GroovinWithMrBloe - Slashdot User

Comment Re:Confidentiality Integrity Availability. (Score 1) 99

by GroovinWithMrBloe on Monday November 16, 2009 @02:56PM (#30119290) Attached to: Most Security Products Fail To Perform

I've been involved in certifying a firewall to meet ICSA requirements. Let me say that it can only be a good thing to take into account what certifications the product has before using it. This includes FOSS and commercial.

While it's nice that you can review the source of FOSS tools, that gives you no guarantee that the tools are configured appropriately and securely. If you are in an organisation that requires a verifiable degree of security (or as management sees it: level of risk) then using certified products is a no-brainer. No one claims a certified product is absolutely secure, and you should never base a purchase decision purely on the 'does it have a shiny certification logo on the carton?', but when using a certified product you can at least say that X, Y & Z situations are covered. This is especially important in the situation of a breach, where the integrity of logging is important. You don't want your boss screaming at you because the timestamps were wrong or inconsistent, that some data was not logged, etc...

If you are interested, take a look at the criteria for certification for firewalls - http://www.icsalabs.com/technology-program/firewalls/modular-firewall-certification-criteria-version-41

There are a lot of FOSS based products, including the one I worked on, that are ICSA certified. You can have your cake and eat it.

Submission + - Digital mutiny: 2,000 page iraq leak (wikileaks.org)

Submitted by Anonymous Coward on Friday November 09, 2007 @05:10AM

An anonymous reader writes: Looks like them wikileaks guys are finally putting something out there.

from the site:

This spectacular 2,000 page US military leak consists of the names, group structure and equipment registers of all units in Iraq with US army equipment . It exposes secretive document exploitation centers, detainee operations, elements of the State Department, Air Force, Navy and Marines units, the Iraqi police and coalition forces from Poland, Denmark, Ukraine, Latvia, Slovakia, Romania, Armenia, Kazakhstan and El Salvador. The material represents nearly the entire order of battle for US forces in Iraq and is the first public revelation of many of the military units described. Among other matters it shows that the United States has violated the Chemical Weapons Convention.

Submission + - Navisite Massively Botches Datacenter Move (navisite.com)

Submitted by

9InchRails

on Tuesday November 06, 2007 @02:45PM

9InchRails writes: "In a move to consolidate a newly acquired datacenter, web hosting provider Navisite shutdown, boxed and transported hundreds of servers, effectively stranding in excess of 200,000 web sites and authoritative name servers. This fiasco is in its fourth day as noted here and here. How could a company been so completely incompetent?"

Submission + - Skype outage continues (skype.com)

Submitted by

pdcull

on Friday August 17, 2007 @04:44PM

pdcull writes: "I'm surprised that the first news I received about Skype's big outage didn't come from Slashdot. It appears that since yesterday the service has been offline, and that only recently have users been able to start logging in again.

The Skype heartbeat blog says that the outage was not caused by a recent site upgrade nor by hackers, however it doesn't give any clues as to what may have been the reason."

Submission + - PS3 Price cut raises Amazon sales 2800%

Submitted by wamerocity on Tuesday July 10, 2007 @11:44PM

wamerocity writes: The recently announced PS3 price cut seems to have achieved one objective, if only temporarily. Reports are up that the price cut, effective July 10th, has raised the PS3's sales rank on Amazon up 2800% , even outranking the Nintendo Wii, the long-time #1 seller. This deal has combined with the recent Blu-ray Disc promotion of 5 free movies with any Blu-ray player as well as Amazon's deal to include a free bluetooth remote might just be the injection needed to gain developers confidence in the systems future, as well to raise its last-place standing among next-gen consoles.

Submission + - JSR-275 "Measures and Units" for Java 7 (java.net) 1

Submitted by

Jean-Marie Dautelle

on Wednesday July 04, 2007 @11:13PM

Jean-Marie Dautelle writes: "JSR-275- "Measures and Units" Early Draft Public Review terminates soon (July 8). Your comments/feedback are important to us (the latest version 0.8 is available here). The JSR-275 will be a major enhancement for Java 7 by providing "strong" typing (through class parameterization) and easy internationalization of Java programs (preventing conversion errors). The reference implementation is provided by the JScience project under BSD License."

Submission + - The iPhone's OS - unveiled (tamoggemon.com)

Submitted by

Anonymous Coward

on Wednesday July 04, 2007 @11:10PM

Anonymous Coward writes: "Does the Apple iPhone run OSX as we know it from the desktop? Or does it just run a small RTOS that was rebranded for marketing reasons? Follow the URL below for an interesting look deep into the iPhone's software guts!

http://tamspalm.tamoggemon.com/2007/07/05/nitty-gr itty-on-the-iphones-os-x/"

Submission + - The Edge Of Science - Inferior Design

Submitted by

weighn

on Wednesday July 04, 2007 @08:50PM

weighn writes: "Christopher Mims directs New Scientist readers to a review of intelligent design poster boy Michael J. Behe's latest tome, The Edge Of Evolution: The Search for the Limits of Darwinism. The review itself is by Richard Dawkins " — who should need no introduction, but who will get one anyway — author of the Selfish Gene, coiner of the term 'meme', and currently famous for being perhaps the most argumentative and visible atheist on Earth — You probably don't need me to tell you how it went. Beatings this savage don't often appear in print". Bede is sticking to his guns despite his views being publicly disowned by his own university. Should science merely shine a light on the truth or is it justified to brutally tear apart the works of creation "scientists"?"

