Correct Cloud Services Use

Security is not difficult. People are lazy, cheapskates, or assume they know everything, and nothing will happen to them, until it does.

Some people advocate banning software title with Group Policy.  Actively restricting collaboration software, is not as easy on Android, iOS, or MAC anyhow.  There must be 200 various software titles that facilitate sharing.  It is probably not a good idea to ban the browser and your office suite also.  Besides, a determined user can always find some obscure title that the CIO has never heard of.

Instead of playing security catch-up by banning all end user tools with file sharing capabilities, be proactive and set the system up correctly so that they have no need for those tools.  Don’t place confidential documents on the cloud in the first place.  Clouds are for public data, like brochures, flyers, articles, catalogues and websites.  Clouds are for sharing files with thousands of users.  Cloud service companies are for websites, videos, and storefronts. They have the million dollar a month Internet service that you don’t.  Use the cloud properly, and stop causing yourself all this trouble.

Never place private R&D information, financial, or confidential correspondence on the cloud.  That is like asking your neighbour to keep your credit card statements in the trunk of his car.  As should be understood, the number one rule of security is: “Unless you have physical control of the system, there is no security.”

Business documents, are mostly text based.  Other documents types that have large files are more likely from specialized users, like unedited media and audio from reporters or research.  These should never be stored on a cloud service.  I am sure people will come up with a plethora of excuses though.  Who needs gigabytes of storage for business; libraries? No, because the documents at a library are public.  A media company; then that data is slated for public consumption also.  These are exactly what the cloud should be for.  Public domain files.

If your company needs to collaborate on everything, then you have deeper problems than security.  Most likely a few fat executives can buy cheaper cars and invest in some quality servers and hardware VPN solutions instead.  Everyone stuffing everything into the cloud are people who upload half-dressed pictures of themselves to social networks, then scramble to tinker with the privacy settings.  Those are OTHER computers you are putting that data onto, not some mysterious bank vault in the sky.  You have absolutely no idea who goes to work each day in those server farms.  Perhaps, with flashkeys in their pockets to spend their break time in a back room living out their voyeur fantasies with your files.  Maybe, they are looking to grab new R&D ideas to start a new company.  You do not know.

When working with data that large, mostly likely you using workstations, toys like iPads or Windows RT.  So, invest in some storage also, then add a quality hardware VPN, a hardware managed firewall, and have each office and share everything privately.  You can even set up a private P2P system across all your offices and have everything encrypted by hardware as it leaves each network.

People who are at work, do not all need internet access from their desk.  Sure it is easy and nice to be kind, but are they there to update Facebook (not counting PR personnel) or actually working.  Your end users should have no need to store confidential documents on their personal devices anyhow.  Do things properly so risks are minimized to those who are deliberately trying to steal data, not the typical non-technical user who doesn’t understand.  If you manage the way and how devices connect, you can allow Internet access from personal devices and keep the internal network separate.

Use proper virtualized user accounts. Have it so that private computers, or devices, can ONLY use a VNC, over a VPN, into a VD.  Disable local USB storage devices, mice and printers will still work.  Have users use network USB storage ports ONLY.  All the accounts and files never have to leave the loop.  People who deal with public documents are given a separate login account for THAT work.  To be secure, you make sure that you do what the military does.  People who build the hardware, do not use it.  People who deal with the public, do not have access to R&D, and R&D does not have access to accounting.  Even with only one person for each role, the files should be separated by secure accounts that cannot share files with each other except through managed folders with filters.  All user roles should have separate log-ins and use server storage, not local.  All common files are on remotes drives that have regular backups.

Now, get to work!

Posted in Observations and Opinions | Tagged , , , , , , , , , , , , , | Leave a comment

Things you should never share on Facebook (or any website)

Things you should never share on Facebook, or any website

Source from an excellent article on CBS MoneyWatch by Kathy Kristof:
(http://www.cbsnews.com/8334-505144_162-57373533/6-things-you-should-never-share-on-facebook/)

 

YOUR BIRTH DATE AND PLACE

Sure, you can say what day you were born, but if you provide the year and where you were born too, you’ve just given identity thieves a key to stealing your financial life, said Givens.

A study done by Carnegie Mellon showed that a date and place of birth could be used to predict most — and sometimes all — of the numbers in your Social Security number, she said.

VACATION PLANS

There may be a better way to say “Rob me, please” than posting something along the lines of: “Count-down to Maui! Two days and Ritz Carlton, here we come!” on Twitter. But it’s hard to think of one.

Post the photos on Facebook when you return, if you like. But don’t invite criminals in by telling them specifically when you’ll be gone.

HOME ADDRESS

A study recently released by the Ponemon Institute found that users of Social Media sites were at greater risk of physical and identity theft because of the information they were sharing.

Some 40% listed their home address on the sites; 65% didn’t even attempt to block out strangers with privacy settings. And 60% said they weren’t confident that their “friends” were really just people they know.

 

CONFESSIONALS

You may hate your job; lie on your taxes; or be a recreational user of illicit drugs, but this is no place to confess. Employers commonly peruse social networking sites to determine who to hire — and, sometimes, who to fire.

Need proof? In just the past few weeks, an emergency dispatcher was fired (http://www.todaystmj4.com/news/local/95367744.html) in Wisconsin for revealing drug use;

a waitress got canned (http://www.upi.com/Odd_News/2010/05/17/Waitress-fired-for-Facebook-comment/UPI-39861274136251/) for complaining about customers.

The Pittsburgh Pirate’s mascot was dumped (http://www.upi.com/Odd_News/2010/05/17/Waitress-fired-for-Facebook-comment/UPI-39861274136251/) for bashing the team on Facebook.

One study done last year estimated that 8% of companies fired someone for “misuse” of social media (http://mashable.com/2009/08/10/social-media-misuse/).

