Most CISSP's I've encountered have been buzzword-spouting chimps. They're all about process and procedure, and making someone else do any actual work. Their chief function is to tell you why whatever you're doing is "insecure", at which point they get an attaboy from Management, and you get to double your workload.
Right. Which is why they're always in demand: anything that's wrong is never their fault.:)
More seriously, that's part of the nature of the beast. They're usually brought in as auditors for big organizations/companies that are worried about more than just security: they're also worried about stuff like regulatory issues and due dilligence. They're playing cover their butts because your company is playing cover our butts. Not that I'm defending unnecessarily chimpy behavior ber se.
Heh. I note that you say "scaled down version of RUP," which is good, because if you were using all of it, you might have been cited for failing to create the appropriate "post to community discussion site use case scenario artifact inventory," or something. Come to think of it, I don't know anyone who uses "vanilla RUP." You either cut things out, or it's completely intractable.
As for the bug tracking thing... are you guys using any of the Rational toolset? If you are, I predict that it's only a matter of time before someone mandates that you start using ClearQuest.
(Note and disclaimer: I am not a security pro. I am a system administrator, and hold an RHCE. I also have a college degree, although I took a good long time to finish it up.)
The CISSP is pretty much considered the gold standard of security generalist certifications. CISSPs rarely hurt for jobs for long.
If you're interested in something Linux related, you may want to look at Red Hat's Certified Security Specialist program. To get it, you need to complete the RHCE first (which looks good on a resume in and of itself), followed by an additional three exams covering network security, distributed authentication, and SELinux. Each exam is offered by itself, or on day five following a 4-day intensive course. Not exactly for the faint of heart, though, so if you're focusing on network level security without a lot of system administration, you'll probably want to give it a miss.
And come to think of it, I'm not even sure I disagree that "podcast" has become generic. It just bothers me that I'm hearing people say, "What the dilly-o, it should be obvious to anyone that "podcast" and "iPod" are completely unrelated," while it's pretty obvious that they're not.
That makes no sense. Is dodge suing everyone who calls something "dodgey"? no of course not. And thats even like slander or something, making fun of their name.
Don't be an ass. "Dodge" was a word long before the car company existed, and the first documented usage of the word "dodgy" was somewhere in the mid 1800s, according to Dictionary.com.
Tell me, precisely what would you have assumed "podcast" meant prior to the iPod?
Fair enough. I'd say there are two counter arguments to Apple: the "pedigree" argument, which would suggest that the word "podcast" doesn't come from iPod, and the "timing" argument, which is that they're too late now in trying to protect it. I'd suggest that the first is obviously false, but the second is arguable.
I think you've just argued Apple's point for them. The word "iPod" is clearly and appropriately associated with Apple, and they have a trademark on it. The word "podcast" comes directly from "iPod," and yet isn't associated with them. A lawyer could easily argue that this is dilution of trademark.
(Warning: IANAL)
Another thing to remember: trademark isn't like copyright. Copyright requires no special action for you to initiate: your works are copyrighted to you, unless you sign those rights over to someone else, and copyright notices only serve to notify the people of your right. Trademarks, on the other hand, need to be registered and filed, often in multiple countries if you're a big company. In the US, if you get a trademark and don't defend infringements upon it in court, the courts can hold that your trademark has been invalidated.
So in other words: if Apple doesn't do this, they may risk losing the trademark on the word "iPod." I think you can understand why they'd consider this bad.
I'd argue that the word "podcast" is already generic -- are there any audio blogs that don't call themselves podcasts?
I recall reading in an air and space smithsonian magazine article over 10 years ago about how the Russians had developed an air-to-air missile that could fire backwards at a pursuing aircraft. Is there any chance that the newer Russian fighters have this capability? Then again, where the heck do they get the money to buy these things, I can't imagine that they have very many...
The USSR had aircraft which could fire rear-facing missles from as far back as the eary eighties. There was an exhaustive documentary on the subject which I highly recommend.
Just remember that you need to "think in Russian."
Not only that, but plenty of "dedicated" gamers will have enough disposable income to buy the Wii in addition to, rather than instead of, the PS3 or XBox. It makes an attractive second box, especially for those hoping to play a few games with the non-hardcore.
You're right, but it's beyond that. The "dedicated" gamers are the ones with enough disposable income to by an assload of games, and generally wind up getting multiple consoles. Even I have both a PS 2 and an XBox, and I don't consider myself at all hardcore.
