Share this page!

Maybe Scrolly?
Corey Quinn Profile picture
Twitter logo
Jun 7 24 tweets 16 min read
Having spent an hour or so walking the floor of @RSAConference, it's rather clear that #RSAC's not about security learning, but rather about selling security in a box. As @mattstratton famously said in a talk once, "you can't buy DevOps but I sure would like to sell it to you."
Here @SentinelOne teaches us that the tree of security must be refreshed from time to time with the logo of @hashicorp. #RSAC
Here we see that Angry Twitter is making its presence known at #RSAC.
The state of Georgia sponsors #rsac to convince people to move their companies there. Given that "being shitty to trans people" runs against our ethics here, I'mma pass.
Overheard in a @CrowdStrike marketing meeting: "What should we do for swag this year? I mean, we sure as shit can't raffle off a drone without rebranding the company first..." #rsac
Next time @AppgateSecurity might want to have a picture of a dolphin or something between the "Zero BS" and "A leader in the @forrester Wave" talking points. They kinda need something to help them flow together. #rsac
I pause here to note that @rsaconference declined to give me a media badge on the grounds of "I work for a vendor." (What the hell do they think I'd sell here, anyway?)

If I have to pay $50 for an expo pass, I am for damned sure going to get my money's worth. Onward!
I'll be sure to visit @FwdNetworks to verify my network security posture. I just need to stop at another #rsac booth first for a free password audit.
Gotta say, @RecordedFuture is making a strong case for "best FUD of #rsac 2022."
I see that Facebook's rebranding has reached their recruiting efforts. #rsac
Meanwhile @Microsoft is over here going for "Best Oxymoron Since Microsoft Works." #rsac
Look, I gotta level with you @RSAConference: given how devoted you are to slapping a sponsor on anything that holds still long enough, you're missing one hell of an obvious opportunity...
"Want to work at the FBI?"

No. You all wear suits, but they're *cheap* suits. Hard pass. #rsac
"The #rsac restrooms are generously sponsored by The @DuckbillGroup's @LastWeekinAWS; we're here to ensure you'll always have something to shit on."
Love @yubico though I do, I'm still not plugging anything I get for free at a conference into the USB port of a device I care about. Particularly #rsac....
"Okay, secure multi-cloud. I hear you. What if I'm all in on just one cloud provider?"

"Then we have nothing to sell you, so get the hell out of my #rsac booth."
Keeping in touch is important. I'll always make time to visit the @splunk booth to see how all the money I paid them is doing. #rsac
Ooh, the @awscloud database team is at #RSAC.
What an attractive advertisement at the @ThinkstCanary booth. I really, really like what they do: credentials that alert you when they're used.
It's innovative and different and effective; that's exactly the kind of thing that's not allowed at #RSAC. How on earth did they get a booth here?!

"Easy, we told @RSAConference that these were firewalls."
For instance, I see all the access attempts on this (neutered) keypair. If they were in my credentials file labeled as "prod" the alerts would be a pretty good indicator that something's compromised my laptop.

Good call on all the folks starting with GetCallerIdentity!
It feels like @GoogleCloud is double dipping at @RSAConference with their double booths--Google proper and their Mandoogle acquisition.
Outside the #RSAC venue, the state of Illinois has bought out the advertisements in the @SFBART station to smacktalk people into moving there. You'd think that folks in Chicago would know enough about public transit to just take the L by now...
This concludes my first day of #RSAC. I would have liked to have covered some session content instead of just dunking on vendors, but as I am "Not Media" I wasn't allowed to attend those via expo pass.

Perhaps next year @RSAConference will decide differently. I see you 'mirin!

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Corey Quinn

Corey Quinn Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @QuinnyPig

Corey Quinn Profile picture
Jun 7
And now I go to #RSAC2022 in the hopes that someone, anyone, will be able to sell me a firewall.
To be a diamond sponsor of @rsaconference you must be a company whose best days are clearly behind it.
Or be the RSA conference, as an additional qualifier .
Read 7 tweets
Corey Quinn Profile picture
Jun 6
If you're speaking at or attending a three day conference, and the single not-dude on the agenda is giving a talk on "Why 10% of Women in the Conference Program Does Not Mean Gender Quotas," perhaps consider whether you really want to be involved at all with TrashGoblinCon.
...of course ESR is keynoting. Why wouldn't he be?
By my count, of 38 speakers named: 1 woman, 37 dudes.

I thought these Linux bros were supposed to be good at math or something?
Read 4 tweets
Corey Quinn Profile picture
Jun 4
I went to Google Cloud Next
and I spent a bit of time
I've been challenged to report on it
Entirely in rhyme.
I had some conversations there
And I probably should confess
Every engineer to whom I spoke
Was also on AWS
This happened several years ago
And Googlers were abuzz
About their new thing "Anthos"
Though they could not say quite what it was
Read 7 tweets
Corey Quinn Profile picture
Jun 3
An @RSAConference predictions thread in preparation for my attendance at #RSAC2022 next week...
At least one touched-in-the-head vendor will have swag that plugs into your USB port and will inevitably be confounded by why they get laughed at for it.
There are 470 listed sponsors for #RSAC2022, which means that there will be roughly a dozen differentiated products all told. Most will be marketing as some kind of firewall.
Read 10 tweets
Corey Quinn Profile picture
Jun 3
And now, a rundown of my personal (not corporate) security posture. Let's tune in...
First, I assume you're like me: my threat model is not "the Mossad," and I talk way too much to be worth the headache of kidnapping so attackers won't bother. If that isn't true for you, make different choices.
Update everything to current. Security patches aren't for funsies or Microsoft would have animated characters introducing Patch Tuesday every month.
Read 21 tweets
Corey Quinn Profile picture
Jun 1
Today's a bit of a bittersweet day. Not because it's @Quinnypiglet's 5th birthday, not because it's also National Dinosaur Day, but because it's @NatVeisWilliams's last day here at The @DuckbillGroup.
She's been here for over a year, and as Marketing Director, was our first Marketing hire.

Think about that for a second! That's *NUTS*! Someone with a marketing background and skillset shows up to work here. A place where "spite budget" and "shitposting" exist.
This is almost certainly her first and last job where the phrase "your copy is great, but can you also make sure to call that company's leadership 'total bastards?'"
Read 7 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(