Blogs Bloggar
RSS Subjects
Submit Blog Edit Blog How it Works
RSS SubjectsBlogs about "Processes"

Processes

Should We Design Processes Like Airplanes?
2008-11-11 15:15:00
As the ongoing discussion about standards for BPM continues, an interesting thread with Mr. Khan of Ultimus fame emerged. In response to his Don?t Forget the BPM Ecosystem article, I explained that standards always play a critical role in the development of mature industries, and drew further analogy to the airline industry that Mr. Khan felt compeled to challenge in a subsequent article. Unfortunately, his appreciation for the standardization that took place in both the commercial and general aviation markets seems to be fairly limited, and certainly not matched by facts that can be easily observed by any pilot today, myself included. The rest of the article is available at BPMLab.org.
By: IT|Redux
Adding Data to Processes
2008-10-16 20:02:00
Business Process Management (BPM) differs from Workflow in many ways, but its native support for data might be the most critical one. When BPML was introduced eight years ago, its most fundamental innovation (later embraced by BPEL) was to treat data as an integral dimension of processes, rather than simple parameters of workflow activities. Assaf Arkin, Intalio's CTO, deserves credit for such a major contribution to the field of enterprise computing. Nevertheless, neither BPML nor BPEL went far enough along the data axis, and never allowed developers to properly manage data objects or entities. Instead, it relied on a service model to access externally-managed entities, and only cared to carry the process' data, thereby limiting the BPMS' ability to be used as a general purpose development platform for enterprise applications. This is about to change, and once again, Intalio is on a mission to bring such innovation to the market. Let's take a look at what's coming up? At a hig...
By: IT|Redux
ProcessQuicklink : Quickly Show Processes Running Information In Computer
2008-08-18 09:00:00
Few month ago i was wrote a post regarding 'Identified Of Process Running In Computer' and introduce three website that have all kind of process-specific information,allowing you will be able to find specific information related to the process.However,it was quite troublesome for those who are not familiar process running in computer.Is there any simply way that quickly to know the process running in computer is safe and don't care about other information ? Yes ,you have.ProcessQuicklink integrated Window task manager and their website process management .After install the program,a row of small icon will appear in window task manager .If you want to know more information for process related,just click the icon then will open the page and showing the process of specific information .Download ProcessQuicklink / supports window 2000/2003/XP/Vista .copyright of WongSK Blog
Systems & Processes Will Help You Do What You Really Want
2008-08-15 01:34:00
If you have ever wondered about creating systems in your business, then consider reading the post I'll introduce now. Rich Schefren, owner of Strategic Profits, had a great post today. He titled it "Anybody Seen the Instruction Mnual?" Rich talks...
processes and equipments to produce mg cl from sea water
2008-07-27 08:18:00
does any one know the needed processes and equipment to produce 3000 t/y of magnesium chloride 98% pure powder from sea water?.
Security Compliance Management ? Solution Accelerator Available
2008-06-07 15:16:00
I wrote about it as we released the Beta. Now, the Solution Accelerator for Security Compliance Management is live and available. It is definitely worth looking at it: Security Compliance Management. Just to quote from the webpage: In today's IT environment, the ability to comply with regulations and industry standards, such as the Sarbanes Oxley Act, is a source of deep concern for many organizations. In addition, organizations need to manage risks resulting from emerging threats and changing conditions within their IT infrastructures. As a result, organizations need sound methods that they can count on to understand the state of the security settings in their IT infrastructures, assess the compliance of a security baseline, and demonstrate that compliance requirements have been met. To help organizations address these challenges, Microsoft has created the Security Compliance Management toolkit. The toolkit provides best practices from Microsoft about how to plan, deploy, and moni...
