I believe one reason the NSA is trying to rework the Linux kernal (please do
NOT tell Dan S. ;) is because that would be the "correct" way. i.e. "..In
the BEGINNING was the Word and the Word was Security." This is all after
the fact and is why security has generated $Billions & why every software
development company in the world has a fat & bulging Dept. of Kluges &
Patches. OTOH Think how many thousands would then have to go out & get a
REAL job. :-)
"Moving fast is not the same as going somewhere." -Robert Anthony
*-----Original Message-----
*From: [EMAIL PROTECTED]
*[mailto:[EMAIL PROTECTED]]On Behalf Of
*[EMAIL PROTECTED]
*Sent: Tuesday, December 05, 2000 4:02 PM
*To: Rick
*Cc: [EMAIL PROTECTED]
*Subject: Re: State of Security
*
*
*Actually what some companies promote is "Best of Breed" technology but
*sometimes pushing "Best of Breed" is not always the correct path to
*take. I'll agree using the Internet is probably one of the most
*unreliable
*ways to communicate to one another. There is also lots of
*attention around
*the security of the Internet but security is really an
*afterthought. Think
*about all those cool applications one can run on their machine: (i.e.
*Pointcast, AIM, Yahoo Instant Messenger, etc) and drive the security folks
*crazy. Well, I am off to Amazon to buy the Web Security Book, doesn't
*every one has a copy.. :)
*
*/mark
*
*At 09:41 PM 12/5/00 +0000, Rick wrote:
*>Dear Sir,
*>
*>I dont know if its any better, but is it any worse? It has become more
*>important, both as a result of the changing uses of the internet, and
*>because of media hype about the internet itself. One is, however,
*related to
*>the other. As the use of the internet has changed, so do the
*requirements of
*>security systems. IMHO, the main drive behind this has been the trend
*>towards internet shopping, with all its intrinsic unreliabilities. As a
*>method of transfer of privelidged information, the internet fails
*miserably,
*>and perhaps this is more what needs to be understood. The internet was,
*>after all, designed as an information exchange, not as a world
*wide shopping
*>mall. However, it seems popular currently, which brings attention
*to it (and
*>its failures) and the media has been hot off the mark to radically over
*>exagerate "break-ins" and "security risks" on such sites
*(normally with the
*>help of some kind explaination from a reverted "hacker" who tells
*the anchor
*>man how easy it is). Thus, the public frieks out, sites have to buy better
*>security gear with better support licences, and the security companies are
*>only too willing to help them find "the best sollution to fit their
*>business".
*>
*>Perhaps this is because all the security industry can ever do is
*react; once
*>an attack is made its patched out of systems, but its still a
*reaction, and
*>thats a news story, and news stories sell papers. The media hype
*is here in
*>abundance, and maybe that public perception of security technology lagging
*>behind the hackers (got no time for hackers calling themselves crackers)
*>ability to find new holes is rubbing off, and Information
*security is being
*>percieved as getting worse.
*>
*>IMHO, because all we can do is react, we are no worse off today
*than we were
*>yesterday, or last year. The Information that is being protected has
*>changed, however, and with it has brought the problems...
*>
*>Sorry for the overly long winded, obfuscated and parambulatory email.
*>
*>Rick
*>
*>--------
*>If this email makes no sense, delete it, its a tuesday .
*
*-
*[To unsubscribe, send mail to [EMAIL PROTECTED] with
*"unsubscribe firewalls" in the body of the message.]
*
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
