drapermache

@[email protected]
23 Followers
66 Following
58 Posts
DescriptionFather of two, security scrub, opinions are my own
PronounsHe/Him
drapermacheJan 30, 2025
Man these past two weeks have felt like decades. I know by design, but I'm so exhausted by what's going on.
drapermacheJan 25, 2025
The past 4 days have felt like 4 years to me. It's exhausting. There have been so many close calls around my employment and my family's wellbeing it's stressed me out like no other.
drapermacheSep 4, 2024
It's been about a year since I've posted about it, but I was able to earn my CISSP certification. A lot of what people told me here really did help. I was glad to have an employer that helped pay for materials as well. Thank you everyone over here who gave me great advice.
drapermacheJun 30, 2024
Jerry 🦙💝🦙Jun 30, 2024

I saw a joke recently that I am going to adapt to my situation:

Q. What's the difference between a lightbulb and a CISO?

A. The lightbuld stops working when it's burned out.

drapermacheApr 2, 2024
Dan GoodinApr 1, 2024

I'm doing my best to make my coverage of the xz backdoor accessible to laypeople while also providing the technical details engineers need. I'm also updating as new info becomes available. I hope it's helpful.,

https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/

What we know about the xz Utils backdoor that almost infected the world

Malicious updates made to a ubiquitous tool were a few weeks away from going mainstream.

Ars Technica
drapermacheApr 2, 2024
Lisa MeltonApr 1, 2024

Two weeks ago, a build of Mastodon's Web interface removed two features which impacted me, other power users and some folks with accessibility issues.

And many of us complained 'cause, well, it kinda sucked.

But @renchap and the developers listened to us! And they didn't just back out those changes. No, they restored the functionality integrated with other new features.

So, I wanted to publicly thank them for all that hard work and landing it last week. Y'all rock! 💖

/cc @Gargron

drapermacheOct 12, 2023
Axman6 | 🇦🇺Oct 12, 2023
@malwaretech It's actually really easy to filter this out by never, ever, going on LinkedIn. 🌈
drapermacheOct 9, 2023
Jerry 🦙💝🦙Oct 9, 2023
The only winners are the defense contractors.
drapermacheSep 23, 2023
Show threadMichael ClaybergSep 23, 2023
@drapermache Retired CISSP here. Half can be book/course taught, experience really helps with the other ca. half as it’s a mindset cert more than a “I know these things” cert. So half of preparing is “trust your gut/ does this make good business sense” instead of rote memorization. I hope this helped.
drapermacheSep 23, 2023
My job is paying for me to get my CISSP, hurray! Anyone here have any recommendations for good resources? I’ve picked up the sybex book, but other than that not sure other good resources. My boss wanted me to take a book camp, but the budget is around 3k for all expenses, so I’m unsure if that’s feasible. Any recommendations would be awesome!