Leadership Processes and Follower Self-identity (Lea Series in Organization
2008-06-06 05:19:00
Leadership Processes and Follower Self-identity (Lea Series in Organization and Management.) # Author:Robert G. Lord , Douglas J. Brown# Format:PDF 1.3MB# Page Count: 264 pages# Publisher: Lawrence Erlbaum; 1 edition (July 1, 2003)# Language: English# ISBN-10: 0805838929# ISBN-13: 978-0805838923Presenting a follower-centered perspective on leadership, this book focuses on followers as the direct determinant of leadership effects because it is generally through follower reactions and behaviors that leadership attempts succeed or fail. Therefore, leadership theory needs to be articulated with a theory of how followers create meaning from leadership acts and how this meaning helps followers self-regulate in specific contexts. In this book, an attempt is made to develop such a theory, maintaining that the central construct in this process is the self-identity of followers. In developing this theoretical perspective, the authors draw heavily from several areas of research and theory. The...
Service Oriented Architecture and the Security Implications
2008-06-03 11:53:00
I was just posting on SOA and the Security Implications of it from a CIO/CSO perspective on my other blog. If you are interested, here is the link Roger
The latest SQL Injection Attacks
2008-05-30 09:39:00
Well, there was quite some chatter over the last few weeks with regards to the massive defacements we saw based on SQL Injection Attacks. So, what was really new? Close to nothing. Well, this is not completely true. The new thing we have seen with these attacks is automation; however a lot of people did not really start with this at the beginning. Just as an example, The Washington Post published an article called: Hundreds of Thousands of Microsoft Web Servers Hacked and said Hundreds of thousands of Web sites [?]have been hacked recently and seeded with code that tries to exploit security flaws in Microsoft Windows to install malicious software on visitors' machines. Whereas the first part was true ("just" giving a wrong impression) the content in the article was definitely wrong as it was (and still is) no Windows or IIS vulnerability but just bad programming. What we see are tools that use Google to find web application with potential SQL Injection vulnerabilities and then tr...
First B2B Processes More Than Two Million Complex Transactions Using MySQL
2008-05-29 20:47:00
One of The UK's Leading Providers of Business-to-Business Electronic Trading Standardises upon Sun's MySQL Open Source Database
How to sell security
2008-05-27 11:45:00
I just read this essay by Bruce Schneier: How to Sell Security. This is definitely a must-read in my opinion. Not that it really tells you how to sell it but it helps you to understand the "mechanics" about it.Roger
Two Important Whitepapers on Windows Server 2008
2008-05-26 16:52:00
If you are planning to implement Windows Server 2008, there are two paper recently published that could help you with it: Active Directory Certificate Services Upgrade and Migration Guide Configuring and Troubleshooting Certification Authority Clustering in Windows Server 2008 Roger
Google to Comply with Indian Legal Processes, Will Hand over Orkut Informat
2008-05-20 13:51:00
In a new development, Google handed over information about an Orkut user to the Indian police who had allegedly posted some vulgar content about Indian political leader Sonia Gandhi. (...)
Selling Vulnerabilities and Ethics
2008-05-18 21:19:00
Shoaib just blogged on Hacking & Security Community - Ethical or Unethical?. To start with: I do not claim that I know all about ethics and that there is only one view on ethics but I have a clear view on certain things. I blogged on this theme several times already and made my points pretty clear: Vulnerability Auction Selling Vulnerabilities? WabiSabiLabi and their view on ethics When I talk to people who are selling vulnerabilities, they keep telling me that it is their right to sell their work and as they do vulnerability research for a living. So, let's use an analogy: How ethical would it be to try to find ways how to break into my house and then selling them to the people paying most as they will offer services to me to protect me? Is this ethical? Not from my perspective. If I would hire somebody to look for these vulnerabilities, this is a different game but I would then want to know them without going public. WasbiSabiLabi tells us that they will not sell to the...
