Monthly Archives: October 2012

Your Halloween Scare

South Carolina Department of Revenue hacked:

South Carolina state officials announced Friday evening that the social security numbers of some 3.6 million state residents and 387,000 credit and debit card numbers were exposed in a data breach. The SSNs were stored unencrypted, and while most of the credit cards were encrypted, some 16,000 card numbers were not.

South Carolina Governor Nikki Haley sounds angry:

“I want this person slammed against the wall,” she said, referring to the attacker as “an international hacker.” “I want that man just brutalized,” Haley said.

Yes, well.  I want my SSN encrypted.

We come, alas, to a personal anecdote.

Once upon a time, I had a server that ran an application that stored card swipe numbers.  Most of them were numbers generated by my employer, but some of them–my coworkers’ cards–were SSNs.  This server was placed without my knowledge in an insecure location.  (The AC went out, so they tied the door open.)  When I found out, I tried to remove the server and was told I wasn’t allowed.  One of the things I did do was to quietly go in and delete my coworkers’ SSNs out of the database.  Including the SSN of the person I hold responsible for the situation.

You’re welcome, by the way. (I think this is the first time I ever told anyone I did that.)

I don’t blame Governor Haley for being angry.  I’d be angry if I were a South Carolina resident, too.  I would have been angry if someone messed with the server in the overheated, insecure location, but I would have blamed the people who told me to leave it there as much as the hacker.  Encrypting PII (Personally Identifiable Information) wouldn’t have been complete protection, but at least it would have made it harder.  Especially since people can’t opt out of paying their taxes on the grounds that they don’t trust the DOR to protect their data.

And, you know.  Not to single out South Carolina.  How secure is your state’s Department of Revenue?

Happy Halloween!  Sleep well!

Comments Off on Your Halloween Scare

Filed under sysadmin

The Broad Universe Sampler

It’s got me and a lot of other awesome women in it, and it’s FREE.  Check out Broad Spectrum: The 2012 Broad Universe Fiction Sampler.  My story starts:

Last time this happened, I was Orpheus.

Ethan was lost, pale, gone in a haze of Zoloft and Lithium and anorexia, and he assured me he was in hell, and I missed him so much that the rocks and trees wept. And when neither of us could bear it any more, I descended into the underworld and went to the King. I sang such a song of grief that I even moved the King of the Underworld to tears, and he said I could bring my Eurydice back to the light of day if only I didn’t turn back and look upon him. As I walked through the fluorescent halls and the smell of bleach and urine I knew this was hell, and I couldn’t bear the thought of my beloved locked away from the sun like this forever. So I led the way singing, and the janitors and nurses wept and cleared a path for us as we walked down the hall.

Read more…

Comments Off on The Broad Universe Sampler

Filed under short fiction

What Faeries Did in the Renaissance


Comments Off on What Faeries Did in the Renaissance

Filed under cons

Seekrit Message to a Friend

You didn’t get this from me.  You downloaded it off the internet.

In fact, why don’t I turn that bunch of scripts into a series of jobs and give it to you as one big lump?  (Download.)

How to use:

  1. Load file into SQL Server Management Studio.
  2. Replace all instances of BACKUP DATABASE [DBNAME] with the proper database name in the square brackets.
  3. Either create the directory f:\sql or edit the jobs that refer to it to go to a different path.
  4. Click execute.

And remember, I know nothing.  If I knew something, I’d have to charge.

Comments Off on Seekrit Message to a Friend

Filed under scripting, sysadmin