So in a sense, the article is right in that no "dedicated" gamer is likely to pick up the Wii over the PS 3 or XBox 360. They'll get it in addition two the other consoles.
Your post reads like a summary of the book, "Extreme Programming Refactored: The Case Against XP," by Stephens and Rosenberg I recommend it for everyone, including people who are using XP successfully.
If nothing else, it's worth it just for the song lyrics:
Eight Builds a Week
(Sing to the tune of "Eight Days a Week" by The Beatles) Livin' in a timebox Guess you know it's rough Gotta build every day, babe Even half-baked stuff
Build it, ship it Build it, ship it
Ain't got time for design, babe Eight builds a week
Build it every day, babe Build it right on time One thing I can say, babe No time for design
Refactor it, test it Build it, ship it Ain't got time for design, babe Eight builds a week
My wife used to work with a lady whose husband suffered a severe stroke. His ability to match words to objects suffered somewhat, which led to the following conversation between the two of them.
(Scene - Mister and Missus are walking through the back yard, when Mister notices something on the ground.)
Mister: Oh, hey. Take a look at these tracks.
Missus: Oh, yeah. What do you think made those tracks?
Mister: (looks hesitant) A Benfucker.
(pause)
Missus: A what?
Mister: You know. (Look of frustration.) A Benfucker!
Try as he might, he couldn't come up with any word for the animal he was thinking of other than "Benfucker."
This was not pointing out the flaws in a company's computer system. This isn't a story about some geek calling the help desk and saying, "Hi, I'm Fred Fustus' new secretary and I need his password," and then getting it.
This was a person in a position of power (The Chairwoman of the Board at HP), who had access to personal and confidential information about an employee (his Social Security Number), and used it to obtain additional personal and confidential information (his phone records) through fraud (by having someone pose as the target).
Do you see the distinction? This isn't a story about how the security practices of an organization were called into question, although it does highlight how bad the SSN is as a security measure. This is about a person in a position of authority and trust misusing her power for personal/corporate gain.
Yeah, yeah. It's possible. IIRC however it's consider an afront to God for a man to dress in womans clothing, whether the end would justify the means in terms of shari'ah? I'm not sure.
Strip clubs are considered a no-no too, but several of the 9/11 hijackers attended one prior to their mission.
Any cameraphone capable of sending an image via e-mail can upload to Flickr. Once you have a Flickr account, you can generate an upload-by-email address in the Flickr domain. That's how I post from my phone.
By extension, anyone who knows your upload-by-email address can post to your photostream too, so make of that what you will.
Slashdot Mirror
If the experience is relevant to the job? Probably the guy with 4 years of experience. I'm hardly alone in this view.
Phew! That's lucky, then. Off you go.
Right. Which is why they're always in demand: anything that's wrong is never their fault.
More seriously, that's part of the nature of the beast. They're usually brought in as auditors for big organizations/companies that are worried about more than just security: they're also worried about stuff like regulatory issues and due dilligence. They're playing cover their butts because your company is playing cover our butts. Not that I'm defending unnecessarily chimpy behavior ber se.
Heh. I note that you say "scaled down version of RUP," which is good, because if you were using all of it, you might have been cited for failing to create the appropriate "post to community discussion site use case scenario artifact inventory," or something. Come to think of it, I don't know anyone who uses "vanilla RUP." You either cut things out, or it's completely intractable.
As for the bug tracking thing... are you guys using any of the Rational toolset? If you are, I predict that it's only a matter of time before someone mandates that you start using ClearQuest.
(Note and disclaimer: I am not a security pro. I am a system administrator, and hold an RHCE. I also have a college degree, although I took a good long time to finish it up.)
The CISSP is pretty much considered the gold standard of security generalist certifications. CISSPs rarely hurt for jobs for long.
If you're interested in something Linux related, you may want to look at Red Hat's Certified Security Specialist program. To get it, you need to complete the RHCE first (which looks good on a resume in and of itself), followed by an additional three exams covering network security, distributed authentication, and SELinux. Each exam is offered by itself, or on day five following a 4-day intensive course. Not exactly for the faint of heart, though, so if you're focusing on network level security without a lot of system administration, you'll probably want to give it a miss.
This is a perfect example of the need for a +1 Time Bandits mod.
"Digital watches, day one!"
If we can't call polemicsists trolls, then the terrorists have already won.
