Managed Internet Security Services was a very hot thing for ISP's to offer, 4 years ago. I remember being a meeting with a whole bunch of auditors and security wannabe's in 1997, when a partner of some big accounting firm was stating Internet security is approached all wrong, one must approach it from the vulnerability side of the house first and collect information about the network first. No, I disagreed with him, because each organization can easily be put into a sort of triangle 1. confidentiality 2. integrity 3. availability. What is most important to an organization and that is how the systems and applications should be tuned and keeping security in mind. So therefore using this logic, online security services are only looking at a pinhole view of a network and not at the business layer. /cheers /m - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
