<div dir="ltr">Shachar<br><br>You see - that as soon as we start talking about money, the risk assessment discussion gets more serious.<br><br>1. Google Apps Premium is $50/user/year ( higher volume/more demanding service levels).<br>
Google Apps Standard is free - we use it for our community involvement sites like <a href="http://www.jpbigband.org">www.jpbigband.org</a><br> The Google security and privacy policy is same in both cases.<br><br>2. Ask Gaby Askenazi about privacy in the MOD<br>
You're a pro. Most of our clients don't have the foggiest idea what's happening inside their network.<br><br>3. Use a 10kg hammer. <br>We have clients that insist on physical destruction of the data disk after a network surveillance.<br>
<br>d<br><br><div class="gmail_quote">On Tue, Aug 18, 2009 at 4:21 PM, Shachar Shemesh <span dir="ltr"><<a href="mailto:shachar@shemesh.biz">shachar@shemesh.biz</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div dir="ltr" bgcolor="#ffffff" text="#000000">
Danny Lieberman wrote:
<blockquote type="cite">
<div dir="ltr">Shachar, Geoff<div class="im"><br>
<br>
<br>
b) the threat probability of one of our operations getting a US court
injunction is so low that I don't even bother with security
countermeasures. OTOH - the threat of dos/web defacing/site
downtime/poor response time is high enough that we considered and
eventually deployed outsourced services for messaging and hosting. We
use slicehost, <a href="http://rackspace.com" target="_blank">rackspace.com</a>
and Google Apps. Dev servers are inhouse.<br>
<br>
</div></div>
</blockquote>
Your threat level rises significantly when you use free services. If
you are going to be using Google's services for your business, my
recommendation is that you find a route in which you pay them for it.
The logic is that by paying them, you are creating accountability of
them to you. Many of the privacy concerns diminish significantly as a
result.<br>
<br>
I'll add that, specifically with Google, the amount of concentrated
cross-referencable personal info is what bothers me the most.<div class="im"><br>
<blockquote type="cite">
<div dir="ltr">>>> Apropos - My personal estimate is that
the probability of a privacy breach is higher in the Israeli Ministry
of Defense than in GooglePlex.<br>
<br>
</div>
</blockquote></div>
Not when my own servers are involved. At least not without my knowledge.<div class="im"><br>
<blockquote type="cite">
<div dir="ltr"><br>
d) We deploy security countermeasures to protect assets:<br>
0) We don't use Google docs, Never.<br>
</div>
</blockquote></div>
So you are, essentially, saying that you agree with me to a degree, but
don't go quite as far.<div class="im"><br>
<blockquote type="cite">
<div dir="ltr">3) we physically destroy hard disks (it's fun...)<br>
<br>
</div>
</blockquote></div>
That I'm curios about. What do you specifically do to destroy the hard
disk?<br>
<br>
The way I see it, either you believe that "recover seven generations"
is not possible (like some do), in which case just do "dd
if=/dev/urandom of=/dev/sdb" followed by "dd if=/dev/zero of=/dev/sdb"
(or just settle for the later), or you believe that it is possible, in
which case the only solution I know of is melting the drive's plates.
Personally, I don't have any way to do the later, so I just do the
former and hope that my attackers don't have the $100K+ it allegedly
requires to recover the data.<div class="im"><br>
<br>
Shachar<br>
<br>
<pre cols="72">--
Shachar Shemesh
Lingnu Open Source Consulting Ltd.
<a href="http://www.lingnu.com" target="_blank">http://www.lingnu.com</a>
</pre>
</div></div>
</blockquote></div><br><br clear="all"><br>-- <br>Danny Lieberman<br>-------------------------------------------------------------------------------------------------<br>Protect your data: <a href="http://www.software.co.il">http://www.software.co.il</a><br>
Twitter: <a href="http://twitter.com/onlyjazz">http://twitter.com/onlyjazz</a><br>Skype: dannyl50<br>Warsaw:+48-79-609-5964<br>Israel: +972 8 9701485<br>Mobile: +972 - 54 447 1114<br>
</div>