http://www.jwsecure.com/dan Security, information technology, business Mon, 08 Mar 2010 22:09:16 +0000 http://backend.userland.com/rss092 en From the “something I wish I’d invented” department, GATR makes an inflatable satellite comms system which, including electronics, folds up into “two airline checkable cases”. Pretty cool! http://www.jwsecure.com/dan/2010/03/08/inflatable-satellite-dish/ Downloads here. “Information security is a very dynamic field: legislation keeps changing, technology keeps evolving, and the attacker community continues to be more sophisticated. This turmoil has forced security practitioners to think creatively to address some very difficult problems. Much of this innovation has been locked away within corporations ... http://www.jwsecure.com/dan/2010/02/26/microsoft-effective-security-practices-whitepapers/ Download here. “Information security awareness and training is critical to any organization’s information security strategy and operations. People are in many cases the last line of defense against threats such as malicious code, disgruntled employees, and malicious third parties. Microsoft offers the security awareness toolkit to help organizations plan, ... http://www.jwsecure.com/dan/2010/02/26/microsoft-security-awareness-toolkit/ Alternative content to RSA, next week in SF. Info here. http://www.jwsecure.com/dan/2010/02/26/security-b-sides-anti-conference/ Pretty good post here with some security what-if scenarios, such as the above. The view of someone who was there (regarding the Trustworthy Computing Memo what-if): the Windows security stand-down (aka security push) took place in early 2002, right in the middle of my career at Microsoft. It wasn’t ... http://www.jwsecure.com/dan/2010/02/24/what-if-bill-gates-never-wrote-the-twc-memo/ A colleague asked a question on this topic last week at a Microsoft briefing: how, as security advocates in our own organizations, can we institute better security training as well as influence developers and other members of the IT organization on the importance of implementing security best-practices? Answer: SDL ... http://www.jwsecure.com/dan/2010/02/24/security-development-lifecycle-training-and-process-info/ We’ve got all of our servers – and that includes production and test lab ones – virtualized on Hyper-V, and we’re using Restorify to replicate those VM images within our lab. This is good – our lab is getting more efficient and easier to manage. Next step: move those ... http://www.jwsecure.com/dan/2010/02/24/offsite-backup-is-still-too-hard/ Anyone used these? I saw a presentation on the Twitter + CRM integration at the 2009 MS Partner Conference – it looks pretty cool. But the social networking landscape has changed a lot in the past year, and I’m not sure how useful a Twitter-only integration would be. ... http://www.jwsecure.com/dan/2010/02/24/accelerators-for-dynamics-crm/ For those of you who are still running Windows Small Business Server 2003 – and note that my own employer is in that group – be warned that the Windows Server 2003 product family lapses into “extended support” as of this summer. What’s the difference between mainstream and ... http://www.jwsecure.com/dan/2010/02/04/server-2003-eol-is-this-year/ Just learned about this, although it happened in December. In summary, DARPA issued a challenge for teams to find 10 large red balloons that had been scattered around the continental US. A team from MIT was able to do it in approximately 8 hours using a combination of Facebook and ... http://www.jwsecure.com/dan/2010/01/27/find-10-balloons-anywhere-in-the-country-in-8-hours/