The main challenge being that while listening to a podcast.... you actually need to LISTEN.
On more than one occasion I have zoned out, missed something interesting and suddenly thought... what did he/she just say?
One podcast that is a favourite of mine is "Security Now" with Steve Gibson. You can find it here, I highly recommend it (you wont zone out while listening to it).
This weeks episode (episode 274) discusses two themes that keep cropping up again and again:
- Yet another zero-day vulnerability in Internet Explorer (IE).
- The need for important websites to default to HTTPS rather than HTTP (due to the appearance of FireSheep).
"Of course you could also just not use IE, which would be a fantastic solution"
I heartily agree with Steve and I was pleased that this year IBM chose to standardise on the Firefox browser (read that story here).
One of the stated reasons being that Firefox is more Open Standards compliant.
So its nice to see that the new Storwize V7000 (and SVC 6.1) Web based management GUI uses both of these things, in that:
- It works perfectly with Firefox (and Google Chrome).
- It defaults to HTTPs even if you start the GUI using HTTP
This makes it a simple, safe and secure GUI that uses industry standard best practice.
Please note that you can still choose to use IE... and it will work perfectly. Its just not our recommended Browser.
Of course if you use the CLI, it will also be secured using SSH v2 public/private key encryption (as the SVC has always done).
My hearty recommendation of Steve Gibsons work, like everything I express in this blog, is my personal opinion, and not that of my employer.