Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

Comment: Corporate Liability Insurance, etc. (Score 1) 247

by Bookwyrm (#48526887) Attached to: Ask Slashdot: Convincing My Company To Stop Using Passwords?

With regards to the actual posted question, you should find out if the company has any sort of insurance policy relating to data/security breaches that might be dictating things like the password policy. If the company has insurance to cover problems from insurance company X, and insurance company X is saying "You must do passwords, and like this, or else no insurance!", then you have a monumental task ahead of you because you have to convince your workplace to address the insurance policy/company - as well as an internal political/technical/budgetary issues.

Beyond that, the field of the business was not specified. It is possible that, depending on the country, industry, business contracts, and local regulations, there might be some specific clause dictating this corporate policy. (There can be no end to the insanity when you have a situation where, in order to do business with government and/or company Y, your own business must get certified to follow practices according to standard Z, be audited, etc.) If something like a password policy change requires a (re)audit of to verify your company's power level is still over ISO 9000, or Sigma Mane Six or whatever, well... good luck.

Comment: Because dead people don't view ads... yet. (Score 2) 186

Given that people are essentially Google's product, or the source of it in terms of information, it makes business sense the Google would be interested in protecting the flock so the company can continue to shear the sheep regularly.

It would be more worrisome if Google found a way to have the dead be more profitable than the living and decided it should go into the mutton business.

Comment: Akin to product releases (Score 1) 497

by Bookwyrm (#46429937) Attached to: Can Science Ever Be "Settled?"

People come up with theories, they get refined, debugged, and eventually tagged as a release candidate.

If the theories seem solid enough, there is a major/product release as something which is solid enough for other people to use in production environments.

As people keep using it, it gets minor patches/revisions. If people find a serious enough flaw/bug, then people start working on creating another major version release (or competing product.)

And, just as in software, if the new version of the theory/science is not backwards compatible to the previous one, there is much wailing and gnashing of teeth.

Comment: Wrong question: The answer is: don't publish crap (Score 1) 162

by Bookwyrm (#45657955) Attached to: Ask Slashdot: To Publish Change Logs Or Not?

The change log is a product. It needs to be reviewed, readable to the target customers, and compliant to any necessary contractual, legal, or regulatory disclosures with the appropriate disclaimers. It should not reveal any trade secrets, third party confidential information, violate any vendor NDAs, have any unprofessional remarks about the customers, etc.

It sounds like the problem is you're putting out crap change logs using an automated system to copy things from the issue management system. Do you have policies in place to make sure people don't put crap into the issue management system? Are things being reviewed before the change logs are being put out? Is it being vetted by the necessary product/legal/regulatory folks to make sure nothing is in there that is going to bite you?

If a company published a crap product, then it will get bitten. When a company gets bitten, it's instinctive reaction is to stop putting out change logs to stop getting bitten, because that's the easy, lazy, doesn't take more effort answer. Asking "Whether or not change logs are a good idea?" is the wrong question. The right question is more "Okay, we got bitten because we put out crap change logs. How do we stop putting out crap?"

The answer to that question is generally something called 'Hard Work'. If the company isn't willing to put in the effort to make a good change log (appropriate policies to capture the relevant changes, tech writer/tech doc support to clean it up, manager-level review to vet it for compliance, etc.) Then, yes, it may make more business sense to not publish anything rather than to publish garbage. It's not a matter of whether or not change logs are good or bad -- good change logs are good, bad change logs are bad. The question is: How do you generate good change logs?

Comment: Re:If I had to guess (Score 1) 418

by Bookwyrm (#43019237) Attached to: Six-Strikes System Starts In U.S.

However, as the summary points out, the end user must pay $35 to challenge "strikes" against them, and while they are refunded the full amount, if they win, there is nothing else won, nor is the ISP punished for false claims. In other words, the user assumes all risk even if they know that they are innocent.

Maybe. If the $35 if refunded in the full amount to the end user, who is paying for the arbitration service? If the ISP's detection system erroneously flags a few thousand people, and each of the claims has to be considered, some one is going to be paying for the man-hours of the arbitration work. It's not clear who is bearing the risk of the costs of false claims.

Comment: Does this make the parents legally responsible? (Score 2) 345

by Bookwyrm (#42013209) Attached to: David Cameron 'Orders New Curbs On Internet Porn'

While this seems a bit poorly thought out, if (and only if) it makes the parents *legally* responsible for anything objectionable their children might find, not the ISPs, not other websites, etc., but leaves all the responsibility squarely on parental supervision, then I could get behind this. Shielding ISPs and web hosting companies from frivolous lawsuits from stupid, irresponsible parents is actually positive.

If, if (and only if) it puts the 'think of the children' squarely on the responsibility of the parents while offering them the tools/filters/guidance to supervise computer use, that could be good. Less "How could you put that up where children might find it?" and more "Why are you not being responsible for your children's activities? You were warned, given the tools, shown how to watch them. Why are you not responsible?"

If this does not provide any additional legal protections for ISPs or such from stupid parents, then, no. This is worthless.

Comment: Re:ABC is a private business? (Score 1) 627

Uh, what? If he wants to play with the big boys, he ought to be a big boy. That's like saying everyone ought to get a fair shot to be on an Olympic athletic team -- and, in fact, everyone does, but you have to be able to qualify. He cannot even raise $50K in non-corporate donations, and wants to play with the big boys? And is whining on slashdot for help, not to raise contributions, but to whine harder?

It would be more respectable if instead of the misleading headline of "Libertarian Candidate Excluded from Debate for Refusing Corporate Donations", as opposed to "Libertarian Candidate Excluded from Debate because No One Will Donate", and whining, the article instead had been more of a "What is the most efficient/best ways of soliciting/gathering online political contributions for a third party candidate from small/non-corporate donors?" Or perhaps inquiring about the equivalent of a kickstarter site for political candidate, etc.

Comment: ABC is a private business? (Score 0) 627

I rather thought ABC is a private business, so from a Libertarian point of view, I would think they could decide whatever they want as far as who to include on their own debate?

Or, if you are not accepting corporate donations, why are you interested in going on a debate that is essentially sponsored by a corporation -- i.e. ABC -- and their advertisers?

Unless there is something else here, this sounds a bit petulant.

Comment: Need more detail here -- (Score 1) 422

by Bookwyrm (#41514219) Attached to: Ask Slashdot: What Would You Include In a New Building?

Does the IT systems have to be up 24/7 for the CNC rigs? If so, what about UPS/generators/power backup?

You mention security systems, too -- that's another ball of wax. Going with badges, biometrics, security guards, or what?

Fire systems? Are you both the IT guy and the guy in charge of a fire suppression system? In a CNC manufacturing environment? Do you work with hazardous materials on the CNC floor? If so, get an expert.

Hot climate, cold climate? Wet, dry? Flood zone? Likely to get buried in snow zone? Is the new facility out in the middle of nowhere? Middle of a big city? High crime zone? War zone? It sounds like you've got the obvious stuff down, but are asking for the non-obvious, but without a more information, the non-obvious stuff is harder to suggest. (i.e the sort of thing like 'Oh, it's in *that* country/state -- don't do X, because regulation/union/group Y will bite you.') It's hard to 'be in your shoes' without a bit more info.

It is much easier to suggest solutions when you know nothing about the problem.

Working...