Start looking for another job. In my experience having another manager come in to the group is always a disaster. I've never had it go well, and that's WITH new managers who seemed to think I was doing a great job.

But what about illegal aliens? Or maybe Socialists? Liberal University Intellectuals? Bible Thumping Hicks? Lawful Gun Owners?

The potential applications are limitless! The only thing they won't protect us from is ourselves.

Because we TOTALLY need drones in domestic airspace to protect us against ______________.

Used to work in a medical environment and this does not surprise me at all. The whole "FDA regulated device" argument is just another sham by device manufacturers, software vendors, and lazy admins to avoid patching their systems. The medical community is completely out of touch with the current state of IT. They talk about needing continuity and up-time and all this, but have no idea what that means. You get a department file server trying to infect the entire network (including pcc devices) and they freak out when you knock their box offline. Yea, sorry, I know you can't get to your spreadsheet but I'm trying to prevent your server from KILLING SOMEONE.

It's a pathetic state of affairs and it won't change without better leadership. Hospitals need to start beating up their vendors to stop coding for Windows 3.11.

Finally we can play Strategema without those annoying finger cups. Kolrami is going DOWN this time!

There is absolutely no possibility that this is going to benefit us peons in any way.

It's almost as though they're trying to achieve security by making information about their service very obscure. Has anyone ever tried this before?

You say "compulsory to wear" like its a good thing.

Let me ask you something, are you seriously so concerned about people who are stupid enough not to wear seat belts that you need to go around pretending that making a law is going to force them to wear them?

It's called "thinning the herd" dude.

They need legislation to somehow make this legal.

http://www.wired.com/threatlevel/2012/03/ff_nsadatacenter/all/1 ...and the other posters are right...in 5 years they'll make it 10. In 10 years, 15. In 15 years they'll just stop pretending and enslave us all.

Another alternative is "don't have a facebook account".

Nor does he want to force them to do anything. All he's doing is posturing for the election with another meaningless piece of shit legislation.

Yea, progress towards another watered down piece of shit that does more harm than good.

You don't seriously think the government is going to do something in our interests that might inconvenience corporations even slightly or impede their ability to invade our privacy do you? There is no financial motive for doing so.

Why don't we just not use these worthless, expensive, pieces of shit in our airports anymore? Seems like it might be a simpler solution to the problem.

I agree with the overall tone of the article, but at the same time I am pretty skeptical that this is going to lead to an overblown cyber warfare capability. I guess it could lead to massively over budgeted security theater and rights-trampling clusterfuck legislation, but at the same time the trend I see as an infosec professional is to massively under-invest in information security and underestimate the threats.

Just today we learned that there were Chinese hackers in Nortel's network for a decade. Can you imagine? How many organizations used the Contivity client? Uhm....like *every* organization? Add that to Symantec's dismal failure to deal with the theft of their source code. These are *security companies* and THEY have had mind blowing security lapses...what's going on with the rest of the corporate world? What's going on with government systems where there are government funded APTs going after them 100% of the time? Do we seriously think the US government is so good at cyber-security that there are no major problems there? Not likely. I would say "not possible" in fact.

I think where it gets overblown is the threat to infrastructure. Not that I think serious compromises there aren't possible, but its not the boogeyman they are starting to make it out as. The threats are becoming more sophisticated all the time, though.

What I definitely agree with the article about is that declassification is necessary so that the public can evaluate these issues on their own, rather than relying on people who have a.) something to gain and b.) absolutely no idea what information security is, should be, or how one goes about implementing it. I mean you hear things anecdotally from vendors about what the government is up to and you think, "gee...I wouldnt go with that solution for my network...so why would the government, which has a lot more to lose, go with it....?" The instinct is always to close off, to classify, to protect but that is absolutely the wrong way to go about security. Organizations do this to try and keep their flaws secret, but at the end of the day all they do is lose visibility and accountability which invites even worse compromises. I can think of nowhere this is more dangerous than with government systems.

I think there is a real lack of high level expertise in InfoSec. I am not the most technical person who has ever gotten into this field, and have been starting to steer my career accordingly. However, common sense and a decade or so in the trenches will give you some pretty good ideas about what the threats are, how to prevent them, and what direction you should be moving in. Unfortunately, InfoSec personnel are rarely listened to when architecting networks, designing implementations, etc.

Regardless on anyone's feelings on command line vs. GUI, one reason it is so popular is that it's easy to administrate for people who don't know how to use a CLI. I see it all the time now. Sure, it's definitely not ideal to be a sys admin who doesn't know how to use a CLI but...they're out there...and there are a lot of them. Without the GUI it's just one more reason not to run Microsoft on your servers.

Personally, I don't really like this either. I'm fine with CLI but I think a GUI is well suited to many server tasks. Microsoft could definitely have a stronger CLI (I haven't messed with powershell...Im in infosec and don't administrate that often anymore)...but the GUI was a good tool.

I dunno. I think this is a very bad idea for MS. For LINUX advocates? It's awesome.