Someone tossed a Security+ study question my way this week. This is an example of Security+ trying to be CISSP Lite, but it’s still a valid question–probably for either test, and for SSCP and CISM too.
A small not-for-profit organization needs to invest in a new expensive database. There is no budget for additional servers or personnel. Which of the following solutions would allow it to save money by avoiding hiring additional personnel and minimize the footprint in their current datacenter?
B. Software as a Service (SaaS)
C. Infrastructure as a Service (IaaS)
D. Platform as a Service (PaaS)
Let’s take it one at a time.
Continue reading A cloud computing-related Security+ question
I’m playing catch-up a bit. This weekend, Lifehacker ran a guide about living with a computer that’s past its prime.
I’ve made a career of that. One of my desktop PCs at work (arguably the more important one) is old enough that I ought to be preparing to send it off to second grade. And for a few years I administered a server farm that was in a similar state. They finally started upgrading the hardware as I was walking out the door. (I might have stayed longer if they’d done that sooner.) And at home, I ran with out-of-date computer equipment for about a decade, just this summer buying something current. Buying something current is very nice, but not always practical.
So of course I’ll comment on a few of Lifehacker’s points.
Continue reading Living with a past-its-prime computer
The guys at Hackaday dug up a video of the late Commodore Grace Hopper (the rank is now called Rear Admiral, but the rank of Commodore just seems appropriate for a computer science pioneer) and the poster admitted he’d never heard of her before. The resulting discussion was rather… interesting.
Continue reading Kids these days, not knowing the name Grace Hopper
I had the opportunity to visit Savage Mill, near Baltimore, recently. Savage Mill is an old textile mill dating to the 1820s that fell into disuse in the 1940s. Today, the complex houses a variety of businesses. While the place has vacancies–the economy is still struggling, after all–it’s crowded, and it’s a great reuse.
It makes me wonder why we can’t do the same thing in St. Louis.
Continue reading Why can’t St. Louis repurpose buildings like Baltimore does?
The CISSP is a 250-question, multiple-choice test. You have six hours to complete it. It’s not like any college final I ever took, though cramming all of finals week into a six-hour session is almost a fair comparison.
I’m not a lawyer, so I’ve never taken the bar exam. But the multiple-choice MBE, which is a 200-question, six-hour test, might be a fair comparison.
It took me a little over four hours to finish the test. I was paying more attention to the test than I was to how many people finished before me, but there weren’t many. It’s not just a knowledge test; it’s also an endurance test.
Continue reading Test-taking strategies for CISSP
I got the letter this week. The one from (ISC)^2. If the first word is “congratulations,” it means you passed. If the first two words are “thank you,” you didn’t.
Mine said congratulations. Now, after a vetting period that can take six weeks, I’ll get a cerficiate in the mail and I can start signing off with a “, CISSP” after my name.
It was a long road. Here’s how I did it.
Continue reading How I studied for CISSP
I can’t believe I forgot to post this, but yesterday I got word that I passed the CISSP. So, after a vetting process that can take up to six weeks, I’ll be able to sign off with a “, CISSP” after my name.
Now that I can give advice on taking the test without being presumptuous, I’ll write about that this weekend.
PC Perspective’s Allyn Malventano stopped in earlier this week and sent me a link to his take on the bleak future of SSDs and flash memory: http://www.pcper.com/reviews/Editorial/NAND-Flash-Memory-Future-Not-So-Bleak-After-All
He didn’t agree with me entirely–he argued that the problems outlined in the study in question are solvable.
Continue reading The future of flash memory might not be so bleak after all, either
I took a strange phone call from the field today, asking for advice about creating policies and procedures on data recovery.
There’s no easy answer.
Continue reading Handling data recovery
Libre Office 3.5 is out. I need to look at it. My big beef with Open Office all along was that it made current hardware, whatever it was, feel like Office 97 running on a 486. Or perhaps a Pentium-75.
They’re saying all the right things now. Lots of new eyes looking at the code, reviewing the code, dropping obsolete code, streamlining it and making general improvements. Netscape 4.5 was a bloated mess too, but once the Mozilla team got some fresh eyes looking at it, the situation improved. Eventually they had to break the browser out into what became Firefox, but they had the freedom to do that.
And in the meantime, I suppose if it’s too slow, you could throw hardware at the problem. 8 GB of RAM costs $40 or less right now. Carve out a ramdisk of 1-2 GB and install Libre Office in that, and it’ll load pretty fast. It’ll eliminate any I/O-bound bottlenecks.