Habubank Chooses World-Check to Enhance its Compliance Processes
2008-05-15 15:21:00
Habubank, the first commercial joint stock bank in Viet Nam, today announced that it will utilise World-Check's risk intelligence solutions to enhance its due diligence and Know Your Customer (KYC) compliance processes. World-Check is the leading global provider of intelligence on heightened risk individuals and... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Support for Law Enforcement and COFEE
2008-05-14 16:00:00
Over the last few weeks there has been a lot of chatter about a tool we provide in a Beta version to Law Enforcement called COFEE: Computer Online Forensic Evidence Extractor. Let me give you some information on COFEE and put it into the proper context. I am personally convinced that every company has its obligation to work towards making the Internet a safer place. Amongst other things, this means a close collaboration with Law Enforcement. Let's face it: Most of security is about crime prevention! Now, Microsoft has a team internally working with Law Enforcement running different programs: Anti-Phishing Efforts: You know of the Internet Explorer 7 Phishing Filter. Additionally we are founding member of the Digital Phishnet. Anti-Spam Efforts: Again, besides technology we have been a leader in promoting Signal Spam, a unique public/private partnership in Europe and probably in the world. Legislative Efforts: One of the key challenges in fighting cybercime is that most of t...
Bug Hidden for more than 25 Years
2008-05-14 09:25:00
Wow, this was impressive: A Swiss Developer posted on Saturday a blog that he found a bug which remained hidden for more than 25 years: When seekdir() Won't Seek to the Right Position. BTW: It is in BSD, where the code is available to everyone and as I am told on most of the panels I am sitting in, Open Source is more secure as the bugs are found very fast by the community?? I do not want to pick on Open Source but it would probably be a good time to stop to pick on us and get the own house in order first Roger
The Debate on Security Metrics
2008-05-09 09:58:00
Recently I was sitting on a panel which was pretty heterogeneous: There was a representative from IBM (actually from former ISS), customers, a representative from the Open Source community (who actually, during his presentation always said how bad our security is) ? well, and me. In order to have some fun, the moderator wanted to bring some fire in the discussion and said: We often hear people saying that Open Source is more secure than your software model, what do you have to say on this? Well, there were so many different themes on the table which were ? in my opinion ? more interesting to discuss than a debate on Open Source vs. Microsoft, I actually did not want to go down that road. So, I asked the moderator back: Could you please elaborate a little bit what you mean by "more secure". To cut this story short, we actually had a very good discussion on how security can be achieved, what is necessary and a little bit on metrics. Why am I raising this? Well I read a blog post this ...
How Microsoft IT does Threat Analysis
2008-05-05 17:49:00
I wrote on that already earlier. We make processes and tools available how we internally do Threat Modeling. To make it clear: this has nothing to do with the Security Development Lifecycle but much more with Microsoft's own IT department. The reason for this post is that we just released version 2.1 of the Threat Modeling Tool, which is downloadable for free. You find it on the Application Threat Modeling website Roger
Best Practices for Microsoft PKI & Certificate Management
2008-04-29 21:19:00
You might know Brian Komar. He wrote numerous books on PKI and Certificate Management and he is a well-known speaker at quite some events like TechEd and IT Forum. Now, nCipher organized a Webimar on Best Practices for Microsoft PKI & Certificate Management. If you are interested, you might register at the link above. Roger
What?s Running - Get details on Windows Processes
2008-04-29 13:12:00
Copyright Feed Content - OnlineTechTips - Aseem Kishore 18254532AKMK Want to know more about startup processes and task manager processes? Have you ever feel curious about any of the running processes inside your computer? Wish that you could know more details about them? There are a few advantages in knowing about the running processes inside ...
New iPhone SDK allows pseudo background processes
2008-04-27 00:00:00
The new iPhone SDK is going to give developers another tool in their arsenal. The new iPhone SDK has a sort of semi background process support that has been discovered. It is important to note that this is not background process support, at least not in the true sense of ...
New iPhone SDK allows pseudo background processes
2008-04-26 07:29:00
The new iPhone SDK is going to give developers another tool in their arsenal. The new iPhone SDK has a sort of semi background process support that has been discovered. It is important to note that this is not background process support, at least not in the true sense of the word. Also, the documentation that comes with the SDK still says only one application can run at a time. So what is all this you are hearing about background process support? The whole discussion around this is because a certain method of allowing an application to gain or lose active status. This would suggest that applications could have the ability to run in the background. It is misleading though. In actuality, it will just allow an application to continue to run when the device is locked, or if a window opens over the current application. Just as now, if you hit the home button, or open a new application, the current one exits. The documentation of the SDK says it very well. “When an application is inac...
