InfoBulletin
March 2010
Issue 115
Social media whirl, Data protection bites back, Email retention, Windows memory limits
coopsys.net
InfoBulletin
March 2010
Issue 115
Social media whirl, Data protection bites back, Email retention, Windows memory limits
coopsys.net
Popular editionsMay 2008 Outlook Time Recording: Journal, Video to ruin your ISP? Zoho: software at your service, OCR tips, BGInfo, How to audit my PC? August 2008 Risky business, Salesforce review, SteadyState manages multi-user PCs, Do you really need a web site? June 2008 Time Recording: Outlook Times plug-in, Windows Server 2008 storage, data protection, Convert PDF documents into Word format |
| *** NewsBytes *** | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
| ||||||||||||||||
| *** end of NewsBytes *** | |||||||||||||||||
| ^ Back to contents ^ | |
|
1.
Social whirl
Social media round up.
| |
|
Help at hand. |
One's a crowdOne of the benefits of the social media phenomenon has been about moving people, emotionally, but also quite literally. The role played by mobiles has been key because this very personal form of messaging helps get campaigns mobilised due to the immediacy of communication. Just one person (albeit a popular person) can shift hundreds or thousands of people - or pounds - behind a movement, maybe even in a matter of minutes. For those more acquainted with distribution lists for email, Twitter and Facebook could be seen as the on-steroids equivalents for phone text. With people spending an increasing amount of time on their smartphones and away from the desktop, going 'social' has been a means to straddle the demands of work and private life.
Amassing a massChoosing a social media site isn't just about the application front end though; each site comes with its own crowd. Which inevitably begs the question, where is your natural audience? Surveying this market is less like choosing a shop to set out your stall, and more like discovering a high street with the most suitable passing trade. Thus, if you're campaigning for the rights of elder citizens, then you probably will find less interest among Bebo fans than would a dynamic environmental protest organisation. Write once, publish everywhere - stick that in your pipeThe flourishing social media sites (places where we actually view and contribute stuff) have seen a rash of complementary facilitating sites growing up around them (sites that simply pipe information elsewhere). Mario Menti's very popular Twitterfeed has experienced a rise to fame, handling close on a million feeds (at present) by simply passing headlines via RSS from your blog to sites like Twitter, Facebook and more. Others like Laconica (StatusNet) and Hellotxt also act as status feeds and micro-blogging facilitators. In plainer English, this means sending info about where you are, what you are doing, or text-length blogs to your social networks. 
Another information routing site that takes the same concept and goes bananas with it is Ping.fm, allowing you to stream content to literally dozens of social media sites in one go, but also adds feeds from email, SMS, Instant Message and phone apps into the mix. 
These information pipes work by authenticating with the destination site (eg asking to store your Twitter/Facebook login credentials), so they can turn blogs into tweets without further prompting. A security hazard? Well, since your content is going to be public anyway, data protection isn't as much an issue, but you should check to ensure you trust the facilitating site with your social media credentials - it is after all the gateway to a public voice in your name. Feeding your news habit - the role of RSS
This popular news protocol (expanded variously as Really Simple Syndication or RDF Site Summary) could be described as 'Feed anything to anything to anywhere'. The general standardisation of RSS and Atom protocols as a means of feeding your scribblings into other news aggregators is a powerful publishing tool, as well as a mega time-saver. By writing just one blog or updating a single news column, you can stream your prose simultaneously into all the social networks where you are a member, thus reducing the burden of maintaining multiple social media accounts, yet keeping your fans happy with fresh content. 
