On Tue, 12 Dec 2000, Roy G. Culley wrote:
> what so ever. I use PGP whenever I want to transfer sensitive data. What
> we we talking about is protecting a companies data from outside and inside
> attack (remember over 80% of security incidents are from the inside). The
The 80% figure is extremely old, and highly dependant on characterizing
what an attack is. I don't recall the last time I dug into it, but I
don't think it included malcode events and certainly didn't cover any
usefully recent data on Internet attacks as they've risen. It's
surprising how few admins even recognize attempts at Web server
compromise, let alone report them.
At my last company, our most highly visible Web site got more probes than
the employees for that unit were capable of generating internally. When
the nubmer of unique daily visitors is in the 7-8 digit range, even very
small percentages of attacks and precursors are pretty large numbers. I'd
bet that at this date and time, adding all the Webmonsters together would
start to skew the statistic by about 5% alone.
> original discussion was about firewalls keeping state about connections. I
> tried to explain why stateful firewalls are useful. Mr. Robertson thinks
> differently on this matter. I think he is wrong. For sure when everyone
> uses encryption the job of a firewall administrator is over. He admits this.
> I'm just saying that his dictatorial attitude is hastening this day.
"Hastening?" That's the first time "Your arrogant dictatorial stance is
the reason..." has meant "hastening."
Nonetheless, this is probably getting boring for the rest of the list, if
someone has newer/better stats, and could cite a source, I'd appreciate
it. Direct replies are still welcome, but let's give everyone else a
rest.
Paul
[Trying to resist a pun with belt and suspenders to go with those breeches]
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
[EMAIL PROTECTED] which may have no basis whatsoever in fact."
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
