News
3/27/2008
09:47 PM
Terry Sweeney
Terry Sweeney
Commentary
50%
50%

And I Recommend Caviar For Dinner

Yes, every night. Because in this age of federal bailouts of brokerages, record mortgage defaults, and a stock market that doesn't know which way is up, it's time to indulge. At least that seems to be a piece of the logic behind this report, encouraging would-be videoconferencing customers to go HD.

Yes, every night. Because in this age of federal bailouts of brokerages, record mortgage defaults, and a stock market that doesn't know which way is up, it's time to indulge. At least that seems to be a piece of the logic behind this report, encouraging would-be videoconferencing customers to go HD.Go ahead, shout me down on this one: Video remains the most gratuitous enterprise application out there, after nearly 20 years of trying to establish itself as strategic. So just because high-definition systems have dropped below $10,000 per end-point, it's time for some really clear conferences. Hell, OC-192s are dropping in price, too -- connect the whole company up because we really need to see each other!.

Call it the coming wave of anti-extravagance (Al Gore's inconvenient truths should have prepared you for this). As companies slash staff or go out of business entirely, as budgets shrink or spending gets frozen entirely, it's hard to imagine there are lots of companies wondering how they can see Chip in sales better on those Monday morning con calls. Maybe Chip ought to worry about getting his numbers up before he finds himself peddling used codecs door to door.

Give $30,000 or $40,000 to IT and they might be able to hire another part timer, buy some more storage, or automate some critical function in the data center.

Give it a rest, I hear you saying. These consultancies are paid to make these audacious, ill-timed statements encouraging us all to throw perfectly good money away. Oh, right. But is it really so unthinkable for one of them to tell an impatient client, "Sorry, not now. Especially not right now"?

Timing's everything. That's easy to see, even without HD.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-8148
Published: 2015-01-26
The default D-Bus access control rule in Midgard2 10.05.7.1 allows local users to send arbitrary method calls or signals to any process on the system bus and possibly execute arbitrary code with root privileges.

CVE-2014-8157
Published: 2015-01-26
Off-by-one error in the jpc_dec_process_sot function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 image, which triggers a heap-based buffer overflow.

CVE-2014-8158
Published: 2015-01-26
Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 image.

CVE-2014-9571
Published: 2015-01-26
Cross-site scripting (XSS) vulnerability in admin/install.php in MantisBT before 1.2.19 and 1.3.x before 1.3.0-beta.2 allows remote attackers to inject arbitrary web script or HTML via the (1) admin_username or (2) admin_password parameter.

CVE-2014-9572
Published: 2015-01-26
MantisBT before 1.2.19 and 1.3.x before 1.3.0-beta.2 does not properly restrict access to /*/install.php, which allows remote attackers to obtain database credentials via the install parameter with the value 4.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
If you’re a security professional, you’ve probably been asked many questions about the December attack on Sony. On Jan. 21 at 1pm eastern, you can join a special, one-hour Dark Reading Radio discussion devoted to the Sony hack and the issues that may arise from it.