Appropriate threat-alert form

Contents
In awareness of excerpting when a post is fed to other pages. Common-necessary information would be placed at beginning.

1. Identification: name, type, risk assessment, (re)solution
2. Situation/status: impact, preventive/proactive actions, passive action/progress
3. More details: characteristic, resolution (corrective action)
4. Other references

Items

Subject: use term "Threat-alert" to be common among virus, security threat, spyware, etc. Then follow by threat's common name.

Labels/tags: attention, computer-security

Identification

1. Name: threat's full/official name
2. Type: from which we can determine the threat's major characteristic
3. Severity: how much disaster the threat can do.
4. Spreading: how fast/wide can the threat do outbreak.
   
5. Difficulty: how long/difficult to remove the threat infection. Note that some case, repairing may not be difficult anymore but still takes long time.
   
6. Protection: what are required to protect our systems against the threat.
   

Situation

1. Impact: when, where, and how many that infection is found.
2. Protection deployment status, or any preventive workaround and progress.
3. Passive action/progress: for ones already got attacked.

More details

1. Infection, risk condition: what kinds of system, process, characteristic that are risky to be attacked.
2. Symptom: what can we notice when attacked?
3. Resolution, correction: how to remove the threat after attack?

Remarks
Comparing risk-assessment attributes with FMEA

1. Severity: same
2. Occurrence: not really concerned in operation. We'd rather review current/known impact of each time.
3. Detect risk: can be determined from "protection": i.e., it is high when protection is not available yet, and it is low when protection is effecient and successfully installed.
   

NAI/McAfee has a good attribute list -- where?

If quantifiable, risk assessment can be plotted as bubble chart:

• x = difficulty
• y = severity
• z = spreading

EOx

File
Line
Promotion
Service, Support
Warranty

iGoogle gadget: My Google Groups

http://www.google.com/ig/directory?url=www.google.com/ig/modules/mygroups.xml

I rather cancel it. Its setting: sort by 'New messages', seems not work as expected -- still list groups alphabatically with 4-line room. So it does not help notifying me new updates from the method I click 'Groups' link at the top of iGoogle page.

Revise my workbooks

** This does not mean to change from an old method forever. Any method can be revised, and can be returned -- depending on situation of each time period. **

• ลองเลิกใช้ lecture book (สมุดจดริมลวด wire-bound). Consolidate into Organizer + clipboard. คิดว่าเก็บสมุดจดนี้ไว้เวลาติดตัวไป lecture ที่ไหน แล้วมาฉีกแยกเก็บทีหลัง (เหมือนสมุด lecture ฉีกแบบสันกาว แต่แบบริมลวดจะกะทัดรัดกว่า)
• Organizer book: to-do (unscheduled), collecting/archiving แยกเป็นหมวดหมู่. ทดลองเอาส่วน diary มาใช้ดูว่าเป็นไงมั่ง (needn't be stuck with design template)
  
• Clipboard: drawing, miscellaneous-temporary journaling.
• Planner book: to-do schedule, work planning.

Would we leave another (back/left) page of paper?

(ทิ้งว่างไว้ดีไหม?)

Yes, we would

1. เอาไว้ทด, ร่าง, drawing
2. (From K.พรทิพย์) เว้นหน้าซ้ายในสมุดเอาไว้เติม-แทรกเวลาตกหล่น
3. เผื่อกรณีทำ clipping จะได้ตัดไปแปะที่อื่นได้ ไม่ติดเรื่องหน้าหลัง.

No, we would not

1. เปลือง, เสียดาย
2. ที่จะเผื่อไว้น่ะ ไม่เห็นจะได้ใช้ซักเท่าไหร่เลย

Should I uninstall ClipMarks?

http://clipmarks.com/faq/

Reasons
- Need to create account
- I've already had FastStone Capture.
- Maybe EverNote can do same, or as complement to FScapture.

2/20'09> เก็บไว้ก่อน ไม่เกะกะสักเท่าไหร่ เผื่อตอนอยากใช้จะได้ไม่ต้องตามค้นมาลงใหม่

Publication drafting

** pre-blogging, farm **

1. GoogleDocs(doc): can be offline.
2. Windows Live.com also has blog editor tool.
3. Mailbox draft folder -- as general-purpose memopad.