I'm just trying to figure out where you get off calling someone an idiot. This isn't an information security newsgroup. I thought maybe you were a subject expert, but you dont have your CISSP... So basically, you are just some guy on _COLDFUSION_ list annoying (and insulting) people with the stereotypical MS security rant.
Exactly what is the point of your thread again? -Adam On Tue, 1 Mar 2005 15:32:27 -0500, John Paul Ashenfelter <[EMAIL PROTECTED]> wrote: > On Tue, 1 Mar 2005 14:12:11 -0500, Adrocknaphobia > <[EMAIL PROTECTED]> wrote: > > Do you even have your CISSP? > > > > -Adam > > I need a CISSP to understand *basic* security precautions? Like using > a firewall? No, I don't have a CISSP -- nor is a certification > directly relevant to the discussion (though I think CISSP is one of > the better certifications there is as far as rigor and value). > > What I do have is the experience of managing a datacenter containing a > heterogenous mix of Linux and Windows servers of varying versions for > 6 years, not to mention handling or securing the on-site and colo > networks for around a dozen clients. I don't do anything fancy -- PIX > firewalls on the outside, software firewalls on key internal boxes, a > little bit of appropriate VLAN segregation, ssh and VPNs where > appropriate. And then simple monitoring and an occasional run of > Nessus to ensure things are still tight. And keeping abreast of the > security fixes/bulletins for the key software I run. > > I have, however, seen numerous folks cracked -- specifically Windows > folks (probably b/c more clients locally use Windows). I've seen one > client with a Win NT 4 SP4 server running naked (no firewall) with FTP > enabled get turned into a porn DVD server. I've seen the Biz School at > a major univeristy be brought to its knees TWICE by Windows worms. And > I've seen the CTO of a startup bring in Slammer to the *inside* of > their network on a laptop... contracted even though he's on dialup at > home... In al of these cases, a basic firewall rules would have > prevented the incident. > > Hopefully those of you who are CISSP will be doing something a little > more sophisticated than arguing that a firewall is a good thing. > > -- > John Paul Ashenfelter > CTO/Transitionpoint > (blog) http://www.ashenfelter.com > (email) [EMAIL PROTECTED] > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:197006 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
