprietor of a quality used bookstore
Kehaar is.
Woundwort is a professor of counseling at a private university

The Hraka RSS feed

bigwig AT

Friends of Hraka
Daily Pundit
cut on the bias
Meryl Yourish
This Blog Is Full Of Crap
Winds of Change
A Small Victory
Silent Running
Dr. Weevil
Little Green Footballs
Fragments from Floyd
The Feces Flinging Monkey
the skwib
Dean's World
Little Tiny Lies
The Redsugar Muse
Natalie Solent
From the Mrs.
The Anti-Idiotarian Rottweiler
On the Third Hand
Public Nuisance
Not a Fish
Electric Venom
Skippy, The Bush Kangaroo
Common Sense and Wonder
Neither Here Nor There
The Greatest Jeneration
Ipse Dixit
Blog On the Run
Redwood Dragon
Greeblie Blog
Have A Cuppa Tea
A Dog's Life
Iberian Notes
Midwest Conservative Journal
A Voyage to Arcturus
Trojan Horseshoes
In Context
The People's Republic of Seabrook
Country Store
Blog Critics
Chicago Boyz
Hippy Hill News
Kyle Still Free Press
The Devil's Excrement
The Fat Guy
War Liberal
Assume the Position
Balloon Juice
Iron Pen In A Velvet Glove
Freedom Lives
Where Worlds Collide
Knot by Numbers
How Appealing
South Knox Bubba
Heretical Ideas
The Kitchen Cabinet
Bo Cowgill
Raving Atheist
The Short Strange Trip
Shark Blog
Ron Bailey's Weblog
Cornfield Commentary
Northwest Notes
The Blog from the Core
The Talking Dog
WTF Is It Now??
Blue Streak
Smarter Harper's Index
nikita demosthenes
Bloviating Inanities
Sneakeasy's Joint
Ravenwood's Universe
The Eleven Day Empire
World Wide Rant
All American
The Rant
The Johnny Bacardi Show
The Head Heeb
Viking Pundit
Oscar Jr. Was Here
Just Some Poor Schmuck
Katy & Bruce Loebrich
But How's The Coffee?
Roscoe Ellis
Sasha Castel
Susskins Central Dispatch
Josh Heit
Aaron's Rantblog
As I was saying...
Blog O' Dob
Dr. Frank's Blogs Of War
Betsy's Page
A Knob for Brightness
Fresh Bilge
The Politburo Diktat
Drumwaster's rants
Curt's Page
The Razor
An Unsealed Room
The Legal Bean
Helloooo chapter two!
As I Was Saying...
SkeptiLog AGOG!
Tong family blog
Vox Beth
I was thinking
Judicious Asininity
This Woman's Work
Fragrant Lotus
Single Southern Guy
Jay Solo's Verbosity
Snooze Button Dreams
You Big Mouth, You!
From the Inside looking Out
Night of the Lepus
No Watermelons Allowed
From The Inside Looking Out
Lies, Damn Lies, and Statistics
Suburban Blight
The SmarterCop
Dog of Flanders
From Behind the Wall of Sleep
Beaker's Corner
Bad State of Gruntledness
Who Tends The Fires
Granny Rant
Elegance Against Ignorance
Say What?
Blown Fuse
Wait 'til Next Year
The Pryhills
The Whomping Willow
The National Debate
The Skeptician
Zach Everson
Geekward Ho
Life in New Orleans
Rotten Miracles
The Biomes Blog
See What You Share
Blog d’Elisson
Your Philosophy Sucks
Watauga Rambler
Socialized Medicine
Verging on Pertinence
Read My Lips
The Flannel Avenger
Butch Howard's WebLog
Castle Argghhh!
Andrew Hofer
Moron Abroad
White Pebble
Darn Floor
Pajama Pundits
Goddess Training 101
A & W
Medical Madhouse
Slowly Going Sane
The Oubliette
American Future
Right Side Redux
See The Donkey
Newbie Trucker
The Right Scale
Running Scared
Ramblings Journal
Focus On Reality
Wyatt's Torch

July 17, 2003

3 Blogs of the Condor

While searching through the Department of Homeland Security's website, I ran across the National Infrastructure Protection Center's Daily Open Source Infrastructure Report.

