The problem is not that the media picks one kidnapping over another. It's that it reports on kidnapping AT ALL. Many people tend to measure their threats by how much media coverage they get, which is why many people have a ridiculously distorted perception of the risks they face in the world.
It is canonical that security. First, create a policy about instant messaging. Get management support for it. Then EXPLAIN to your users why you have that policy. Only then should you start using technological measures.
Technological measures without management support and user education will always be circumvented.
If you want to know more about IM ports, including how to block them, I have some information at
Survey says: The best way to convince management of the need for security is "Conduct vulnerability assessments or penetration tests to demonstrate need for security" (Figure 9, page 4)
It's not easy, but the best you can do is document the vulnerabilities, present your case, and KEEP presenting it. See if there are any corporate policies or legal requirements that support your position.
I personally think certifications are excellent... for the certification companies. All those fees and exams and "ongoing requirements" (e.g. lifelong cashflow). As a useful measure of someone's ability, they rate about zero with me.
Unfortunately the ocean sailing analogy breaks down: solar sails are not propelled by the solar wind, which is essentially a stream of particles from the sun. Solar sails are propelled by pure light pressure - by photons bouncing off of them.
If there is no policy, there is no violation of policy.
QED
You need to build support for your actions with your users, or they will inevitably try to circumvent any controls you put in place. Try starting with some security education, including an emphasis on privacy. Make them aware they are opening themselves up both to security problems as well as privacy invasion.
Then take the initiative to create a policy.
Re:Rendezvous sounds interesting... open standard
on
Apple Drops Mac OS 9
·
· Score: 2
I've been getting lots of Klez. It is Yet Another virus that is grabbing email addresses from browser caches, as far as I can tell. I have taken new measures to shield my email address from ending up in a browser cache, e.g. setting META no-cache directives.
To paraphrase, he said, "Currently we know that about 80% of threats come from inside. But no one ever asks what the desirable value for this number should be. I propose that it should be 100%." He said we should trust insiders rather than outsiders, and trust people rather than machines. Or again paraphrasing, he said that we can trust machines to correctly do whatever they are told, unfortunately machines can't distinguish whether a set of instructions are "good" or "bad", whereas most of the time, most of the people inside your organization will do the right thing.
People say "it's like a magazine", well sure, except most magazines I pay for don't include content that I submit and edit (moderate) and enhance (comment on).
There's something that just doesn't seem right about having to PAY to read a story that I've submitted, or a thread that I've moderated or submitted useful comments to.
Here is my suggestion:
- Viewing Slashdot should be ad free when you have moderator access - Viewing a story that you have submitted should be ad free - If you have a +5 rated comment on a story, that story should be ad free
I think the idea of going to a centralized site for news, whether it's "alternative" news or whatever, is still a bit old fashioned.
Jon keeps talking about the corporatized net, and the failure of democracy on the net, but I think Blogger and related self-publishing tools are providing millions of people the opportunity to easily get their opinions and information on the net.
Slashdot Mirror
The problem is not that the media picks one kidnapping over another. It's that it reports on kidnapping AT ALL. Many people tend to measure their threats by how much media coverage they get, which is why many people have a ridiculously distorted perception of the risks they face in the world.
There are also many online photo development services available to Canadians, see Tables of Online Photo Service Sites.
It is canonical that security. First, create a policy about instant messaging. Get management support for it. Then EXPLAIN to your users why you have that policy. Only then should you start using technological measures.
Technological measures without management support and user education will always be circumvented.
If you want to know more about IM ports, including how to block them, I have some information at
http://www.akerman.ca/port-table.html
I think fuel cells are going to be more important in the near term for stationary power generation.
D-Link sells a variety of different types of antennas.
Saying "FireWire (Apple's trademark), formally known as IEEE 1394 and also called iLink by Sony " was always a mouthfull :(
IEEE-1394 (FireWire, i.Link)
2001 IT Security Survey (PDF)
It's not easy, but the best you can do is document the vulnerabilities, present your case, and KEEP presenting it. See if there are any corporate policies or legal requirements that support your position.
