BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Top 10 Reasons To Use Licensed Software Vs Freeware

Posted November 30, 2010    Peter McCalister

In the spirit of keeping blog posts informative, short and fun, this one takes a cue from David Letterman in format.  So without further fanfare or wasted space… the Top 10 Reasons To Use Licensed Software Vs Freeware are:

#10 – Sally, the exec admin won’t be distracted by random pop-up ads for Krispy Kreme Donughts while trying to get her job done for the CEO with a utility downloaded as freeware from the internet

#9 – Andy, the Auditor won’t be publishing a failure to comply report because he found spyware on a server full of freeware because the server admins decided it was the only way to get the job done under current budget constratints

#8 – Ted in Tech Support will actually be able to get support from a live person for the licensed software but will need to search the internet and pray to the support gods for valid information for the free stuff

#7 - Sid in Development won’t be able to download Apache applications or any other unauthorized open source “tools” potentially injecting malware into our corporate network

#6 - Fiona, the night-shift systems administrator can’t edit the full text log created by sudo to erase her tracks instead of documenting her illegal identity fraud activities

#5 – Barney, the corporate attorney can sleep nights knowing that the company has legal binding agreements with the software publishers as opposed to trying to find (and hold responsible) rogue programmers on the worldwide web for freeware

#4 - Alice, the CIO is a lot more comfortable knowing that a well funded and stable company is delivering the software that runs our business as opposed to two guys and a dog writing freeware in Kazakhstan for “generous donations”

#3 - Fred in IT won’t be installing malware hidden in freeware on mission critical servers, bringing the network down for 4 hours and costing the company over $1M in lost transactions

#2 - Michelle in accounting, will continue to get yearly tax code updates to our ERP software as part our our annual maintenance contract and not have to rely on free internet search and bad advice that could land our CEO in jail

#1 – Tony, the CFO will finally realize that nothing in life is really free and managing to expense only can have negative implications when dealing with security and privilege identity management

Leave a Reply

Additional articles

VMware Hardening Guidelines-img3

How to Audit VMware ESX and ESXi Servers Against the VMware Hardening Guidelines with Retina CS

Posted February 27, 2015    BeyondTrust Research Team

Retina CS Enterprise Vulnerability Management has included advanced VMware auditing capabilities for some time, including virtual machine discovery and scanning through a cloud connection, plus the ability to scan ESX and ESXi hosts using SSH. However, in response to recent security concerns associated with SSH, VMware has disabled SSH by default in its more recent…

Tags:
, , , ,
dave-shackleford-headshot

Privileged Passwords: The Bane of Security Professionals Everywhere

Posted February 19, 2015    Dave Shackleford

Passwords have been with us since ancient times. Known as “watchwords”, ancient Roman military guards would pass a wooden tablet with a daily secret word engraved from one shift to the next, with each guard position marking the tablet to indicate it had been received. The military has been using passwords, counter-passwords, and even sound…

Tags:
, , ,
Privileged Account Management Process

In Vulnerability Management, Process is King

Posted February 18, 2015    Morey Haber

You have a vulnerability scanner, but where’s your process? Most organizations are rightly concerned about possible vulnerabilities in their systems, applications, networked devices, and other digital assets and infrastructure components. Identifying vulnerabilities is indeed important, and most security professionals have some kind of scanning solution in place. But what is most essential to understand is…

Tags:
, , , , ,