Follow Slashdot stories on Twitter


Forgot your password?
Trust the World's Fastest VPN with Your Internet Security & Freedom - A Lifetime Subscription of PureVPN at 88% off. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. ×

Submission + - How to suck at Information Security? (

wiedzmin writes: Great entry in today's SANS Internet Storm Center Handler's Diary — How to suck at Information Security. My favorite points include:
  • Assume the users will read the security policy because you've asked them to.
  • Assume that policies don't apply to executives.
  • Make someone responsible for managing risk, but don't give the person any power to make decisions.
  • Expect end-users to forgo convenience in place of security.
  • Say "no" whenever asked to approve a request.
  • Stop learning about technologies and attacks.
  • Hire somebody just because he or she has a lot of certifications.
  • Don't cross-train the IT and security staff.
  • Expect your users to remember passwords without writing them down.

Very entertaining and informative read with total of about 4 dozen points. Now if I could only find a way to get management to read it.


Researchers Developing Cancer-Fighting Beer 283

CWmike writes "Ever picked up a cold, frosty beer on a hot summer's day and thought that it simply couldn't get any better? Well, think again. A team of researchers at Rice University in Houston is working on helping Joe Six Pack fight aging and cancer with every swill of beer." Thank you science! Now we just need cigarettes that cure baldness.

Slashdot Top Deals

The party adjourned to a hot tub, yes. Fully clothed, I might add. -- IBM employee, testifying in California State Supreme Court