Episode C — Brain Dump
Semi-slow news week this week so we used the bulk of our time to talk about a topic most of us struggle with (even some of us on the show) productivity! A few stories and our opinions as usual and also a letter from a listener regarding our own Dave running for the ISC2 board. Again, if you have anything comments, questions, suggestions, hatred, bickering, cyberdouchery, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It’s not that explicit, but you may want to use headphones if you’re at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 4 opinionated infosec pros who have sufficient opinions of their own they don’t need to speak for anyone except themselves. Ok? Good.
In this episode:
- News
- Stripe CTF
- DropBox implementing 2-factor Auth!
- More U.S. military hacking in Afghanistan
- Yet another Java 0-day being exploited in the wild
Exploit Code! - ISC-CERT issues warning on RuggedCom/Siemens gear
ICS-Alert PDF - Gauss researchers trip over Kaspersky operated sinkhole
- NIST releases a standard on secure BIOS
- Aramco threatened with more breaches
- Breaches
- Commentary
- Errata
- Not much in Errata this week
- Foot In The Door
- Infosec Productivity
-
And productivity porn is always cool (don’t deny it, you’re all fetishistically interested in getting your to-do lists underway)
– we’re getting around to the beginning of the school year here in Canada (we know that most americans have already started)
– so it’s time for the annual trip to Staples for school/office supplies
– How do you keep your stuff in order as you work through the life that many of us share:
+ multiple concurrent lives
+ “work†work
+ “volunteering†work
+ family / friends
+ professional development
+
– Do you trust your digital minions?
– Do you commingle in a BYOD way?
– What about people that you have relationships with (spouse uses paper?)
– Covey? David Allen (GTD)?
– “Time Management for System Administrators†(Thomas A. Limoncelli)
– Getting Things Done - Hardcore
- Stuff We Each Use To Get By:
- James:
- Devices: MBA11 / iPad2 / iPhone4s
- Scanner to go paperless
- Sync: iCloud
- SpiderOak Here’s my referral link
- Dropbox Here’s my referral link
- Box.com
- Rsync w/ local duplicates
- Local Software:
- Calendar
- Reminders
- OmniFocus (OSX / iPad)
- Evernote
- Web Stuff:
- Google for years – getting away from them now
- Remember The Milk – moved all of that into OmniFocus
- If This Then That
- Trello (because the Securosis boys require it and it comes from Joel)
- When I’m working at client sites, I generally have to use the things that they use.
-
Dave
ditto, James. - Ben
- schedule, schedule, schedule – religiosity with my Outlook calendar
- task lists
- shared knowledge – team wiki
- team meetings & delegation
- risk tracking tools – e.g. RSAM/
- clear boundaries – turn your phone off – giant whiteboard
- Matt
- To-Do List App
- Pen & Paper!!!
- Keep yourself away from your screen Anti-RSI
- Save a few seconds a day if you are a multi-monitor user Stay App
- Mailbag
-
Hi Dave
What’s the deal with running for the ISC2 board?
JJ
- In Closing
- Matt’s movie review…
- University of Reddit – Open Security Training classes on malware analysis
- Sector CFP selections Monday night.
- Vote Dave! https://www.liquidmatrix.org/blog/vote-for-dave/
-
The Seacrest says “1st star to the left and straight ahead, Mr Armstrongâ€
Update: Here’s the link to CBC Podcast “The Invisible Hand” — a must listen.
Listen:
Subscribe to us using plain old 
Also, we’re now available through 
Creative Commons license: BY-NC-SA
