logo
Published on Security Incite: Analysis on Information Security (http://securityincite.com)

The Daily Incite - February 21, 2008

By Mike Rothman
Created 2008-02-21 09:52
Today's Daily Incite

February 21, 2008 - Volume 3, #17

Good Morning:
I'll admit it, I'm human. Some days I'm just not as motivated as I need to be. My list of things to do is overflowing and there are so many cool projects to do, so why can't I get the motor in gear some days? It's kind of like when you are thinking about dinner and you pop open the fridge and NOTHING looks good. So you go to the pantry, still no dice. What about the freezer? Not so much. So you make a turkey sandwich and watch some bad TV. That usually takes care of it.

The reality is that it's about recovery. As much as I love what I do, there are some days when I'm just fried. Maybe I've been traveling a lot. Maybe I'm a little blocked in driving a writing project to conclusion. Maybe I'd just rather surf the web and do "research" for a large portion of the day.

Gone FishingThe good news is that I have the ability to do that. I'm accountable to my clients and readers to get some stuff done, but I do have a lot of flexibility in when I do that stuff. There are some days when I get very little done during the day for any number of reasons. But I kick ass at night after the kids go to sleep.

Ultimately I'm finding a way to align my work processes with my internal rhythms of when I am engaged in my activities and when I'm not. I know, I'm a pretty lucky guy to have such an unstructured gig that lends itself to adapting.

What do you do if there are some days when you feel like you are just going through the motions? Basically, write the day off. Seriously. Figure out the 1 or 2 things that you absolutely need to get done. Periodic laziness shouldn't result in you being thrown out of the car at a high rate of speed. Do those things and do them early in the day. Even if you don't want to. Then work on some other projects. Maybe hit YouTube. Go roam around the shop floor or talk to some users. Call a friend you haven't chatted with in a while. Go work out. You can even play hookie. Your boss probably won't even notice. Just get out of your typical work process because you need a break. 

And don't feel guilty about it. Everyone needs to recover. Be candid with yourself. As opposed to sitting there, looking at your computer screen and revving your guilt engine, go make the day great and memorable. The work will be there tomorrow. I promise.

There are some cultures that embrace this reality, like Google. They force employees to take 20% of their time to work on projects not related to their day job. That is truly prescient. It allows folks to chase their passions, yet also be respectful of the reality that some business needs to get done.

You may not work at Google, but understand that renewal process is important - even if you have to do it informally.

Have a great weekend.

PS: I've posted the next two Days of Incite Posts. 7 will hit today and I'll finish up next week.

  1. Express Your Inner Bean Counter [1]
  2. It's time for an audit revolution [2]
  3. Best of Breed DOA [3]
  4. Weaving security into the network fabric [4]
  5. Night of the Internet Dead [5]
  6. Laptop encryption hits the big leagues [6]

Fishing image uploaded by Altus [7]

Technorati: Information Security [8], CSO [9], Security Mike [10], Internet Security [11]

The Pragmatic CSO [12]
The Pragmatic CSO:
Available Now!

Read the Intro and Get
"5 Tips to be a Better CSO"

www.pragmaticcso.com [13]
 Get Your Special Report:
6 Easy Steps to Protect Your Identity
and
get access to Security Mike's Portal today

www.securitymike.com
 [14]
Security Mike's Guide to Internet Security [15]

Top Security News

SonicWall CEO: How to beat Cisco. [16]" It was kind of like waiting for a train wreck. You see the guy sitting in the tracks, blissfully unaware the big train is about to mow him down. The CEO makes the points that technology is a differentiator and Cisco is too expensive, which ultimately means the channel can make more money. The first I don't get. UTM is a commoditizing business, at least in the mid-market SonicWall serves. Those folks don't care about technology, they care about getting it done and saving money. At least the folks I'm talking to. What about the price thing? That is actually true. Cisco is not the low cost provider. They don't have to be, so why would they? In line with this full frontal assault on Cisco, SonicWall also announced a series of bigger UTM boxes [17]. Of course, it's easy to poke at the leader. Cisco probably spends more on toilet paper and soda than SonicWall sells in a quarter. It's not like they are going to respond and squash SonicWall like a bug. Since this is a CRN article, the takeaway is for the VARs. Aggressive vendors will bribe you with higher margins and more attractive accelerators to try to move their boxes. In a lot of cases, that's a good idea. Yet, don't forget to factor in the extra time it will take to sell the deal because you've got to overcome the resistance of not going with the leader. I'm all for competition and like the fact that SonicWall is taking off the gloves. That's good for everyone, it's just entertaining because I've seen this movie so many times before.
Link to this [18]