Submission + - FL Bar Demand Jack Thompson Take Psych Test (gamepolitics.com)

Submitted by TRU7H 17 on Tuesday July 03, 2007 @07:15PM

TRU7H 17 writes: An official of the Florida Bar proposed late last week that controversial Miami attorney Jack Thompson submit to psychological testing and accept a 91-day suspension of his law license. The Bar has moved to hold a disciplinary hearing against Thompson based on several complaints about the anti-game attorney's professional conduct, including video game cases involving Grand Theft Auto and Bully.

Submission + - The iPhone's poor JavaScript performance (iphoneatlas.com)

Submitted by Anonymous Coward on Tuesday July 03, 2007 @06:57PM

An anonymous reader writes: "iPhone Atlas" reports:

"JavaScript speed on the iPhone is downright sluggish in most respects — a frustrating fact given that AJAX is the only current method for building dynamic third-party applications for the iPhone. (On a benchmark page) a MacBook Pro delivered test times of ~300 ms on average. Our in-house iPhones, however, delivered test times in excess of 9000 ms on average."

The site links to several AJAX games and an IM app that run extremely slowly on the iPhone.

Submission + - Google to build Iowa data center...

Submitted by The Bastard on Tuesday June 19, 2007 @10:23PM

The Bastard writes: Iowa politicians were stumbling all over themselves today to announce that Google will blow $600 million to build a new datacenter to be located in Council Bluffs, Iowa. (That's flyover country for those of you in Rio Linda.)
What begins to make this so interesting is not so much what is located in Council Bluffs, but what is located across the Missouri River in Omaha and suburbs. Specifically, USSTRATCOM and USSTRATCOM-GISC, Berkshire-Hathaway, TD-Ameritrade, InfoUSA, and others.
But what really adds to the interest level is this blurb from the news report, which initially didn't make sense:

MidAmerican Energy said it will be a partner in the project. It is working to expand its wind energy generation capability to about 18 percent of its total output
However, this Slashdot post tonight ("Google Spends Money to Jump-Start Hybrid Car Development") clarified the picture. And Iowa-based MidAmerican Energy Holdings (the parent company) is more than just your typical multi-national energy company. Their HomeServices of America subsidiary owns several real estate companies around the nation. No matter how you look at it, it's an interesting mash-up, indeed.

Submission + - Senators propose labels for adult Web Sites

Submitted by

gral

on Thursday April 12, 2007 @06:35PM

gral writes: "From the article:

Operators of Web sites with racy content must label their sites and register in a national directory or be fined, according to a new U.S. Senate proposal that represents the latest effort among politicians to crack down on Internet sex.

No to a red light district on the web, but code embedded in a page to designate content, that's OK.

ZDnet Story"

Feed Apple puts a leash on its Leopard (com.com)

From feed by cnetfeed on Thursday April 12, 2007 @06:32PM

Delays OS release to October as it pulls engineers from the Leopard team to help get the iPhone out by June.

Submission + - Apple Delays Leopard to October, Blames iPhone

Submitted by Stupid Mac Fanboy on Thursday April 12, 2007 @06:22PM

Stupid Mac Fanboy writes: Apple just announced that Leopard will be delayed until October. They cite the development of the iPhone as the primary reason:

iPhone contains the most sophisticated software ever shipped on a mobile device, and finishing it on time has not come without a price — we had to borrow some key software engineering and QA resources from our Mac OS X team, and as a result we will not be able to release Leopard at our Worldwide Developers Conference in early June as planned. While Leopard's features will be complete by then, we cannot deliver the quality release that we and our customers expect from us.
According to the release, developers will be given a "near-final" beta copy of Leopard at WWDC in June.

Submission + - Duke Nukem Forever: What Went Wrong

Submitted by Dr. Eggman on Wednesday March 21, 2007 @04:46PM

Dr. Eggman writes: YouGamers has a 5 page interview with 3DRelms' Scott Miller, which focuses on what went wrong in developing Duke Nukem Forever. Along with Miller's confession comes conformation of Prey 2. Primarily, a perfectionist attitude is blamed for the 10+ year development.

Perfection is not possible — that's the biggest lesson we've learned. No game is perfect. Well, maybe Tetris. ;-)
But there finally appears to be a light at the end of the tunnel; appologies have been made, realistic goals are set, and a screenshot has been dropped. We won't see Duke Nukem Forever this year, but we may just get a new in-game trailer...

...When it's done.

Slashdot Top Deals