Tuesday, February 28, 2006

Internet Security: Dave Brown; Perfiliate.com

Today's (March 1) Skype Presentation: Internet security

Speaker: Dave Brown is a Co Founder, and Director at Perfiliate Technologies

Viruses
Key issues:

potential damage to computer
how to protect against

How the following are different from viruses and how we can protect
against them:

Dangers of downloading software from the internet.

Common Spam techniques to trick users into opening malicious code.

Spoofing email address (very easy)
Phishing (attempts daily)
text links to eg. Http://www.paypal.com which are really images
going to another site
Social Engineering (eg. Hello, I'm your ISP I need you to download this bit of software and run it)

What Norton Security/Zone Alarm does

What Norton Security/Zone Alarm doesn't protect against (eg. Difficulty of Trojans, key loggers)

Cookies. Privacy issues

Third party cookies

privacy issues (lies with a third party)
enabling/disabling in browsers, security levels
Third party cookies and affiliate networks etc.

Passwords, automatic screen locks

General Password Construction Guidelines

Poor, weak passwords have the following characteristics:

The password contains less than eight characters
The password is a word found in a dictionary (English or foreign)
The password is a common usage word such as:
- Names of family, pets, friends, co-workers, fantasy characters,
  etc.
- Computer terms and names, commands, sites, companies, hardware,
  software.
- The words "", "sanjose", "sanfran" or any
  derivation.
- Birthdays and other personal information such as addresses and
  phone numbers.
- Word or number patterns like aaabbb, qwerty, zyxwvuts, 123321,
  etc.
- Any of the above spelled backwards.
- Any of the above preceded or followed by a digit (e.g., secret1,
  1secret)

Strong passwords have the following characteristics:

Contain both upper and lower case characters (e.g., a-z, A-Z)
Have digits and punctuation characters as well as letters e.g.,
0-9, !@#$%^&*()_+|~-=\`{}[]:";'<>?,./)
Are at least eight alphanumeric characters long.
Are not a word in any language, slang, dialect, jargon, etc.
Are not based on personal information, names of family, etc.

Passwords should never be written down or stored on-line. Try to create passwords that can be easily remembered. One way to do this is create a password based on a song title, affirmation, or other phrase.

For example, the phrase might be: "This May Be One Way To Remember" and the password could be: "TmB1w2R!" or "Tmb1W>r~" or some other variation.

Here is a list of "dont's":

Don't reveal a password over the phone to ANYONE
Don't reveal a password in an email message
Don't reveal a password to the boss
Don't talk about a password in front of others
Don't hint at the format of a password (e.g., "my family name")
Don't reveal a password on questionnaires or security forms
Don't share a password with family members
Don't reveal a password to co-workers while on vacation

If someone demands a password have them call someone in the Information Security Department.

Do not use the "Remember Password" feature of applications(e.g., Eudora, OutLook, Netscape Messenger).

Again, do not write passwords down and store them anywhere in your office. Do not store passwords in a file on ANY computer system (including Palm Pilots or similar devices) without encryption.

Change passwords at least once every six months (except system-level passwords which must be changed quarterly). The recommended change interval is every four months.

If an account or password is suspected to have been compromised, report the incident to the IT team and change all passwords.

Credits: This is based on the security templates from sans.org

0 Comments:

Infotech Applications In Marketing

Name: Alex

View my complete profile

This Class: This course is designed to meet the needs of marketing majors at the University of Delaware by providing them with an understanding of the impact of information technologies on marketing strategies and practice. Students will gain a basic understanding of how the Internet and Information Systems are used in marketing. Here is the syllabus.
This Blog: This class blog serves as a tool for communication, as well as the host for the student blogs / projects.
Blog Project: Each student will create a blog and blog this course. Your blog will include articles on blog postings you read from the blogosphere (via your bloglines account) (minimum 4 articles); articles on your wikipedia work (minimum 16 articles); articles on the course material we cover (minumum 4 articles); and articles responding to your team-mates articles (minimum 2 articles)
Wikipedia Project: Each student will sign up for an account on wikipedia. Each student is responsible for updating 4 articles throughout the semester. Each update should also be blogged, and a final blog for each article should discuss the evolution of the article and the reaction from the wikipedia community to the edits.

You can read blogs as independent web-sites (checking them at will) or subscribe to them via an aggregated news reader. The latter allows you to view blogs when you know there is new content, and makes sense when reading multiple blogs and news sources. Subscribing to your teamates' blogs; the blogs I have listed here; a search result from Google Blog Search and this class blog, via an aggregated news reader (in this case Bloglines) is required. In order to subscribe to a site, create an account at bloglines, and copy this blog's address from the browser window to your subscription form in bloglines.

That's Alex Brown. If you need to e-mail me, please e-mail alex@udel.edu and include BUAD477 in the subject header. For this class we are using the following books:

All material is linked to Hackers, Hits and Chats.

We are running an experiment on Google with the keyword loocsixela. Here are the current results. The following are blogs you are required to subscribe and read for the duration of this course. You will also be responsible for posting x articles to your blog commenting on blog postings from these blogs.

