Posts Tagged ‘security’

Folk Models of Home Computer Security

Tuesday, March 22nd, 2011

Via Schneier, here’s a link to a fantastic paper by Rick Wash, talking about the state of computer security in a home and the dangers of leaving oneself uninformed. In general it’s a great read and it’s in pretty lay terms, so I suggest it to anybody that isn’t too keen on security. Meaning it’s been emailed to my parents, of course.

Securing the Security

Monday, January 24th, 2011

An enormous explosion ripped apart a Moscow airport, killing 31. It’s too soon to be sure whether or not this was an act of terrorism or some sort of accident, but that’s not stopping the conclusions from being jumped to.

Green said thousands of people were in the terminal at the time of the blast.

Domodedovo is generally regarded as Moscow’s most up-to-date airport, but its security procedures have been called into question.

If this was in fact a terrorist attack:
Increased security would only have changed where the act took place, it wouldn’t have prevented it. They’re aiming for the biggest crowd of people, and if that target is in the plane, in the terminal, or lined up nicely in the pre-screening screening area, that’s what will get hit.

If this was not a terrorist attack:
If they didn’t realize this already, terrorists everywhere now know that you can kill a bunch of people lined up in one spot in an airport.

We’d better spend more money on theater, rather than intelligence gathering.

I Accidentally All The Passwords

Wednesday, January 19th, 2011

Apparently it’s a bad idea to give one IT person ultimate power at a company. Who knew? A fairly well written article that details some pretty bold frauds, this piece is clearly geared toward computer semi-literate business folk. It explains in lay terms why it’s a bad idea for one single person to have absolute control over a network.

Obviously, at least one other person should have known the passwords. … Ed was entrusted with both administrative and security responsibilities. That meant he was monitoring himself.

Absolute power corrupts blah blah blah. People will never learn.

“We don’t have any cases where, after the fact, people said, ‘I can’t believe it — he was such a nice guy,'” says Cappelli.

I’m fairly certain the network admin coming off as a reclusive jerk has little to do with whether or not they’re a criminal. It might have more to do with the fact that every time something goes wrong, employees turn in to toddlers and yank the IT guy away from whatever important shit he’s doing to exclaim “the internets is broked!” Then once it’s all better, said employee doesn’t feel the need to listen to the IT guy to prevent future meltdowns. The bad eggs get mad and commit crimes, the good eggs grind their teeth and post on blogs.

A Gift from Cracked

Saturday, December 25th, 2010

The 7 Dumbest Things Ever Done By Airport Security

Just for you guys to enjoy on Christmas.