By using multiple products, you indeed have a better chance of detecting and defending against attacks... That is, of course, assuming that you have someone trained to set up, monitor, maintain, and tweak each system you put into place AND that the correspondence between the parties responsible for each system allow correlation of seemingly unrelated data that indicates an attack or intrusion that would not be detected otherwise...
The potentially enhanced visibility made available by using a heterogeneous security implementation comes only at the expense of additional training and staff, and more complicated maintenance, monitoring, and communication. Be aware of the trade-off.
Also, security tools are nothing absent policy/procedure implementation/refinement/education/awareness/enfo rcement/etc.
Invest the majority of your resources into learning how your users make use of the system and then develop and put security procedures into place that encourage secure computing instead of putting systems into place that make their jobs harder and encourage them to bypass your security measures.
I'd rather not drive to the local pharmacy to get my 35mm film developed...
Why not upload my digital pictures to the local pharmacy and let their automated system print, arrange, and package my photos, and then have a pharmacy employee send the pictures back to me via snail-mail?
Maybe they could even deliver the packaged 'developed' photos to my house for a small fee.
Though I doubt Linux will ever overtake the Windows Desktop in the corporate world, when Palladium and Intel DRM crap prevents consumers from maintaining habitual use of their home systems, Linux has a good chance of grabbing a good deal of the home consumer market. People are creatures of habit and are going to be very pissed off...
When people start to become upset, and realize they can do most things in *nixes, game developers might actually think they can make a profit designing for the *nix platforms.
Slightly OffTopic:
It's a possibility, albeit just a tad far fetched...
I am by no means a programmer, though I am a class or two away from a CIS degree and a former NT4 network admin pre-SP3.
I have installed various versions of RedHat, Mandrake, Suse, Gentoo, and Debian. Though it is now possible (and easier than Windows, in some cases...) to INSTALL linux, it still, imo, takes a little too much manipulation in some instances, to find and install suitable Windows-replacement utilities and learn to use them...
That being said, for the millions of people who need only to surf the web, use email, use an office suite, and manage your finances, Linux + KDE + Konqueror or Mozilla + OpenOffice + GNUCash = your free, fully capable alternative to supporting the monopoly that is Microsoft (or stealing their software) and I strongly urge you all to give it a shot - you might be pleasantly suprised.
And in other news, Danish goverment agencies will be increasing their protection fees proportionally... Pay up, or the squirly auditor will officially report you...
CS programs will best prepare you for today's (US) job market by teaching abstract systems design, business processes, algoritm (and process) optimization and analysis, applications of probability and statistics, math, and how to manage your overseas code-shop...
For the record, I am a CIS student and we still have to learn QuickSort, MergeSort, Bucket, Heap, etc., Dynamic Programming, Binary Trees,... and do all of those fun things like place bounds on running time, etc. Having looked all over the web for notes from similar classes, I'd say that most CIS programs still cover this stuff. In the same way I look for notes, many students, however, are looking for solutions and, as you suggested, could not implement the code off of the tops of their heads. Why should they?
I think that it is more important that students know WHY to choose a particular algorithm (speed, correctness, memmory usage, input predictability, etc. Only a true moron will not be able to find someone else's publicly available code one they've chosen the proper algoritm. Leave coming up with new, mostly useless, algoritms to professors and hobbyists. Students should learn concepts in school instead of learning syntax. A former CS student should be able to apply those concepts to teach himself or herself the syntax of a given language in a few months.
One might think so... The ability to record data in a tangible fashion such that it may be shared by others in the exact same format has blurred the distinction between knowledge and intelligence, specifically as they pertain to logic and problem-solving.
The question has changed from "Is there a (new) best way to do this?" to "What is the best (existing) way to do this?"
Intelligence is now percieved as your ability to retain, filter, and regurgitate information instead of your logic and problem-solving abilities.
Don't get me wrong, to a man with a hammer, everything looks like a nail. You will be better prepared to solve a given problem by researching similar problems and their associated solutions, but if person a and person b do the same research, and person a is truly more intelligent than person b, person a will come up with a better solution.
I'd love to see these drives and associated management software be smart enough to form a RAID or JBOD array when placed in close proximity to one another.
Of course, this would not be very useful given the device's current small storage capacity. They'd also have to be able to run on AC power...
Slashdot Mirror
5 cents per document?
