Comment Re:Perspectives (Score 1) 782
Actually it's important for any publicly traded companies.
It's not just HIPAA, but also Sarbanes-Oxley, GLBA, the SEC, and a myriad of other pesky CFRs.
Actually it's important for any publicly traded companies.
It's not just HIPAA, but also Sarbanes-Oxley, GLBA, the SEC, and a myriad of other pesky CFRs.
LOL. Because it's not wiretapping when you're sniffing the communication going on your own private network.
For my Company, we're looking for patterns indicative of SSNs, credit card numbers, and certain keywords such as "confidential", "proprietary", or other keywords that refer to sensitive internal projects or other sensitive company information.
And Googling for information isn't "data leakage", because your activity is bringing information INTO the company (from the results of your Google search) so we don't care a lot about that.
SSH can't be proxied like SSL traffic. The reason SSL traffic works is precisely because of the existence of a wildcard certificate issued from a Trusted Root CA. (I also manage our PKI too).
But SSH — as a matter of good practice — should be heavily restricted. In other words, good security policy dictates you don't let anyone on your network blithely open up an outgoing SSH connection to any host on the Internet.
Agreed. But the OP's Ask Slashdot isn't about Data Leakage, it's about SSL proxying.
Now, if you WANT to have a discussion about Data Leakage, well then grab a cup of coffee and pull up a chair.
I do this shit for a living.
Considering that I actually do this (Internet filtering) for a living for a medium-sized company let me tell you why we do it.
Data leakage.
We're concerned about an employee either accidentally or maliciously transferring customer data or other sensitive data to an unauthorized party.
We're also acutely aware of the liabilities and sensitivities imposed by us breaking the SSL channel, inspecting the payload, and then re-encrypting it on our employees behalf, which is why we go out of the way NOT to break the chain for sites that are healthcare or financial related.
But your Gmail is fair game.
SpaceX should build it in Matamoros, Mexico instead.
When no legal methods exist for consumers to obtain content in a way they demand, of course the only option left for them then is to illegally obtain that which they desire.
Does The Pirate Bay have any accessible proxies via TOR (.onion), NameCoin (.bit), or the Invisible Internet Project (.i2p)?
I'd like to see the MAFIAA try to shut those down.
Of course,
Google pfSense and set it as your firewall.
That site you are looking for...
It already exists!
It's called Reddit.
Same info but without the redactions.
I understand Promo Bay requests submitters list the top 3 countries, presumably for geo-targeting, but I wish the TPB folks would at least put up a web page that lists ALL of the published promos from every country.
I love discovering new music, and love listening to music from all over the World. I'd hate to not discover some awesome music from say Gabon or Tanzania or India because the submitter didn't put USA as one of the Countries.
Technically it qualifies as a Data Breach Incident. Depending on the industry the original drive belonged to shit could hit the fan.
The fault lies entirely with the original owner for not wiping the hard drive before returning the equipment. NewEgg is ot in the data wiping business.
Of course the easiest thing for you to do would simply be to repartition it and reformat it.
Flaw #1 - Using YouTube to distribute your video. There ARE alternatives now.
Flaw #2 - Not suing UMG in Small Claims Court for damages. You want Small Claims since Universal would expressly be prohibited from using any lawyers.
If enough people who've had their videos taken down erroneously sue UMG in small claims court you'll literally bankrupt them.
"More software projects have gone awry for lack of calendar time than for all other causes combined." -- Fred Brooks, Jr., _The Mythical Man Month_