Realtor?s Business Diagnostic Test #1: A-E-I-O-U And Sometimes Y
2008-04-25 21:12:00
How often do you perform a diagnostic test on your business, it’s processes, and the overall health of your organization? Now might be a great time to take on this task; the results may surprise you as well as provide areas to improve upon. When learning the English language one of the first concepts ...
Security Updates and Exploits
2008-04-25 12:01:00
As you may know, we announced version four of the Microsoft Security Intelligence Report earlier this week. Amongst the many interesting findings is data which relates to software vulnerability exploits. I wanted to highlight these as Shoaib, one of my blog readers, contacted me recently to get my views on a post he wrote. Here are the key findings: During 2007, 32.2 percent of known security vulnerabilities (CVE IDs) in the Microsoft products analyzed for this report had publicly available exploit code. This is nearly identical to the totals from 2006 when 32.7 percent of known security vulnerabilities for the same products had publicly available exploit code. Microsoft matched each public exploit with its corresponding vulnerability using CVE identifiers and Microsoft security bulletins. The number of Microsoft security bulletins released in 2007 was 11.5 percent lower than in 2006, and the number of vulnerabilities covered by those bulletins was 29.6 percent lower than the nu...
Security Pros ignoring their own message
2008-04-25 09:17:00
As you probably know: I am Swiss. We have a saying in Switzerland (I do not know whether something like this exists in English as well) that the kids of the shoemaker always have the worst shoes? So, what about the security professionals? No, I am not talking about their shoes but what about the way they handle security? It seems that during Infosec (the information security exhibition in London) there were quite some notebook just lying around and ? even worse ? unlocked. Now, we ask the users to take care but we do not even do the basics right? I once said a few years ago that whenever I find an unlocked notebook in the office, I would add myself as a local admin (as most of us are admin on the box, this is a fairly easy task if the machine is not locked). Now, after doing that I waited for the next time we had a meeting together. It is Microsoft attitude that you take your notebook to the meetings (and some do e-mails during the meetings L). I then remotely rebooted their noteboo...
SDK Hints At Possible Background Processes?
2008-04-25 05:03:00
Rumor has it that the UIApplication delegate class found in he iPhone SDK beta that might mean the ability to run background processes after all. According to an anonymous source of TUAW, "There are definitely some very interesting methods added to UIApplication's delegate, including methods for badging the Springboard icon, and methods related to gaining and resigning "active" status - seems like background apps may be permitted somehow." [via TUAW]
Visual Cobol, Enterprise Processes, and SOA
2008-04-23 17:15:00
There’s a fairly intense discussion going on these days amongst the SOA illuminati. In the hopes that people will see me standing beside them and conclude that I too know something, I’ve decided to chip in. Jim brought the concept of cohesion to the regular SOA discussions around loose coupling in his post Anemic Service Model, ...
Visual Cobol, Enterprise Processes, and SOA
2008-04-23 17:15:00
There’s a fairly intense discussion going on these days amongst the SOA illuminati. In the hopes that people will see me standing beside them and conclude that I too know something, I’ve decided to chip in. Jim brought the concept of cohesion to the regular SOA discussions around loose coupling in his post Anemic Service Model, ...
0-Day-Patch ? An new Metric for Security?
2008-04-18 21:51:00
The Federal Institute of Technology in Zurich released a study at Blackhat, which is definitely worth looking into. Now, let's be serious: They looked at a metric they call 0-Day-Patch being the number of patches a vendor is able to release at the day of the public disclosure of a new vulnerability. We could discuss again the value of this metric but it definitely shows how well responsible disclosure works for a vendor. They then took Apple and Microsoft to be compared over 6 years and We find global and vendor specific trends and measure the effectiveness of the patch development process of two major software vendors. So, I just want to take the pictures. The following picture shows the percentage of vulnerabilities that are open for longer than a given period:   The second graph is the same for Apple: The next (and last graph) is the number of unpatched vulnerabilities at any given time: What I like here is, that it seems that we are able to keep the number consisten...
