Slashdot Mirror
Storage Security
Storage Security is not about turning on the right configuration options on your XYZ brand server appliance. It's about applying solid, methodical security practices to your storage systems, regardless of whether they are disks directly attached to a single computer, Network Attached Storage or part of a Storage Area Network. The authors address the full security cycle, too, starting with evaluating the security of proposed new storage solutions. Comparative data in hand, the book shows you how to narrow the field to a single solution that offers the best balance between functionality and security.
And once the system is selected, you can't stop there. You've got to decide on appropriate security policies for the new storage system, draft and implement a backup and restore plan, deal with disaster recovery and take care of a host of other issues. In short, this is a good guide to an entire range of considerations necessary to select, deploy and manage a secure storage solution.
The book's evaluation methodology is particularly valuable. Each type of storage (directly attached, NAS and SAN) is covered in a chapter of its own. Within each chapter, the authors address specific technologies used to implement that type of storage. For example, the direct-attach chapter discusses such common storage technologies as SCSI and IDE, moderately exotic systems like USB and Firewire drives, and some more advanced solutions like HiPPI and SSA. Each technology is then placed in a matrix and scored in 11 different categories, including popularity and industry acceptance, built-in data protection features, typical fault tolerance and physical security characteristics.
The authors assign each rating on a scale of 1 (poor) to 5 (the best). This gives a good general indication of how each technology measures up, but they tend to rely on a straight average of the ratings when determining the best technology. Although it's true that the average allows you to make a quick ballpark comparison, there are many other factors to consider as well, such as the suitability for your particular environment and the way in which your users need to access their data. The matrixes are quite useful, but just remember that you can't always boil things down to a simple numerical score.
Probably the biggest problem with this book is that it's pretty dry. As a reference book, the writing style is fine, since it's easy to find what you're looking for, and the chapters are concise. It's difficult to read from cover-to-cover, though, which is a shame because that's what you should probably do the first time through. Take it in small doses, a chapter or so at a time, and you should be fine.
Storage Security is about just what you'd think: the security of your data as it's being stored on your server(s). It's not a detailed look at the configuration of any one product, but rather a comprehensive, theory-based approach to managing the security of your storage subsystem from evaluation to purchase to daily operations. If you manage a small or mid-size network, you may or may not need this book. If you have a larger network, though, or have significant data-storage needs, this deserves a space on your shelf.
You can purchase Storage Security: Protecting, SANs, NAS and DAS from bn.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.
make it even harder to get the hard drive out of this #$%@% Presario...
I'm starting to think that maybe you guys don't like Linux???
I have a very simple answer:
The Impeachment of Ashcroft, Bush, Cheney, Poindexter, and Rumsfeld
Cheers,
W00t
Rofl, hilarious! Brilliant satire :-) Who wrote this??
a friend of mine recently pointed me to
this ebay auction: Real Time IDE Hard Drive Encryption Kit (Bay)
the link has lots of pretty pictures.
i like the physical usb key that the drive bay has.
loopback seems a better solution than $50+ for this.
Use my userscript to add story images to Slashdot. There's no going back.
There is a piece zooming around the internet that attributes some pretty forceful statements to me, Dick Hawley - one time fighter pilot, General, thoughtful consultant, neophyte strategist, master of the artful compromise. The words did not flow from my pen, but if the e-mails mean anything, those words are now indelibly linked to my name. So do me a favor - if you receive this, please send it on to the same people to whom you forwarded the one that I did not write. It's not that I don't share many, if not most, of the sentiments attributed to me, but the piece is just not my style.
Here's what I would have said if I'd been asked to comment on those five important issues.
1) Goodness, Evil and Relativity: There are some really good people in this world. They volunteer to help those who need it, and ask nothing in return. There are also some really bad people in this world. They exploit those who need help, or who have less wit or "charisma", and motivate them to join in committing unspeakable acts of cruelty against people they don't even know. Then there are the rest of us. Average people who try each day to do no harm, to provide for their families, to do an occasional act of kindness. The evil that was perpetrated against our land on 9/11 was the product of Mullahs who see our prosperity and power as a threat to their control over the uneducated Muslim masses on whose shoulders they ride through life. And so they preach hate. They are evil.
2) Violence begets violence: It's true. Violence does beget violence. But sometimes there is no alternative but to confront those who would perpetrate evil acts against us. This is one of those times. We are blessed to have courageous men and women willing to put their lives on the line to track down and annihilate those who have been so imbued with evil as to be beyond redemption. But violence is not a strategy. It is a necessary and fully justified reaction to an unimaginable threat. But it is not a strategy. If we are to win this war, we must defeat the Mullahs. And to defeat the Mullahs, we must find ways to separate them from their uneducated flocks. We cannot kill all those who have been taught to hate us, nor should we wish to. Far better to change their minds than to change their state of being.
3) The intelligence community let us down: Well, maybe just a little. Lots of senior and not so senior intelligence people became just as enamored of high tech gadgets as their political masters. The protests over our evisceration of the human intelligence component of the agency were not very loud or forceful. Keeping spies on the ground is a high risk and often dirty business, and it wasn't just liberal politicians who didn't have much stomach for it.
4) Poverty is the breeding ground for terrorists: No, it isn't; but religious extremism is. The Mullahs fear our wealth and power because it shows that a secular society with democratic institutions and a free market economy can do a better job of taking care of its peoples' needs, both spiritual and physical, than the oppressive Islamic regimes that they aspire to lead. The Mullahs are the problem, not poverty, but poverty does make it easier for the Mullahs to spread their evil - as do governments that tolerate and even reinforce their hateful message.
5) Profiling: We are at war here! We are not talking about traffic stops. If we were at war with Iceland, I would expect those charged with our defense to pay very close attention to any Icelander who ventured near our shores. In this war I expect them to pay very close attention to Muslims with ties to the places that spew hatred against us. Random checks when there are no such obvious targets available are a good way to keep the evil ones guessing, but let's not make small children and grandmothers take their shoes off while we watch far more likely candidates walk aboard unchecked.
6) Resolutions:
a. Never forget that what happened on September the 11th of 2001 was an act of war.
b. Never sit silently by while someone tries to justify what happened on that day as an understandable reaction to U.S. policies in the Middle East or elsewhere.
c. Fly our nation's flag proudly - it represents this world's greatest hope to move beyond the pain and suffering that inflict so many across the globe.
Richard E. Hawley
General, USAF, Retired
Former Commander, Air Combat Command
Security books are pure crap. If the software you are using is so insecure, you change to something better which does the same job, or write something yourself.
(Far, wide, and full of hot grits!)
Evidently a few moderators were taken in by the same guys.
Keep your packets off my GNU/Girlfriend!
and here's teh back door to go with it!
I thought it was accepted on slashdot that information wants to be free (free like not spending money for things you can find on the web or napster) but all the reviews I've been sharing have been moderated to minus 1.
How can I view this as anything but pure unadulteratd hypocrisy?
--Rosie
It sounds like you had a male nurse while in the hospital.
PS. I can't add any more details now, as I have an irrepressible urge to learn to play the GNU/flute.
Since we all know that by "GNU/flute" you mean "skin flute," I am convinced your male nurse had his way with you until you began to like it.
My suggestion: find yourself a woman.