larissas's blog

TechWoman in Marrakesh-an October '11 update

16 Oct 2011
Larissa Shapiro

As I wrote in June (link to my last techwomen blog), I've been deeply honored this year to participate in the inaugural round of the TechWomen initiative, a program of the US State Department, as a technical mentor.

Launching the TechWomen Initiative - Week One

10 Jun 2011
Larissa Shapiro

I am deeply honored to be participating as a technical mentor for the TechWomen project this summer. TechWomen is a project born out of President Obama's 2009 Cairo speech, where he called for greater collaboration in technology between the United States and countries with majority Muslim populations.

TechWomen is funded by the U.S. Department of State’s Bureau of Educational and Cultural Affairs (ECA), managed by the Institute of International Education (IIE), and implemented in partnership with the Anita Borg Institute for Women in Technology (ABI).

Standardizing the Severity of Security Vulnerabilities

18 Oct 2010
Larissa Shapiro, ISC Product Manager

ISC has recently become aware of a security advisory, CVE-2010-3762 filed against BIND 9 on October 5th 2010. ISC did not request this CVE, nor was it contacted by the submitter prior to its submission.

We believe the reported severity assessment of this CVE to be higher than is realistic. Specifically, because a recursive operator needs to have configured a specific zone to be trusted via adding a trust-anchor statement for it, we believe the impact of this vulnerability to be low.