Or something.
Yeah - I'd say you're absolutely right.
And come to think of it, I'm not even sure I disagree that "podcast" has become generic. It just bothers me that I'm hearing people say, "What the dilly-o, it should be obvious to anyone that "podcast" and "iPod" are completely unrelated," while it's pretty obvious that they're not.
Don't be an ass. "Dodge" was a word long before the car company existed, and the first documented usage of the word "dodgy" was somewhere in the mid 1800s, according to Dictionary.com.
Tell me, precisely what would you have assumed "podcast" meant prior to the iPod?
Fair enough. I'd say there are two counter arguments to Apple: the "pedigree" argument, which would suggest that the word "podcast" doesn't come from iPod, and the "timing" argument, which is that they're too late now in trying to protect it. I'd suggest that the first is obviously false, but the second is arguable.
(Warning: IANAL)
Another thing to remember: trademark isn't like copyright. Copyright requires no special action for you to initiate: your works are copyrighted to you, unless you sign those rights over to someone else, and copyright notices only serve to notify the people of your right. Trademarks, on the other hand, need to be registered and filed, often in multiple countries if you're a big company. In the US, if you get a trademark and don't defend infringements upon it in court, the courts can hold that your trademark has been invalidated.
So in other words: if Apple doesn't do this, they may risk losing the trademark on the word "iPod." I think you can understand why they'd consider this bad.
Uh - yes.
The USSR had aircraft which could fire rear-facing missles from as far back as the eary eighties. There was an exhaustive documentary on the subject which I highly recommend.
Just remember that you need to "think in Russian."
Not only that, but plenty of "dedicated" gamers will have enough disposable income to buy the Wii in addition to, rather than instead of, the PS3 or XBox. It makes an attractive second box, especially for those hoping to play a few games with the non-hardcore.
You're right, but it's beyond that. The "dedicated" gamers are the ones with enough disposable income to by an assload of games, and generally wind up getting multiple consoles. Even I have both a PS 2 and an XBox, and I don't consider myself at all hardcore.
So in a sense, the article is right in that no "dedicated" gamer is likely to pick up the Wii over the PS 3 or XBox 360. They'll get it in addition two the other consoles.
Although, as your selection of anecdotes makes clear, neither the experiences nor bonding are quite as important as the alcohol.
If nothing else, it's worth it just for the song lyrics:
That's not a bug, it's a feature. It's also directly tied to the fact that you'd have to be drinking to approve the use of these in your district.
"Look, I'm not so sure about these..."
"Hey, no problem. Take this unit back to your hotel with you, play around with it. And hey - drinks are on us."
Tom? Who cares about Tom?!?
The real question: with or without Leonard Nimoy singing? (Warning: QT video embedded. But so, so worth it.)
Look, no offense, but are you fucking kidding me? You're claiming bragging rights because of a system that's been up a whole ten weeks?
Try as he might, he couldn't come up with any word for the animal he was thinking of other than "Benfucker."
Never did find out what kind of tracks they were.
Er. I mean, no matter how you slice it. Hardness notwithstanding.
Jeez. I need some caffeine.
This was not pointing out the flaws in a company's computer system. This isn't a story about some geek calling the help desk and saying, "Hi, I'm Fred Fustus' new secretary and I need his password," and then getting it.
This was a person in a position of power (The Chairwoman of the Board at HP), who had access to personal and confidential information about an employee (his Social Security Number), and used it to obtain additional personal and confidential information (his phone records) through fraud (by having someone pose as the target).
Do you see the distinction? This isn't a story about how the security practices of an organization were called into question, although it does highlight how bad the SSN is as a security measure. This is about a person in a position of authority and trust misusing her power for personal/corporate gain.
That's just bad no matter how hard you slice it.
I've seen plenty of mistakes trocier than that.
Yeah, yeah. It's possible. IIRC however it's consider an afront to God for a man to dress in womans clothing, whether the end would justify the means in terms of shari'ah? I'm not sure.
Strip clubs are considered a no-no too, but several of the 9/11 hijackers attended one prior to their mission.
Not that I'm defending profiling. Just sayin'.
Any cameraphone capable of sending an image via e-mail can upload to Flickr. Once you have a Flickr account, you can generate an upload-by-email address in the Flickr domain. That's how I post from my phone.
By extension, anyone who knows your upload-by-email address can post to your photostream too, so make of that what you will.