BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Discuss] A Little OT: The Password Post-It

Subject: [Discuss] A Little OT: The Password Post-It
From: richard.pieri at gmail.com (Richard Pieri)
Date: Fri, 20 Apr 2012 11:55:52 -0400
In-reply-to: <CADdmjq-NLw9m1=eSrGr+Ovoioa6VuY7BEXJJuht7P0+qKyy+Ng@mail.gmail.com>
References: <CADdmjq8zfcS6rFxS5_G9VKXCx1A7YPEyiNBXbKEM3EZ7cn8ptQ@mail.gmail.com> <1334765551.11810.12187.camel@concord3.proximity.on.ca> <4F8F2710.9090408@vl.com> <1334783377.11810.12526.camel@concord3.proximity.on.ca> <4F8F33E1.2080807@vl.com> <DB54EB5E-9314-43F0-A38D-B3B045CB617D@gmail.com> <4F8FAD19.2060303@vl.com> <4F9037BE.5040005@gmail.com> <4F906667.2040808@vl.com> <FD4BA15B-63A6-4954-BC29-7A20A3BEF45A@gmail.com> <CADdmjq-NLw9m1=eSrGr+Ovoioa6VuY7BEXJJuht7P0+qKyy+Ng@mail.gmail.com>

On 4/20/2012 6:46 AM, Chris O'Connell wrote:
> So Rich,  I see your point about enforcement, but how specifically have
> addressed the issues of having passwords on post-its?  I know you mentioned
> becoming friends with the users and making security something they care
> about (which I agree with), but any other suggestions?

It goes both ways.  Just as you want your users to take security 
seriously, we need to take their wants and needs seriously.

Understand the potential threats that you and your users face.  Be 
flexible.  One size fits all security policies ignore users' needs. 
They also ignore how threats grow and change.

We need to be resigned to the fact that there are users who simply won't 
care no matter what we say or do.  All we can do is isolate and contain 
what we can and be prepared for the inevitable cleanup.  And we can hope 
that the corollary loss of productivity is a convincing argument.

-- 
Rich P.

References:
- [Discuss] A Little OT: The Password Post-It
  - From: omegahalo at gmail.com (Chris O'Connell)
- [Discuss] A Little OT: The Password Post-It
  - From: chris at tylers.info (Chris Tyler)
- [Discuss] A Little OT: The Password Post-It
  - From: tmetro-blu at vl.com (Tom Metro)
- [Discuss] A Little OT: The Password Post-It
  - From: chris at tylers.info (Chris Tyler)
- [Discuss] A Little OT: The Password Post-It
  - From: tmetro-blu at vl.com (Tom Metro)
- [Discuss] A Little OT: The Password Post-It
  - From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] A Little OT: The Password Post-It
  - From: tmetro-blu at vl.com (Tom Metro)
- [Discuss] A Little OT: The Password Post-It
  - From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] A Little OT: The Password Post-It
  - From: tmetro-blu at vl.com (Tom Metro)
- [Discuss] A Little OT: The Password Post-It
  - From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] A Little OT: The Password Post-It
  - From: omegahalo at gmail.com (Chris O'Connell)

Prev by Date: [Discuss] A Little OT: The Password Post-It
Next by Date: [Discuss] [OT] Re: Discuss - Software Engineering union
Previous by thread: [Discuss] A Little OT: The Password Post-It
Next by thread: [Discuss] A Little OT: The Password Post-It
Index(es):
- Date
- Thread


BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Boston Linux & Unix / webmaster@blu.org