I personally think certifications are excellent... for the certification companies. All those fees and exams and "ongoing requirements" (e.g. lifelong cashflow). As a useful measure of someone's ability, they rate about zero with me.
Unfortunately the ocean sailing analogy breaks down: solar sails are not propelled by the solar wind, which is essentially a stream of particles from the sun. Solar sails are propelled by pure light pressure - by photons bouncing off of them.
If there is no policy, there is no violation of policy.
QED
You need to build support for your actions with your users, or they will inevitably try to circumvent any controls you put in place. Try starting with some security education, including an emphasis on privacy. Make them aware they are opening themselves up both to security problems as well as privacy invasion.
Then take the initiative to create a policy.
It sounds like Jini to me.
They should get Disney to fund Pluto exploration.
Of course with our luck, it'll turn into a DMCA case and Disney will have Pluto nuked for copyright infringement.
CCN
Not only are we not in a contract with them, it is in fact the opposite.
:(
From the time of "public airwaves", broadcasters have gotten a LICENSE (unfortunately not shrinkwrapped) for the privilege of using a public resource.
They routinely violate their license conditions, but nothing ever happens
I've been getting lots of Klez.
It is Yet Another virus that is grabbing email addresses from browser caches, as far as I can tell.
I have taken new measures to shield my email address from ending up in a browser cache, e.g. setting META no-cache directives.
I saw a good talk by Dr. Richard Walton, the director of the Communications Electronics Security Group.
To paraphrase, he said, "Currently we know that about 80% of threats come from inside. But no one ever asks what the desirable value for this number should be. I propose that it should be 100%." He said we should trust insiders rather than outsiders, and trust people rather than machines. Or again paraphrasing, he said that we can trust machines to correctly do whatever they are told, unfortunately machines can't distinguish whether a set of instructions are "good" or "bad", whereas most of the time, most of the people inside your organization will do the right thing.
Probably because "binary Kuiper Belt objects" isn't as easy for people to understand as "moon around a Kuiper Belt asteroid".
I think probably it would be more useful to worry about the terrible *Canadian* legislation that is working its way through the system, including:
- Canadian Copyright Reform Process
- the proposed new and increased levies from the CPCC
- DRM in Canada
See Music fans face raw copyright dealDidn't Jon Postel do practically all of what ICANN does?
Do we really need a huge, opaque, multimillion dollar organization to do... what is they're supposed to do anyway, manage the DNS space? Sheesh.
IP over Neutrino.
Take that RIAA and MPAA! Try to stop filesharing when I can beam my messages through the entire Earth. Ha ha ha!
One species, a-hah-ha-ha!
Two species, a-hah-ha-ha!
Three, three species!
People say "it's like a magazine", well sure, except most magazines I pay for don't include content that I submit and edit (moderate) and enhance (comment on).
There's something that just doesn't seem right about having to PAY to read a story that I've submitted, or a thread that I've moderated or submitted useful comments to.
Here is my suggestion:
- Viewing Slashdot should be ad free when you have moderator access
- Viewing a story that you have submitted should be ad free
- If you have a +5 rated comment on a story, that story should be ad free
The bit of brilliance where they took the awkward but identifiable PCMCIA and changed it to "PC Card", which is very easily confused with "PCI Card".
I have experienced this directly since I ordered a PCI Ethernet card, and the store sent me a PC Ethernet card by mistake.
They just built a new building on my campus, the
Arts and Social Sciences
building.
I think the idea of going to a centralized site for news, whether it's "alternative" news or whatever, is still a bit old fashioned.
Jon keeps talking about the corporatized net, and the failure of democracy on the net, but I think Blogger and related self-publishing tools are providing millions of people the opportunity to easily get their opinions and information on the net.