http://www.bespacific.com/mt/archives/021583.html
June 13, 2009
Cyber-Ark 2009 Trust, Security & Passwords Survey Research Brief
2009 Trust, Security & Passwords Survey Research Brief: "This global "snooping" survey is the third in a series of benchmark studies focused on identifying security and privacy trends among IT workers. Results are intended to raise awareness about the risks associated with powerful, and often unmanaged, privileged users and passwords. While seemingly innocuous, these accounts provide workers with "keys to the kingdom," allowing them to access critically sensitive information, no matter where it resides."
[From the report:
While most employees claim that access to privileged accounts is currently monitored and an overwhelming majority support additional monitoring practices, employee snooping on sensitive information continues unabated. In fact, 74 percent of respondents stated that they could circumvent the controls currently in place to prevent access to internal information.
It used to be exciting to spot the Goodyear blimp. Now you recognize it as Big Brother's 'eye in the sky.' I wonder if there is a program to fund these with 'economic stimulus' grants?
http://yro.slashdot.org/story/09/06/13/1610203/Blimps-Monitor-Crowds-At-Sporting-Events?from=rss
Blimps Monitor Crowds At Sporting Events
Posted by Soulskill on Saturday June 13, @01:59PM from the inflatable-rights-violation dept.
Death Metal tips news about how defense contractor Raytheon is adapting military-style surveillance packages for use aboard blimps at public events like the Indy 500. "Until recently, Raytheon's eye-in-the-sky technology was used in Afghanistan and Iraq to guard American military bases, working as airborne guards against any oncoming desert threat. Using infrared sensors and a map overlay not unlike Google Earth, the technology scans a large area, setting important landmarks (say, the perimeter of a military base), and constantly relays video clips back to a command center. If a gun fires or a bomb is detonated, the airships can detect the noise and focus the camera — all from a mighty-high 500 feet." Though the technology is expensive, Raytheon is shopping it around to police departments and other organizations that might want to keep an eye on large gatherings of people.
I never specify content in my website classes. I do specify the functions to perform (links, music, pictures, videos) and the tools to be used. Yes, it is harder to grade, but always amusing. (And I frequently learn from my students.)
Student Who Released Code From Assignments Accused of Cheating
Posted by Soulskill on Saturday June 13, @09:29AM from the mights-and-maybes dept
Death Metal sends in a story about Kyle Brady, a computer science major at San Jose State University, who recently ran into trouble over publishing the source code to his programming assignments after their due dates. One of Brady's professors contacted him and threatened to fail him if he did not take down the code. Brady took the matter to the Computer Science Department Chair, who consulted with others and decided that releasing the code was not an ethical violation. Quoting Cory Doctorow at Boing Boing:
"There's a lot of meat on the bones of this story. The most important lesson from it for me is that students want to produce meaningful output from their course-assignments, things that have intrinsic value apart from their usefulness for assessing their progress in the course. Profs — including me, at times — fall into the lazy trap of wanting to assign rotework that can be endlessly recycled as work for new students, a model that fails when the students treat their work as useful in and of itself and therefore worthy of making public for their peers and other interested parties who find them through search results, links, etc. But the convenience of profs must be secondary to the pedagogical value of the university experience — especially now, with universities ratcheting up their tuition fees and trying to justify an education that can put students into debt for the majority of their working lives."
For my Computer Security class. (“So, Mini-Me, why were you browsing the “joy of Porn” website?”)
http://it.slashdot.org/story/09/06/13/2125211/Sniffing-Browser-History-Without-Javascript?from=rss
Sniffing Browser History Without Javascript
Posted by kdawson on Saturday June 13, @08:32PM from the hole-in-css dept.
Ergasiophobia alerts us to a somewhat alarming technology demonstration, in which a Web site you visit generates a pretty good list of sites you have visited — without requiring JavaScript. NoScript will not protect you here. The only obvious drawbacks to this method are that it puts a load on your browser, and that it requires a list of Web sites to check against.
"It actually works pretty simply — it is simpler than the JavaScript implementation. All it does is load a page (in a hidden iframe) which contains lots of links. If a link is visited, a background (which isn't really a background) is loaded as defined in the CSS. The 'background' image will log the information, and then store it (and, in this case, it is displayed to you)."
Students who don't learn the subjects I teach will soon be learning how to ask, “Do you want fries with that?” These websites are for them.
http://www.makeuseof.com/tag/top-10-most-effective-job-search-websites/
Top 10 Most Effective Job Search Websites
Jun. 13th, 2009 By Ryan Dube
No comments:
Post a Comment