Every so often I someone finds my LinkedIn profile and asks me to join their network, and vice-versa. I am always pleased to hear from TaoSecurity Blog readers who would like to contact me. However, I stick to a fairly consistent policy about accepting invitations to LinkedIn.
If you look at my LinkedIn connections, you might notice a few groupings. First, you'll see an overwhelming number of ex-Foundstone consultants, ex- or current-Air Force personnel and contractors, and others with whom I've directly worked. Second, you'll see some members of the digital security community with whom I have regular or semi-regular contact. Finally, you will see a few students of my multi-day training classes, people I've met through NoVA Sec and related northern Virginia security business, and maybe a few people I chat with regularly in IRC.
In other words, I hardly ever accept invitations from people I've never met in person. Meeting once or twice at security conferences doesn't count, unless it's part of an ongoing conversation. I realize some people use LinkedIn like an extended address book. I don't use LinkedIn like that. I use the site to keep ties with people for whom I can vouch or testify to their technical skills or interests. I never want to look at my LinkedIn contacts list and ask myself "Who's that again?"
I expect some people might not care for this policy, but that's the way I use the site. Thank you.