Network Computing puts the BPS-1000 through it's paces [19] and it's pretty impressive. It can break your networking stuff. It also starts at $185,000, so it's not like Joey's Bag of Donuts is going to be taking delivery of one. But if you have to protect an environment where downtime minutes is measured in millions of opportunity cost - then something like this makes sense. Is it a huge market? Nope. But it's definitely an interesting niche.
Link to this [20]

SearchWindowsSecurity tip pokes a bunch of holes in NAP [21], mostly because of weak enforcement methods (like DHCP). But using NAP in combination with IPSec, does that change things? The concept is that if you have a certificate issued onto a machine, then you can allegedly "trust" the client that is connecting to the network. It's still pretty porous if you ask me. Yet it gets back to NAC with unmanaged vs. managed clients. If your endpoints are managed, then you can install an agent and have more control. If they are unmanaged, IPSec isn't going to help. So once again, you need to think in terms of layers. That's a big change.
Link to this [22]

The Laundry List

  1. "Secure, accelerated access" is happening as the perimeter continues to integrate and evolve. The latest data point? A bus dev deal between Fortinet and Riverbed. - Fortinet/Riverbed release [23]
  2. Zix is not dead yet, showing about $24 million in top line for 2007. Even though they continue to burn cash, though a lot less cash than they have been burning. Are they turning a corner? Not unless the email encryption market turns that corner... - Zix earnings release [24]
  3. How do you get the forensics mindset? Check out my monthly SearchSecurity column to find out. - Rothman SearchSecurity column [25]

Top Blog Postings

http://blog.tomevslin.com/2008/02/morph-of-a-nerd.html [26]
Link to this [27]

http://chuvakin.blogspot.com/2008/02/must-do-logging-for-pci.html [28]
Link to this [29]

http://sm-blog.securitymike.com [30]

Check out the latest on the Security Incite blog
http://blog.securityincite.com/ [31]

Read the most recent Daily Incite
http://securityincite.com/security-incite-rants/daily-incite [32]

Source URL:
http://securityincite.com/blog/mike-rothman/the-daily-incite-february-21-2008

Links:
[1] http://securityincite.com/blog/mike-rothman/2008-doi-day-1-express-your-inner-bean-counter
[2] http://securityincite.com/blog/mike-rothman/2008-doi-day-2-its-time-for-an-audit-revolution
[3] http://securityincite.com/blog/mike-rothman/2008-doi-day-3-best-of-breed-doa
[4] http://securityincite.com/blog/mike-rothman/2008-doi-day-4-weaving-security-into-the-network-fabric
[5] http://securityincite.com/blog/mike-rothman/2008-doi-day-5-night-of-the-internet-dead
[6] http://securityincite.com/blog/mike-rothman/2008-doi-day-6-laptop-encryption-hits-the-big-leagues
[7] http://www.flickr.com/photos/altus/1407559890/
[8] http://technorati.com/tag/information%20security
[9] http://technorati.com/tag/CSO
[10] http://www.tecnorati.com/tag/Security%20Mike
[11] http://www.technorati.com/tag/Internet%20Security
[12] http://www.pragmaticcso.com
[13] http://www.pragmaticcso.com/
[14] http://tdi.securitymike.com
[15] http://tdi.securitymike.com
[16] http://www.crn.com/security/206504482
[17] http://biz.yahoo.com/prnews/080219/aqtu118.html?.v=37
[18] http://securityincite.com/TDI-2008-02-21#TSN1
[19] http://www.networkcomputing.com/channels/networkinfrastructure/showArticle.jhtml?articleID=206402199
[20] http://securityincite.com/TDI-2008-02-21#TSN2
[21] http://searchwindowssecurity.techtarget.com/tip/0,289483,sid45_gci1299042,00.html
[22] http://securityincite.com/TDI-2008-02-21#TSN3
[23] http://www.marketwire.com/mw/release.do?id=822478
[24] http://biz.yahoo.com/pz/080219/136619.html
[25] http://searchsecurity.techtarget.com/tip/0,289483,sid14_gci1299798,00.html
[26] http://blog.tomevslin.com/2008/02/morph-of-a-nerd.html
[27] http://securityincite.com/TDI-2008-02-21#TBP1
[28] http://chuvakin.blogspot.com/2008/02/must-do-logging-for-pci.html
[29] http://securityincite.com/TDI-2008-02-21#TBP2
[30] http://sm-blog.securitymike.com
[31] http://blog.securityincite.com/
[32] http://securityincite.com/security-incite-rants/daily-incite