Category Archives: Poetry

History, Poetry, Sailing, Security

Security Slogans: Ctrl-Alt-Del when you leave your seat

5 Comments


Few of us are probably lucky enough to invent something as contagious as a Security-Tubby or a Barney character. Instead, we are stuck with the task of creating “fun” posters with slogans.

One of my more successful ones so far has been based on the saying “Ctrl-Alt-Del when you leave your seat”.

People tell me that no matter how rediculous they might find security slogans at first, eventually this one grows on them and they can’t help but sing it aloud when they leave the office. You know you have won over your users when they start to beg for more effective ways to comply with the “Ctrl-Alt-Del song”.

I usually give them a tip like the following:

Although a screen lock button is already provided in most X distros, including Linux, Windows folks are usually in need of a shortcut. They’re simple to create with the following command:

%windir%\system32\rundll32.exe user32.dll,LockWorkStation

Then change the icon to something that looks like a “lock”. The orange key seems most popular among XP users (consistency helps the helpdesk) and can be found in the following library:

%SystemRoot%\system32\shell32.dll

Lock Workstation Icon

Just put the button wherever convenient (desktop, taskbar, start, etc.) Although the setup is easily scripted and deployed over the network, sometimes it is best to hand it out to all your users like a present during the holiday season — “Security wishes you a safe and secure holiday. We hope you enjoy this new button.”

And believe it or not, people who start using this button will still say “hey, I did the Ctrl-Alt-Del thing, go check my screen”, even though they no longer are touching the keyboard when they step away. Ah, the power of security slogans.

loose lipsUnfortunately not all slogans are as catchy. Messages from security easily get lost in the sea of information users have to process every day and most of the other material they hear is so polished that phrases like “don’t get hooked by phishers” tend to blend right into the wallpaper. Thus, I believe the world of security would be far better off if more wordsmiths and poets were employed to craft our message, perhaps even at the state or federal level. Nothing too fancy would be necessary as the slogans that always seem to do best are the simple ones — “loose lips might sink ships”.

Poetry, Security

Rumsfeld Presents

Leave a comment

On Knowing

As we know
there are known knowns.

There are things we know we know.
We also know there are known unknowns.
That is to say, we know there are some things
we do not know.

But there are also unknown unknowns
the ones we don’t know we don’t know.

On Thinking

Well, um, you know
something’s neither good nor bad
but thinking makes it so,
I suppose,
as Shakespeare said.

On Certainty

We do know
of certain knowledge
that he is either
in Afghanistan,
or in some other country,
or dead.

On Accuracy

If I said yes, that would then suggest that
that might
be the only place where it might be done
which would not be accurate,
necessarily accurate.
It might also not be inaccurate,
but I’m disinclined
to mislead anyone.

On Agreement

Secretary Powell and I agree
on every single issue that has ever been before this administration
except for those instances where
Colin’s still learning.

Thanks Donald, I feel much safer now.

This was inspired by All Things Considered, June 29, 2003; interview with Hart Seely about his book, Pieces of Intelligence: The Existential Poetry of Donald Rumsfeld.

Poetry, Security

WMF patch details

Leave a comment

Get ready to reboot all your XP, 2003 and 2000 systems.

Surprised? Ah, remember the lavish Windows 2000 launch parties when we were all told “rebooting will be a thing of the past” and “only six (kinds) of reboots will be necessary, down from six-hundred in NT4”.

Maybe I’m exaggerating a little, but my point is that this is a major inconvenience in order to fix a minor convenience that most people aren’t even aware of in a large enterprise. It just gets uglier since we are looking at a reboot of critical services when they are supposed to be up all the time and generating revenue — who wants to tell management “we had to have a maintenance window this weekend because of some picture rendering code on the console”. Well, it has to be done.

So far we believe the update changes the following registry keys:

    HKLM,”SOFTWARE\Microsoft\Windows NT\CurrentVersion\Hotfix\KB912919″
    HKLM,”SOFTWARE\Microsoft\Updates\Windows XP\SP3\KB912919″

And the following files get touched:

    Windows Server 2003 will replace Gdi32.dll
    Windows XP will replace Gdi32.dll and Wgdi32.dll
    Windows 2000 will replace Gdi32.dll and Mf3216.dll

Which makes me say…

Patch released early
safer code rolls out to disk-
  why must I reboot?

Note: Never rely on the registry keys alone for proof of a patch since someone could obviously stuff the registry…