Jimmy Asip (H): Blog; Feeds
Jaime Bozarth (A): Blog; Feeds
Robert Buehler (D): Blog; Feeds
Kathleen Chappel (A): Blog; Feeds
Griff Conti (C): Blog; Feeds
Brian Corcoran (E): Blog; Feeds
Nicole Curran (A): Blog; Feeds
Anson Ellis (D): Blog; Feeds
Chris Einkauf (F): Blog; Feeds
Carine Foreman (F): Blog; Feeds
Scott Golden (B): Blog; Feeds
Meagan Harbison (E): Blog; Feeds
Sirint Ieamniramit (A): Blog; Feeds
Rebecca Jones (E): Blog; Feeds
Erik Joncas (E): Blog; Feeds
Scott Kagan (F): Blog; Feeds
Allison Keegan (D): Blog; Feeds
Craig Koestler (F): Blog; Feeds
Bob Levine (B): Blog; Feeds
Elise Malmud (C): Blog; Feeds
Mark Mastrandrea (F): Blog; Feeds
Suzanne Martincavage (B): Blog; Feeds
Brendan McHenry (G): Blog; Feeds
Lauren Meyers (C): Blog; Feeds
Mark Muller (C): Blog; Feeds
Keith Nemzer (D): Blog; Feeds
Stephen Orelli (G): Blog; Feeds
Jackie Roesner (G): Blog; Feeds
Steven Schluter (G): Blog; Feeds
Dave Sherman (G): Blog; Feeds
Hans Tasch (H): Blog; Feeds
Ryan Vertucci (H): Blog; Feeds
Stephanie Webb (H): Blog; Feeds
Deborah Zacher (B): Blog; Feeds
Lindsey Zucher (H): Blog; Feeds

February 27: Graham Richmond: ClearAdmit
March 1: Dave Brown: perfiliate
March 8: Toby Bloomberg: Diva Marketing
March 13: Mark Hughes*: Buzz Marketing
March 20: Dana VanDen Heuvel: Pheedo
April 10: James Cherkoff: Collaborative Marketing
April 12: Robert Scoble: Scobleizer
April 19: Dan Baxter*: Dealcatcher
May 1: Lou Honick* HostMySite
May 3: Travis Katz: MySpace
May 8: Gary Spangler*: DuPont
May 10: David Williams: 360i.com
May 15: Jason Howard: StudyLink

*In class presentation. These resources are useful for creating blogs in general and / or understanding the web better. Most are not necessary for this class, aside from blogger, bloglines and the blog search engines Technorati and Feedster.

Amazon Associates: Become a retailer of pretty much whatever you want, no need to take inventory etc.
Archive.org: A great site to view the 'history' of a particular web-site's development. Key your company's URL in the search box and see how its web-site has evolved from 'brochureware' to ...
Bloglines: To subscribe to your feeds, you need an aggregated news reader, bloglines is it!
Blogger (this platform): This is the platform you use to create your blog. One of the more popular, its a free and hosted solution.
ClickZ: A great resource for all data regarding the internet.
Feedster: A search engine that searches 'feeds'. You should include a link to a search result of the company you are following on your blog.
Flickr: Store your pictures here and the blog them to your blog. Neat solution for those starting out.
Google: 'nuff said.
GoogleAdSense: Great contextual advertising program, easy to participate (sign up and grab a piece of code to include in your template).
GoogleNews: Interesting news source 'aggregator', run entirely by computers.
Hackers, Hits and Chats: Internet and Marketing Dictionary (I wrote and maintain).
Learning HTML: Some quick tips.
MovableType: Another blogger platform, probably prefered by those who can pay.
Sitemeter: Sign up, add a snippet of code to your blog and you can then track your traffic and referrer URLs (necessary to build community).
Technorati: Blog search engine, great to use the search to find out what bloggers are saying about your product / company. See feedster (i.e. create a link from your blog to the appropriate search result).
W3C.org: They create and maintain the web standards, very necessary work!
Weather.com: Grab some code from here to display your local weather on your blog.
Wikipedia: Online encyclopedia, will be used extensively for this course, and is linked within Hackers, Hits and Chats

These articles provide the latest insights on blogging. Good background reading for those new to blogging.

These articles provide the latest insights on RSS feeds. Good background reading for those new to feeds.

These articles provide the latest insights on wikis. Good background reading for those new to wikis.

These articles provide the insights on Search Engine Marketing (SEM) which includes Search Engine Optimization (SEO). Good background reading for those new to SEM.

Tuesday, February 28, 2006

Internet Security: Dave Brown; Perfiliate.com

0 Comments:

Infotech Applications In Marketing

About Me

About this class and the blog

Subscribe via Bloglines

Instructor

Class Books

Course Content

Articles

Google Experiment

Required Blogs

Class Mates' Blogs and Feeds

Skype Schedule

Other Resources

Articles on Blogging

Articles on Feeds

Articles on Wikis

Articles on Search Engine Marketing

Previous Posts