 

PASSWORD CLUES

If you’ve got online accounts, you’ve probably answered a dozen different security questions, telling your bank or brokerage firm your Mom’s maiden name; the church you were married in; or the name of your favourite song.

Got that same stuff on the information page of your Facebook profile? Are you playing games where you and your friends “quiz” each other (http://moneywatch.bnet.com/saving-money/blog/devil-details/biggest-security-threat-facebook-you/4079/) on the personal details of your lives? You’re giving crooks an easy way to guess your passwords.

If you’ve got online accounts, you’ve probably answered a dozen different security questions, telling your bank or brokerage firm your Mom’s maiden name; the church you were married in; or the name of your favourite song.

Got that same stuff on the information page of your Facebook profile? Are you playing games where you and your friends “quiz” each other (http://moneywatch.bnet.com/saving-money/blog/devil-details/biggest-security-threat-facebook-you/4079/) on the personal details of your lives? You’re giving crooks an easy way to guess your passwords. on the personal details of your lives? You’re giving crooks an easy way to guess your passwords.

 

RISKY BEHAVIOURS

You take your classic Camaro out for street racing, soar above the hills in a hang glider, or smoke like a chimney? Insurers are increasingly turning to the web (http://www.insure.com/car-insurance/social-media-future.html) to figure out whether their applicants and customers are putting their lives or property at risk, according to Insure.com.

So far, there’s no efficient way to collect the data, so cancellations and rate hikes are rare. But the technology is fast evolving, according to a paper written by Celent (http://www.celent.com/124_2896.htm), a financial services research and consulting firm.

 
Source from an excellent article on CBS MoneyWatch by Kathy Kristof:
(http://www.cbsnews.com/8334-505144_162-57373533/6-things-you-should-never-share-on-facebook/)

 

Posted in Observations and Opinions | Tagged , , , , | Leave a comment

Merge your Windows Live and Skype accounts

All of you should have merged your Windows Live and Skype accounts by now if you keep up to date on your PC maintenance. If not, you should be aware that Microsoft is retiring Windows Live Messenger in January 2013

1) Log in (Skype sign in – Sign in to your Skype account) with your Hotmail, Messenger, Sympatico, or other WLM account.
2) Then, login with your Skype account to import your Windows Live contact lists.
3) Merge your Facebook account into your Skype to import that list also
4) Go to your Skype Profile and add your other Hotmail or Microsoft email addresses to let them know you own them also.

NOTE: You can only merge one Microsoft with one Skype account at this time, so choose wisely. Pick the one you use most often. Hopefully they will allow the others to merge later on.

IMPORTANT: If you get messages from yourskypeusername@fakeSkypeDomain.fakedomain this is NOT malware or spyware, this is NORMAL, just close them and ignore it, this is just Microsoft setting up the servers.

KNOWN BUGS: some people, who have not merged yet, will NOT see you online in Windows Live Messenger until they also switch to Skype and merge their Messenger accounts also!

Merge your Facebook and Skype accounts if you use Windows 8 (RT, or Metro Version), or Windows Phone, or you want to chat with Facebook friends without having to sit in front of your browser with the facebook page open all the time. Facebook has announced they are not releasing anymore stand-alone chat apps, because other programs already provide this feature.

I STRONGLY advise that if you have Windows 8 Pro (desktop version) that you do not install the lame RT (Metro) version of Skype, or you uninstall it and switch to the Windows 8 desktop version of Skype.

In order to use the RT (Metro) version you will be forced to login to your Microsoft account and you will not be able to use your local desktop account while you are signed in. This does not apply if you ONLY have a Microsoft account on your computer.

Posted in Observations and Opinions | Tagged , , , , , , , , | Leave a comment

My central Online contact site

I’m sorry MSN, but as you already know I don’t use MSN Spaces for my primary online site.  However I want to direct my Windows Live Messenger contacts to my most up to date online presence which is on Facebook  *imagines MSN groaning*.  Here is the address for those of you who also have an account there and wish to find me.  Kieseyhow’s Facebook page.  I set the link to open a new window so that at least you won’t be yanked away from this one.
Posted in Observations and Opinions | Leave a comment

October 2007 News

 
Well, I completely forgot to add anything here before … 😐  I had previously moved from Hawkesbury to plantagenet last year, but now I have moved again, from Plantagenet Ontario, to Winchester Springs Ontario.  It’s great here, clean air, quiet, and SUPer friendly people.  As some of you know, I am trying to change my career YET again.  I have 28+ years experience with computers, and electrical stuff, and over 15+ years experience with welding and millwirghting, and now, I want to be a long-distance truck-driver .. lol  Of course I will work where and how I can to attain my goals.  Also lately I have been thinking about cars and replacing my sorely missed Ford truck.  I am seriously leaning towards a Mercedes Diesel for now.  I am tired of these plastic unreliable modern tinfoil things that everyone seems to want lately.  I want something solid, reliable and can handle the Canadian driving conditions .. LOL
 
Out here in the boonies, I am temporarily cut off from my friends and brothers and sisters at Church too.  I am more than 40 minutes away from the nearest ward chapel which is down in Cornwall.  Hopefully I will be able to get a vehicle soon and get around.
 
So far I have met dozens of wonderful and amazing people out here.  Everyone is wonderfully friendly and outgoing.  People out here are warm and outspoken too, which is how I like it.  It makes a nice change from the norm in other regions.  I miss all my friends though and I hope to get back to visit them when I can.
 
now, if any of you wants to email me, can you please use my gmail account instead of Hotmail, or Yahoo.  me address is kieseyhow(a)gmail.com (I typed it that way to stop SPAM robots from reading my address off this Webpage).
Posted in Observations and Opinions | Leave a comment