On Wed, Jan 13, 2010 at 03:05:19PM -0800, Paul M. Moriarty wrote: > Or put another way, expecting end users to change their behavior and > start doing all the things they "should" be doing is futile. Any approach > based on this premise will fail.
Absolutely true. "Educating users" is listed as one of Marcus Ranum's six dumbest ideas in security, and it really is. Spammers and phishers, among others, prove it millions of times a day. ---Rsk _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