By using multiple products, you indeed have a better chance of detecting and defending against attacks... That is, of course, assuming that you have someone trained to set up, monitor, maintain, and tweak each system you put into place AND that the correspondence between the parties responsible for each system allow correlation of seemingly unrelated data that indicates an attack or intrusion that would not be detected otherwise...
o rcement/etc.
The potentially enhanced visibility made available by using a heterogeneous security implementation comes only at the expense of additional training and staff, and more complicated maintenance, monitoring, and communication. Be aware of the trade-off.
Also, security tools are nothing absent policy/procedure implementation/refinement/education/awareness/enf
Invest the majority of your resources into learning how your users make use of the system and then develop and put security procedures into place that encourage secure computing instead of putting systems into place that make their jobs harder and encourage them to bypass your security measures.
I'd rather not drive to the local pharmacy to get my 35mm film developed...
Why not upload my digital pictures to the local pharmacy and let their automated system print, arrange, and package my photos, and then have a pharmacy employee send the pictures back to me via snail-mail?
Maybe they could even deliver the packaged 'developed' photos to my house for a small fee.
The e-Photomat?
And the cowardly nerd strikes again! He will destroy you with his evil thoughts and Internet postings... Stick up for yourself, man...
And in other news, devios is added to yet another 'list of people to kill'...
Though I doubt Linux will ever overtake the Windows Desktop in the corporate world, when Palladium and Intel DRM crap prevents consumers from maintaining habitual use of their home systems, Linux has a good chance of grabbing a good deal of the home consumer market. People are creatures of habit and are going to be very pissed off...
When people start to become upset, and realize they can do most things in *nixes, game developers might actually think they can make a profit designing for the *nix platforms.
Slightly OffTopic:
It's a possibility, albeit just a tad far fetched...
I am by no means a programmer, though I am a class or two away from a CIS degree and a former NT4 network admin pre-SP3.
I have installed various versions of RedHat, Mandrake, Suse, Gentoo, and Debian. Though it is now possible (and easier than Windows, in some cases...) to INSTALL linux, it still, imo, takes a little too much manipulation in some instances, to find and install suitable Windows-replacement utilities and learn to use them...
That being said, for the millions of people who need only to surf the web, use email, use an office suite, and manage your finances, Linux + KDE + Konqueror or Mozilla + OpenOffice + GNUCash = your free, fully capable alternative to supporting the monopoly that is Microsoft (or stealing their software) and I strongly urge you all to give it a shot - you might be pleasantly suprised.
And in other news, Danish goverment agencies will be increasing their protection fees proportionally... Pay up, or the squirly auditor will officially report you...
Does anyone else smell something?
CS programs will best prepare you for today's (US) job market by teaching abstract systems design, business processes, algoritm (and process) optimization and analysis, applications of probability and statistics, math, and how to manage your overseas code-shop... For the record, I am a CIS student and we still have to learn QuickSort, MergeSort, Bucket, Heap, etc., Dynamic Programming, Binary Trees, ... and do all of those fun things like place bounds on running time, etc. Having looked all over the web for notes from similar classes, I'd say that most CIS programs still cover this stuff. In the same way I look for notes, many students, however, are looking for solutions and, as you suggested, could not implement the code off of the tops of their heads. Why should they?
I think that it is more important that students know WHY to choose a particular algorithm (speed, correctness, memmory usage, input predictability, etc. Only a true moron will not be able to find someone else's publicly available code one they've chosen the proper algoritm. Leave coming up with new, mostly useless, algoritms to professors and hobbyists. Students should learn concepts in school instead of learning syntax. A former CS student should be able to apply those concepts to teach himself or herself the syntax of a given language in a few months.
One might think so... The ability to record data in a tangible fashion such that it may be shared by others in the exact same format has blurred the distinction between knowledge and intelligence, specifically as they pertain to logic and problem-solving.
The question has changed from "Is there a (new) best way to do this?" to "What is the best (existing) way to do this?"
Intelligence is now percieved as your ability to retain, filter, and regurgitate information instead of your logic and problem-solving abilities.
Don't get me wrong, to a man with a hammer, everything looks like a nail. You will be better prepared to solve a given problem by researching similar problems and their associated solutions, but if person a and person b do the same research, and person a is truly more intelligent than person b, person a will come up with a better solution.
It has been a long time since we've seen a phenomenal, ground-breaking RPG. I am anxious to see what these guys can turn out.
I'd love to see these drives and associated management software be smart enough to form a RAID or JBOD array when placed in close proximity to one another. Of course, this would not be very useful given the device's current small storage capacity. They'd also have to be able to run on AC power...