It doesn't have to be just a blog though, since any Web Content Management System worth its salt these days will output an RSS feed without you lifting a finger. Just about any web application now features an RSS link, be it a blog, a news module, a forum or an instant messaging stream. Fit to print?Mightier than the pen perhaps, but beware - RSS can be a double-edged sword. For example, piping a forum's RSS feed straight into Twitter can be dangerous. Again, it's all in the public domain but a) forum contributors may not be aware their rants are being listened in on by the Twittersphere at large, and b) you can still pull inappropriate or abusive posts even from an unmoderated forum, but once they're in Twitter, it's history - as in 'permanently on display'. Another side effect is that your Twitter followers or Facebook fans might run a mile on being suddenly blasted with the collective spleen-venting of hundreds of forum members, though sensation and controversy can attract and repulse in equal measure.. Engaging your audienceOf course, unless you are a riveting and already popular columnist, nothing will attract fans like real conversation. Unfortunately, geeks lured in by the technology of social media networks often find their introverted personalities are actually the least suited to engaging more followers. For all the efficiencies engendered by piping feeds around the place as described above, you can't beat a few rousing words and a little simpatico scattered at the right time. Step forward, media and PR whizzkids. Walking the talkEnterprises and organisations have embraced the social media with varying degrees of scepticism and enthusiasm. Rightly so, as the culture blurs boundaries of personal life and work time, mixing up the ethics, and at worst creating whistle-blowing outlets. Inevitably, the larger enterprises have sought to cover themselves with a new brand of social media policies.Social exclusionAll of the above sites are free to use and therefore give no guarantees of reliability. As such you use them at your own risk. Twitter has been notorious for crashing under load and spam attacks, as it strains to find new storage and bandwidth architectures (or indeed a viable business model) to accommodate demand, none of which seems to deter its ever rising user base from coming back. Facebook has suffered slings and arrows of a different kind with past criticisms over its changing policies on protection of users' profile data. Twitterfeed too has not been without its problems, with changes in authentication procedure and moves to new hardware. To paraphrase the caveats so beloved of the beleaguered financial sector: sites will come up as well as go down. -IB- Still confused by social media? Use the form below to ask us for a helping hand to get you started. Learn more about RSS. |
| ^ Back to contents ^ | |
|
2.
Data protection bites back
Serious data breaches are being punished with serious sanctions come April 2010. Are your data protection procedures up to scratch?
| |
|
Help at hand. |
"When things go wrong, a security breach can cause real harm and great distress to thousands of people."
Information Commissioner, Christopher Graham Anyone working in the UK's not-for-profit sector must by now be aware of the Data Protection Act, but for many people it's still only vaguely familiar or a nod towards getting the registration done and ticking another bureaucratic box. From 6 April 2010 however, the Information Commissioner’s Office (ICO) is getting tough with serious lapses of data security and is able to impose fines of up to £500,000 on the organisations responsible. That's a big risk to take for the sake of a few basic practices and some training. The principles aren't hard for staff and volunteers to grasp; it's largely about fairness to those whose data is being held, a common facet of membership and contacts databases.
Organisations can make life easier for themselves by not keeping every email and document that comes their way. The less you store, the less information is potentially at risk. One can think of the change in emphasis as looking at the data you keep in terms of "Would it matter if we didn't have this information at all?" Constructing a set of policies is one thing, but enacting them is another. Storage repositories of emails and documents that require, say, a minimum retention of 12 months and a maximum or 24months could add up to a lot of maintenance. Plug leaky data holesThere have been high profile examples of personal records being lost or misplaced through inappropriate communication, transported on easily readable CDs or stolen as part of a laptop's contents. All of which will drive future requirements for organisations to encrypt digital information they hold about other people. Likewise, the need to turf out information that doesn't need to be kept is already making expiration polices and document management systems (DMS) the rule rather than the exception. However automating a lot of these requirements can make such maintenance almost redundant. Windows 7 now builds in BitLocker encryption, so that a laptop's whole hard drive can be protected in the event of loss or theft. On local area networks, it is possible to disable writing to USB devices altogether on Windows XP SP2, Vista and Windows 7, making data theft and leaks much less likely. For organisations with a mix of machines and operating systems, multi-platform encryption can be obtained freely from TrueCrypt and even installed as a portable version to completely encrypt USB memory sticks and hard drives. Employing VPN (virtual private network) technology allows remote employees to access an organisation's private data safely. All the data served to the user at the far end is encrypted and the only data retained locally is the connection to the VPN server. Email too can be provided securely via a VPN connection instead of the usual web browser plus https method. While a full document management system (DMS) can be expensive, automating email retention and expiration can be implemented on current versions of Microsoft Exchange and gets better still in the upcoming 2010 release. Christopher Graham, Information Commissioner, said recently: "Getting data protection right has never been more important than it is today. As citizens, we are increasingly asked to complete transactions online, with the state, banks and other organisations using huge databases to store our personal details. When things go wrong, a security breach can cause real harm and great distress to thousands of people." Create a data protection policy for your organisation. This is one of the best ways of going through the check list and at least finding out the scope of measures for your needs. We've made it easy by giving you a free Data Protection Policy template to download and get started. 
