Here is episode 4 of my podcast. Just as fair warning, I tried adding some music to the podcast in the beginning and the end. I think it is a bit loud in the beginning, but I was having trouble getting the volumes right. Basically, turn down your speakers, headphones, whatever in the beginning and the end of the podcast, and adjust as necessary. Also, let me know if the volume of my voice is still too low.
The subjects I talked about tonight were somewhat varied. I did a self-plug about my Computerworld blog. I am really excited about it, so I had to say something about it.
I talked about Martin McKeay’s post about server room security and the implications of not properly building and securing your server room.
I tackled Microsoft’s foray into the security world and how they are committed to the course.
Another subject I commented on was a CNN article with an irresponsible tagline and opening paragraph about the VA laptop theft.
Go listen and let me know what you think.
Vet
Here is a great server room security post by Martin McKeay at his Computerworld blog. Martin points out the issues with thieves starting to target servers. But are they stealing the servers for the hardware or the data on the server?
If it is for the hardware, then there are many measures to lock down a server room. Locks, cameras, racks with locks, etc. Martin gives a good rundown of the security measures and points out that taking design of a server room seriously is crucial.
If it is for the data, then the thief has to have considerable intelligence on what servers have the data they want. And that means that security by obscurity is also a valid concept in physical security.
As I have said before, thieves go for the weaknesses. We have to look at security holistically. All areas need to be secured, not just the attack vector de jour.
Vet
I recently accepted an offer at Conputerworld to be a weekly security blogger. I am not leaving my personal blog. In fact, Computerworld is very receptive to me having a personal blog and linking between the two to create more traffic. That will allow me to keep my personal brand and still have a more widely known venue to get my opinions out there. So basically, I am happy to be working with Computerworld, and I appreciate them bringing me on board.
My first post is here. Take a look, and look for my posts every week. I am still forming what I want to do at Computerworld. Since it will be weekly, I am thinking of making it a multi-issue post where I comment on multiple newsworthy security issues from the week. Let me know what you think.
Vet
I haven’t had a chance to look at this as far as the depth and detail, but it may be a good resource.
Vet