The NIPC is part of the Department of Homeland Security. In light of the post below, it's especially ironic that nearly half of the leads in today's report deal with Microsoft vulnerabilities.

The New York Times reports the top official at Interpol has said that groups like al Qaeda and Hezbollah have turned to trafficking in counterfeit consumer goods, like fake Nike shoes, Sony stereo equipment and Calvin Klein jeans. (See item 5)

Microsoft has released "Security Bulletin MS03-026: Buffer Overrun In RPC Interface Could Allow Code Execution (Critical)," and a patch is available on the Microsoft Website. (See item 22)

Microsoft has released "Security Bulletin MS03-027: Unchecked Buffer in Windows Shell Could Enable System Compromise (Important)," and a patch is available on the Microsoft Website. (See item 23)

Microsoft has released "Security Bulletin MS03-028: Flaw in ISA Server Error Pages Could Allow Cross-Site Scripting Attack (Important)," and a patch is available on the Microsoft Website. (See item 24)

The Department of Homeland Security, FedCIRC has issued "DHS/FedCIRC Advisory FA-2003-15 Cisco IOS Interface Blocked by IPv4 Packet." (See item 25)

Internet Security Systems has raised AlertCon to Level 2, with a need for increased alertness.

SecurityFocus has raised ThreatCon to Level 2, with a need for increased alertness.

I've added links above where they were needed to reproduce the .doc functionality.

There are six subsections, dealing with presumably less threatening but still important infrastructure news.

Production Industries: Energy; Chemical; Defense Industrial Base
Service Industries: Banking and Finance; Transportation; Postal and Shipping
Sustenance and Health: Agriculture; Food; Water; Public Health
Federal and State: Government; Emergency Services
IT and Cyber: Information and Telecommunications; Internet Alert Dashboard
Other: General; DHS/IAIP Web Information

The more I read through it the more the report looks just like a blog, though thanks to D.C.'s best and brightest it's only available as a MS Word document or .pdf file, there's little to no commentary, and all the new stories are at least a day or two old.

Come to think of it, it's more like an anti-blog. No reason for it to stay that way, other than bureaucratic inertia. The information within is already adapted for the format. It would just be a matter of publishing it in a more timely manner, and the person(s) in charge of the report are already web-savvy.

Not to mention lucky.

"What is it that you do again?"

"I read websites for the government, ma'am."

Posted by Bigwig at July 17, 2003 01:57 PM | TrackBack
First time visitor to House Hraka? Wondering if everything we produce could possibly be as brilliant/stupid/evil/pedantic/insipid/inspired as the post you just read? Check out the Hraka Essentials, the (mostly) reader-selected guide to Hraka's best posts, and decide for yourself.

The problem with an up-to-the-minute blog is that a government web site is supposed to be official.

I've worked on document clearance for web sites. It takes forever to clear anything but the simplest of documents. Tricky documents take six months, a year, or never; there are some things that are too tricky to post, because no matter how you post it, somebody will intentionally misinterpret it, and bludgeon you over the head politically with it.

The reason we have this process is partly for that political reason, but also so that everything that gets posted is correct. Those blurbs that take a day or two to get blogged probably have to go through a half dozen different places. A post on Microsoft security vulnerabilities, for instance, probably goes through the department's IT section (Did we fix this yet, before I post the magic map for compromising our web site?); through a computer security section (Yeah, this seems to be a pretty plausible explanation of a given violation, it looks technically correct); through the General Counsel's office (nope, nothing in here that would make us liable if you posted it); and through the executive office of the Secretary (Um, does this touch on the Microsoft antitrust litigation in any way? I'll call DOJ and check on that...)

While this sounds like a bureaucratic nightmare, it's a pretty good system for keeping any particular government department from running off the rails and doing something stupid. It's how we keep the left hand appraised of the right hand's activities.

The other problem is that a non-sequitur might make it into a minute-by-minute blog. "Here's Microsoft's new security patch... just in time to stop that virus that crippled the Department last week, I see..." Although government employees are all mostly human, you don't want the government's official statements sounding this way, and that would be a danger if official information got blogged in that manner.

Posted by: Omnibus Bill at July 18, 2003 09:56 AM
Post a comment Note: Comments with more than two dashes per line will be blocked as spam.

Remember personal info?