Please create an account to participate in the Slashdot moderation system


Forgot your password?
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×

Submission + - How to suck at Information Security? (

wiedzmin writes: Great entry in today's SANS Internet Storm Center Handler's Diary — How to suck at Information Security. My favorite points include:
  • Assume the users will read the security policy because you've asked them to.
  • Assume that policies don't apply to executives.
  • Make someone responsible for managing risk, but don't give the person any power to make decisions.
  • Expect end-users to forgo convenience in place of security.
  • Say "no" whenever asked to approve a request.
  • Stop learning about technologies and attacks.
  • Hire somebody just because he or she has a lot of certifications.
  • Don't cross-train the IT and security staff.
  • Expect your users to remember passwords without writing them down.

Very entertaining and informative read with total of about 4 dozen points. Now if I could only find a way to get management to read it.


Researchers Developing Cancer-Fighting Beer 283

CWmike writes "Ever picked up a cold, frosty beer on a hot summer's day and thought that it simply couldn't get any better? Well, think again. A team of researchers at Rice University in Houston is working on helping Joe Six Pack fight aging and cancer with every swill of beer." Thank you science! Now we just need cigarettes that cure baldness.

Slashdot Top Deals

Top Ten Things Overheard At The ANSI C Draft Committee Meetings: (5) All right, who's the wiseguy who stuck this trigraph stuff in here?