Contacts
If any of the issues discussed here affect you, do get in touch using the form below. -IB- |
| ^ Back to contents ^ | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
3.
How long should emails be kept?
Data retention and expiration policies are becoming an issue for organisations to implement.
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
Help at hand. |
While legal firms may be required to keep their case data for 6 years, financial regulations can demand the retention of records for 10 years or more. But what about email? The de facto behaviour in the absence of any organisational governance is often to keep all emails forever 'just in case', until either they are lost through technical malfunction or deleted by accident. Doing time - some legal examples
In such an atmosphere of indifference, it's better to start developing a policy even if there is no apparent need for one yet. What data and records an organisation should retain or destroy is the purpose of a data retention policy, as well as when and how that should be executed. Moreover, this applies to all forms covering both electronic and paper. The guiding principle of retaining the minimum necessary should be borne in mind especially with respect to personal information, but how long is too long? As background, take a look through recent trends:
Of course, search data contains things like IP addresses, query text and browser information, so does not contain nearly as much personally identifiable information (PII) as the average office worker squirrels away in an average inbox. Automating email retention and expirationIn implementing a data retention/expiration policy, it's important to set upper and lower limits. The minimum time (retention) exists to comply with statutory, regulatory or legislative needs, while the maximum time (expiration) is there to satisfy the protection of consumers or subscribers. .gif)
Email retention policies can be automated with various degrees of ease depending on which version of Microsoft Exchange you have installed. Users of Exchange 2003 must implement group policies for Outlook, preferably rolled out centrally rather per workstation. Move up to Exchange 2007 and Exchange 2010 and we find retention and expiration policy is implemented through Messaging Records Management (MRM). MRM uses sophisticated tagging to make it easier to keep or remove different classes of email messages, thus aiding compliance with organisational policy, government regulations, or legal needs, and to remove redundant content. However there are plenty of other features that make an Exchange upgrade worthwhile (see Exchange features table below). Will backups break data retention rules?Normally, information will 'disappear' from backup sets (tapes, NAS, etc) as part of their natural cycle since most backup systems store data for no more than a few months due to storage limitations. However, if your backup cycle strays into many months or years, it should be checked against your policies, as well as guarding against bringing back huge volumes of data during any emergency restore processes. A written policy should be drafted in consultation with employees - since they may have to carry out out and monitor its consequences - and be available for public scrutiny. Built-in Protection - Compare Exchange featuresKey:
 
A useful guide is The ICSA Guide to Document Retention (Paperback) by Andrew C. Hamer. Contacts
-IB- |
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| ^ Back to contents ^ | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
4.
Physical memory limits for Windows operating systems
Check how much memory your system can take.
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
Help at hand. |
Windows operating systems allow for different amounts of maximum memory to be fitted. Some cope with more than others. Check yours below before going for a memory upgrade.
Windows DesktopsPhysical Memory Limits: Windows 7
Physical Memory Limits: Windows Vista
Physical Memory Limits: Windows XP
Windows ServersPhysical Memory Limits: Windows Server 2008 R2Windows Server 2008 R2 is available only in 64-bit editions.
Physical Memory Limits: Windows Server 2008Limits greater than 4 GB for 32-bit Windows assume that PAE is enabled.
Physical Memory Limits: Windows Server 2003Limits greater than 4 GB for 32-bit Windows assume that PAE is enabled.
These tables show a limited version of the data available on Memory Limits for Windows Releases. Learn more about memory. -IB- Acknowledgements: Mark Curtis |
| ^ Back to contents ^ | |
|
5.
The sensational new EyePad
| |
|
Help at hand. |
Reproduced by kind permission of PRIVATE EYE magazine -IB- |
| ^ Back to contents ^ | ||
|
6.
Q&A: Why are our office PCs slowing down?