The ideal profile of a CSO
2008-04-18 07:00:00
I was in Bratislava this week for an IDC Conference. During these kind of events I often talk to the press as well. Additionally I had this time the opportunity to talk to a pretty well-known blogger in Slovakia called Jozef Vysko?. You may have a look at his blog (provided your Slovakian is better than mine J). However, this was a very interesting experience to me as it was more a peer discussion than a real interview as Jozef knows a lot about security. During the discussion he was asking an interesting question: What is, in my opinion, the ideal profile of a Chief Security Officer? Is it more a technology profile, a business profile, a communication profile,?? This was a question which made me think and I would like to get your view on this as well but let me start: From my point of view a CSO needs a broad architectural view on IT. He/she has to understand the implications of a decision at a broad scale and has to be able to judge the corresponding changes in the risk model. ...
SDL and End to End Trust
2008-04-17 14:48:00
Last week we published ? as you hopefully know ? our "End to End Trust" whitepaper. If not, please read my blog post on it J Now, Eric Bidstrup just commented on End to End Trust in the light of the Security Development Lifecycle (or better: the other way around). It might be interesting for you to have a look at this as well. SDL and "End to End Trust" Roger
Security Compliance Management ? Beta Available
2008-04-04 08:36:00
Compliance is the theme of the day at the moment. We often even see the Security Officers starting to report to the head of compliance. So, if you are interested in this, we just launched the Security Compliance Management Beta for you to download. I quote from the website: The Security Compliance Management toolkit consists of 12 desired configuration management (DCM) Configuration Packs that you can use with Microsoft System Center Configuration Manager 2007. You can use the Configuration Packs to scan the computers in your environment to determine their level of compliance with baselines prescribed in security guides from Microsoft for Windows® XP SP2, Windows Vista®, and Windows Server® 2003 SP2. Customers can then use the DCM feature in Configuration Manger 2007 to produce reports that IT professionals can use to remediate security baseline settings and provide proof of compliance to a known baseline. Customers also can customize all of the prescribed security baselines and Con...
The Death of the DMZ = The Death of the Castle
2008-04-01 13:10:00
Since quite some time we are talking about the "Death of the DMZ". This seems a little bit provocative but I am convinced that it is coming very closer to the truth. Do not get me wrong: I do not think that you should replace your firewall with routers and leave your network open to the Internet. But today's trends definitely show the need for new models and for saying goodbye to the "I defend the perimeter and I am secure"-methodology. My notebook which is travelling with me around the globe and is connected much more often to a non-trusted network than to a trusted one has to be part of the perimeter of Microsoft-IT's network Today's businesses have completely new ways of doing partnerships. Some customers even tell me that it might be that their business switches partnerships within hours. How do you handle this, if you infrastructure is not able to deal with a high level of flexibility. You business wants to do business with people on the Internet. I have seen network designs...
Re-engineering Your Business Processes with Six Sigma
2008-04-01 07:00:00
Although the program has proven wildly successful in many different cases, other companies have tried to implement the Six Sigma system with results that can best be described as mixed. A large part of the “mixed” (and you can read that as “negative”!) results can be attributed to an improper implementation of the Six Sigma ...
The Website Design and Implementation Processes
2008-04-01 01:18:00
Thoughtful website requirements analysis is a logical process the benefits to which are inevitably seen during the project roll out. A general rule of thumb commonly used is as follows, every change or revision made during the Web Design and Implementation stages will cost 1 unit, say $100, and suppose that change wasn’t planned either so several changes are made for the same original change… multiply that by the number of unique changes and, well, you get the idea.  It is extremely important, therefore, to ask as many questions as possible and discuss the project in detail during the early stages. Proper design and planning might take a while, however, many successful previous projects have proven that this approach results in a shorter time to delivery and most cost effective execution.  Primary stages of the development process Stage 1. First Meeting The initial meeting between the client and Account Manager/Consultant, designed to allow both parties to be...
iPhone SDK background processes: are Apple lazy, greedy or stubborn?
