Last week’s list was short due to being out of town.

Here’s this week’s list o’ links I found interesting…

Monday, August 15, 2011

I remember way too many of these things – 30 years of PCs (slideshow)

pentestmonkey.net had a post pointing me to A Sysadmin’s Unixersal Translator. It’s useful…

It will be interesting to see how this affects other manufacturers of Android devices – Supercharging Android: Google to Acquire Motorola Mobility

And if you cannot get enough of K-State sports, we’ve now got this – K-State Announces Ground-Breaking Launch of K-StateHD.TV

Note the subtle jab at Microsoft – Chinese Authorities Find 22 More Fake Apple Stores

Tuesday, August 16, 2011

I like this – inside information on Windows 8 as it is being developed. – Welcome to Building Windows 8

Wednesday, August 17, 2011

This interesting. It makes me wonder how this can be applied to companies… – How Musicians Are Engaging Fans With Location Tech

Yeah. I get tired of replacing batteries in my keyboard. May have to get one of these – Logitech Wireless Solar Keyboard K750 for Mac®

No real surprises in this report, but just a reminder of what still needs to be done – 2011 State of the CSO

Thursday, August 18, 2011

Could this be why Google bought Motorola? (from @martynasn on twitter)
- Larry, you’ve asked to buy Motorola. It’s done.
- Which model?
- Model?!

We’re all concerned about social media usage in schools. “Here are some guidelines for educators using social media effectively while maintaining professional boundaries.” – 3 Tips for Teachers Using Social Media in the Classroom

It’s not unusual for OS patches to cause problems. That is why many companies have policy that OS or program updates should be tested thoroughly before installing on production systems. – When Good Patches go Bad – a DNS tale that didn’t start out that way

You’ve seen it in the store and been curious about this… – How the Dyson Bladeless Fan Works

90% of the email I receive violates these 7 Tips for Writing E-mails That Won’t Get Deleted

Basketball season is just ramping up at the collegiate level. After watching a game last night, I realized that there are at least 5 reasons why information security is like basketball.

Focusing on the small business, here goes…

1. Success requires more than just one person.
   

   We’ve all seen teams that tried to rely solely on one star player. They may have wins and that star player will have some tremendous stats, but often the team falters in the critical times, or in the playoffs.

   Similarly, there may be an InfoSec star at your business. But, everyone needs to be involved. The owners or top executives set direction and provide support. The technical staff should be cross-trained and understand how they work together. Users should be made aware of the role they play in safeguarding the company assets.

2. Everyone needs to work together.
   

   Have you seen a basketball team play and there are a few players that “haven’t seen a shot they won’t take”? That causes frustration and soon more players play like this.

   Protecting the assets of the company require that each person understand their role and responsibilities, and how they work together. One person may be the server guru and another the network dude and yet another the workstation expert. But when an incident arises, they need to be able to work together with a practiced response. There is no time to ego to get in the way.

3. Fundamentals are important.
   

   There is a reason why teams practice shooting, dribbling and running plays. Fundamentals can be the difference between winning and losing.

   Likewise, the fundamentals of information security should be practiced. Layer the defenses. Train the users and tech staff. Encrypt data. Lock the doors. De-activate accounts when people leave. Review logs. Follow good practices.

4. Someone needs to make the hard decisions.
   

   In basketball, the coach is the one who makes the hard decisions of who plays and who doesn’t. He sets the strategy and the game plan.

   InfoSec also needs someone to make the hard decisions. I’m talking policy here. We can help develop the policy, but support for development and following the policy must come from the very top of the command structure. They also must be willing to support policy enforcement. Otherwise, you’ll end up with multiple individuals trying to convince you to make policy exceptions just for them.

5. Rules are there for a reason.
   

   Rules allow each basketball team to know exactly what is allowable and what is not. Did that player travel? Was that a foul? Oh, and the referees are there to make sure that the rules are followed.

   Businesses are often required to follow a set of information security rules. Do you accept credit cards? Then you need to follow the PCI DSS rules. Are you a publicly traded company? You’ve got regulations to follow. Are you a financial institution? Regulations, again are a major player. These rules are set in place to protect the company and those it interacts with. InfoSec rules are there for a reason. Be sure to follow them. And, get to know you auditors. They can be very helpful in resolving deficiencies.

Basketball and information security… Who knew they had so much in common?

- Dan

I’ll be watching the KU vs Michigan State game tonight at 8:37pm (CDT), and you can too…

Click Here

- Dan