Question 
Hi Mark, | ||
|
Help at hand. |
There are hundreds of possibilities that could generate this tedious PC 'pre-ageing', but it's not helped by the fact that small remote offices are set up in a server-less network in a typical peer-to-peer arrangement. One of the really annoying defaults that has been present in Windows from the Year Dot is that File and Print Sharing arrives already turned on. This is fine for home users with a couple of PCs and a switch or router, because it means that your average family can get started sharing files with relatively little fuss. One could argue that this kind of ease of collaboration is similarly desirable in a small-to-medium business (SMB) or branch office environment. However, SMBs nowadays often justify their own dedicated servers or employ some sort of external shared drive or Network Attached Storage (NAS) for sharing documents, so the Windows native file sharing has become a bit out-dated, not to say dangerous in situations where sharing happens on a Wi-Fi network; it's still unfortunately all too common to find Wi-Fi with zero security configured! But the real downer is that Windows machines in peer configuration soon start to learn about the presence of each others default file shares and printers in the workgroup, even where there are none of these actually active, and that means an increasingly busy network full of redundant traffic. This frequently happens where office users share machines and Windows profiles ad-hoc. In the absence of any central repository, staff just grab the quickest way of sharing their documents via file sharing. You can imagine the network traffic build up between PCs. It's like the start of a summer party. The two or three people who arrived on time can have a clear, easy chat to each other in (probably uncomfortably) quiet surroundings. Add 20 more fashionably late socialites and the efficiency of communication wanes a bit as the number of conversations in the room rises from one to say half a dozen. Chuck in a further 30 loud arrivals from the pub and any meaningful conversations are .... well you know how it goes. Of course parties are about fun, but offices are about efficiency, so turning off the shares is a quick way to clear this traffic jam:
This is by no means the only bottleneck you should look for. Other issues are:
-IB-
|
|
| ^ Back to contents ^ | ||
|
Clicks of the Trade - Save a web page quickly and efficiently
--- Quick tips for happier clicks! ---
| ||
|
Help at hand. |
Sometimes you need to save a web page for later - such as an online order recipt, or subscription details - but without a lot of fuss. The default File | Save Page As menu in most browsers will generate a sub-folder full of the images contained on the page such as receipt_Files. If this folder gets separated from the file of the same name, the page integrity is broken, so remember to keep the page and its folder together. 
But if all you want to save is the basic text in its original layout (so that order entries line up and so on), it's worth selecting File type = Web Page, HTML only instead of the default Web Page, complete. That way you save an image-free, portable, attachable version that you can call up locally in your browser later without needing the original web site or even an Internet connection. Occasionally some web sites deliver special elements (eg Java) not visible after saving, but for most text elements this method is quick, practical and consumes the minimum of space. ** try it now **-IB-
|
^ Back to contents ^
Opinions expressed within InfoBulletin do not necessarily represent the views of Co-Operative Systems.
E&OE
|
^ Back to contents ^
|
|
|
Read recent and past issues of InfoBulletins on the Web at www.coopsys.net/ibindex.htm or search our archives and subject index.
We hope you found InfoBulletin useful! If you would like to comment on any of the articles or request particular subjects to be covered, mail us here.
|
||
Taking reasonable steps to manage IT risk down to an 'appropriate level' is a tricky but legal requirement. Find out how to crack the tough and boring steps of sidelining hackers, staff with a grudge, and buggy software. Bookmark your appointment at 2pm with Philip Anthony at the NCVO Risk Management Conference 2010. The all-day event includes speakers on legal and trustee issues, campaigning and reputation management, plus the human resources angle.
Unlike the UK's zero VAT-rated paper books, e-books don't attract the same exemption, as some post Christmas e-Reader owners will have realised in the current return to the 17.5% VAT climate. Arguably a tax on a greener way of reading, the governmental discretion over whether to charge eBook tax or not (Spain 4%, Norway 25%) will only continue until 2011 until the EU can decide on levelling the VAT playing field for all books irrespective of medium. In the meantime there is inevitably an ongoing 
But among some Gmail users it's more like the buzz of angry bees. Having latched its experimental Wave application into Gmail, Google has created social-networking for its mail users, called 
Dell has launched two new laptops: the education focused Latitude 2100 and the rugged Latitude XFR for outdoor use.
Complementing other business-range products such as the diminutive desktop, Optiplex Fx160, Dell have also cut the price of their Latitude range. 
= Feature included 
= Feature not included