This phrase is not too difficult, and if you’re like some folks I’ve had to deal with recently, will serve you immensely well. Say it with me: “I’m sorry, I don’t understand.” (more…)
January 25, 2014
July 29, 2013
Normally, I’m not what I would call an “idea guy.” I’m not someone who sees all sorts of innovative new things and shares his creations with the world – it’s just not the way my brain works. I’m a problem solver. I see a problem, I come up with a fix, workaround, or solution – that’s what I do. Every now and then, however, there’s an overlap between problem solving and innovation. This may be one of those.
I want a way for a custodian of a system (think “computer technician”) working on a system, to be able to do everything needed to set up, maintain, and troubleshoot said system, without requiring any credentials from the owner. This is tricky because if I want, for instance, to set up your email for you, without requiring any interaction from you, I need to have your password. Sure, I could set up everything except the password and then have you fill it in later, but this road sometimes leads to frustration on the part of the end user, as they don’t have a “completely” working system that they asked for.
Encrypting the owner’s data does not meet this goal, as it needs to be decrypted for the custodian to do their job. Two-factor authentication doesn’t solve this because the password would still need to be placed in the hands of the custodian, along with the second factor, at least temporarily. Combining these two, along with a forced password change, go a long way to securing your data from your custodian’s prying eyes, but don’t ultimately solve the problem.
Do you have a fix for this? Does anyone? Drop me a line and let me know.
April 16, 2013
Yesterday, two bombs exploded at the Boston Marathon, killing three people and injuring over a hundred others. The big question people seem to be asking today, besides “who did it,” is “what it a terrorist attack?” My response is “who cares?” (more…)
April 15, 2013
On April 5, after six months of preparation, I took, and passed, the CISSP exam. Here are some of the lessons I learned along the way.
September 29, 2012
In May I embarked on a low-carb diet. Shortly after choosing to start this, I resumed the “slow carb diet” which was popularized by Tim Ferris when he released his second book, the four hour body. I tried the diet last year after the book first came out, with lackluster results. This time, it worked. (more…)