How To Suck At Information Security

wiedzmin writes "Great entry in today's SANS Internet Storm Center Handler's Diary — How to suck at Information Security. Some of my favorite points include: 'Assume the users will read the security policy because you've asked them to. Assume that policies don't apply to executives. Make someone responsible for managing risk, but don't give the person any power to make decisions. Expect end-users to forgo convenience in place of security. Hire somebody just because he or she has a lot of certifications. Expect your users to remember passwords without writing them down.' Very entertaining and informative read with total of about 4 dozen points. Now if I could only find a way to get management to read it." There's also a one-page PDF on the author's site.

Re:well..

Also, be under the IT director's desk, with his fly unzipped and your lips on his exposed penis.

Keep your jaw open and your cheeks sucked in to maximize stimulation and minimize tooth scraping. While sucking, use one hand to jerk the base of the penis until semen flows into your mouth. When this happens, lift up your tongue and let the semen flow around it into the back of your throat so that you don't have to taste it.

Keep sucking until semen stops flowing, then spit it into his trash can or swallow it. Charge him with rape if he dosen't give you a new office and a raise.

Re:First things first

[Gazzonyx]

Does this story take place in San Francisco, perchance?
if you missed the obscure reference to Terry Childs