2008-03-31 00:00:00
Apple?s decision to refuse third-party developers from using background processes on the iPhone has been a regular sore-point in discussion of whether the handset is a ?true smartphone?, and at first glance Rupert Goodwin?s article on the subject comes across as just more bile-bait.  However, what differentiates Goodwin?s piece - once you ...
Peer-To-Peer Sales Coaching | Rewards and Processes
2008-03-29 13:07:00
Last week I introduced the very important concept of Peer-to-Peer (P2P) Sales Coaching in my post entitled Best Practices in B2B Sales Leadership | Peer To Peer Sales Coaching. I promised some examples.  First, though, let me reiterate the power of “P2P Coaching”. I use this term specifically, as it differs distinctly from traditional ”mentoring-221;. While mentoring is traditionally ...
iPhone SDK background processes: are Apple lazy, greedy or stubborn?
2008-03-28 00:00:00
Apple?s decision to refuse third-party developers from using background processes on the iPhone has been a regular sore-point in discussion of whether the handset is a ?true smartphone?, and at first glance Rupert Goodwin?s article on the subject comes across as just more bile-bait.  However, what differentiates Goodwin?s piece - once you ...
Universal and Accessible Design for Products, Services, and Processes
2008-03-18 20:47:00
Universal and Accessible Design for Products, Services, and Processes # Author:Robert F. Erlandson # Format:PDF 9.3MB# Page Count: 288 pages# Publisher: CRC; 1 edition (August 3, 2007)# Language: English# ISBN-10: 0849374936# ISBN-13: 978-0849374937Using clear, approachable examples, Universal and Accessible Design for Products, Services, and Processes defines and differentiates accessible versus universal design, and explores their relationship in a broad societal and global context. It focuses on accessible design, including legal mandates, and guidelines from U.S. regulatory and resource agencies. Providing strategies, examples, and applications, it presents universal design principles; explores the expanding conceptualization of universal design; and discusses future directions. After reading this book, readers will be able to apply these principles to their own projects without running afoul of compliance requirements.
Apple kill third-party background processes on iPhone
2008-03-17 00:00:00
As developers eagerly download the iPhone SDK, is the gloss beginning to rub off? Robert Balousek spotted a potentially app-upsetting clause in the software?s documentation regarding third-party apps and background processes. It seems Apple is concerned that iPhone users might feel some of the molasses drag that Windows ...
A New Model to Taylor your Testing
2008-03-15 10:01:00
I guess you know the problem: You ran a development project and have to test the code (if the testing phase did not already have to be cut significantly as you ran out of time ? too often seen with projects at customer sites?). A German research now has found a way to analyze your code and determine, where you should spend more or less time to test. Pretty interesting piece of research Model predicts chance of software flaws Roger
Apple kill third-party background processes on iPhone
2008-03-15 03:31:00
As developers eagerly download the iPhone SDK, is the gloss beginning to rub off? Robert Balousek spotted a potentially app-upsetting clause in the software’s documentation regarding third-party apps and background processes. It seems Apple is concerned that iPhone users might feel some of the molasses drag that Windows Mobile handsets experience when there are too many programs running in the background; rather than deal with that as creatively as they’ve managed the rest of the SDK, though, they’ve issued a blanket ban on any third-party software running when not the in-focus app. That means - no matter whether IM client, image editor or game - the program has to quit. “Only one iPhone application can run at a time, and third-party applications never run in the background. This means that when users switch to another application, answer the phone, or check their email, the application they were using quits” Apple SDK documentation (more…) S...
SQL SERVER - 2005 - Retrieve Processes Using Specified Database
2008-03-15 02:30:00
Blog Reader Jim Sz posted quick but very interesting script. If user want to know how many processes are there in any particular database it can be retrieved querying sys.processes database. USE master GO DECLARE @dbid INT SELECT @dbid = dbid FROM sys.sysdatabases WHERE name = ‘AdventureWorks’ IF EXISTS (SELECT spid ...
Apple kill third-party background processes on iPhone
2008-03-15 00:00:00
As developers eagerly download the iPhone SDK, is the gloss beginning to rub off? Robert Balousek spotted a potentially app-upsetting clause in the software?s documentation regarding third-party apps and background processes. It seems Apple is concerned that iPhone users might feel some of the molasses drag that Windows ...
Satyam BPO mining niche core processes
2008-03-07 01:21:00
Continues interest in acquisitions, new centres7 Vote(s)
Silicus Quality Processes
2008-03-04 14:14:00
Overview of Silicus Processes A well established process is the foundation for higher business value, more satisfied customers, and better products. Silicus Quality processes are driven by the fact that Process implementation and adherence, implemented in a right way, minimizes overhead while delivering significant benefits to development teams, management and the customers.Silicus ValueSilicus projects follow a process centric approach enabling deliverables to meet expectations according to the unique needs of its customers.Silicus processes help in creation of maximum alignment between development expertise and business expectations by:Driving process implementation across teamsFacilitating communication and collaboration between development teams, management and customersEncouraging continuous improvement and innovation in process maturity.Focus and CommitmentSilicus commitment to Quality and Processes focuses on optimizing the process, people and technology skills to answer the ...
Forward Russia! - Life Processes (Cooking Vinyl, 2008)
2008-02-29 08:44:00
1. Welcome To The Moment (The Rest Of Your Life)2. We Are Grey Matter3. A Prospector Can Dream4. Spring Is A Condition5. Don't Reinvent What You Don't Understand6. Some Buildings7. Breaking Standing8. Gravity & Heat9. Fosbury in Discontent10. A Shadow Is A Shadow Is A Shadow11. Spanish Triangles
Hackers crack Bitlocker ? really?
2008-02-25 10:12:00
Sorry for being so late on that but I was enjoying the gorgeous weather in Switzerland and was skiing the last few days. There were claims end of last week that researchers "cracked" Bitlocker. One of the corresponding articles you can find in eWeek. What did they actually do? Well, they attacked the key that resides in memory. So, they are attacking a running machine. Let's start with looking into the risks. What do you want to achieve with Bitlocker? You want to make sure that if you lose your notebook, nobody is able to access the data on the disk. So, if the system is shut down, the claimed attack does not work anymore. Now, it comes to the states in between. If a machine is in the sleep state, we consider it running, so yes, it is vulnerable to this attack. We can now argue whether it is a good idea that the standard behavior of a Windows Vista machine is going to sleep if you close the lid. As Bitlocker is not enabled by default, I think we can argue around this but it is not...
Htop - Manage Your System Processes in Seconds
2008-02-24 03:25:00
Htop is a process manager that builds on the functionality of top. It allows you to view available memory and CPU usage as well as kill and manage running processes. It integrates quite well into the system manager Conky.You can see it in action with this video via YouTube (credit: owburg):Htop has a few features not found in top. First of all, the interface is more appealing, and it is easier to see what's going on. It opens a little faster, and you can kill processes by highlighting the name and pressing F9 instead of remembering the pid. You can scroll through the process list to see more than the first slew of items. Htop supports mouse operation as well.As Debian Admin points out, top does have one advantage over htop:... top is older, hence, more used and testedYou can install htop automagically by clicking here, searching for it in Synaptic, or by running the following command:sudo apt-get install htopThis is by far my favorite CLI process manager. In fact, I haven't used...
51253 blogs in the directory.
Statistics resets every week.


Contact | About
© Blog Toplist 2008 - Supported by Web Catalog - SEO by FeWorks
eXTReMe Tracker