> Seriously: > - no VoIP in your practice? > - no remote access (e.g. SSH ?) > - no pathlogy downloads (or do you just poll them from > mailboxes like I do)
Yup no voip. No remote access straight to box. VPN to firewal box only. Path is as per path companies downloaders, i.e intiated from inside. > Welcome to reality. One day it might hit you like a train, so > better watch out. I guess it may one day but, I have over 50 firewalls out there in the big bad internet land and the only time i have any trouble is when silly clients initiate somthing from inside. No email hosting No web hosting. No dumb windows boxes facing the internet.linux boxes only. > If you actively participate on the net, you will have two way > network traffic. > Even if you don't have any ports open, you can get hacked - As you have found out using your'e so secure linux boxes. Now was that an inherent vuneribility or Bad management ? :) > enough just pointing the MSIE browser to the wrong site, or > using MS Outlook/Outlook express and receiving the wrong > mail. In like Flynn, they say. Outlook express is a joke and therefore banned. Email is filtered by ISP first and then 2 hourly updated CA AV using both Vet engine and Inoculate engine. No problems so far. Oh I forgot, the users are educated and have a brain. > One way or another, one day *something* might get active from > *within* your network. How it came to be is primarily > irrelevant until you have detected the problem in he first place. > > > Checking daily ? > > Why ? > > see above. But continue to sleep, since it obviously does not > worry you. No I sleep fine at night thanks. No firewall is fool proof or 100% safe and I inform my clients of that. > I do not know of a single practice I visited in recent times > that did not have > *multiple* malware on at least one of their computers, and > *none* of them had realized it. Nothing nasty on my networks unless clients install it. General rule at my sites, you wanna install something, You had 1. better know the admin pwd, 2. ask me first because otherwise I uninstall it without asking. > Not one of them. All just > drop their jaws and bulge their eyes, and most have just been > lucky that the intruders had no interest whatsoever in their > data, just in their capacity as mail relays, FTP servers for > all sorts of things, IRC bots, or just slave platforms for > further attacks, They all think just because they have this > Norton's Nonsense or whatever installed, nothing bad will > happen to them. Nortons sucks bad. First thing to get infected. > > Either you check, or you don't want to know. Which is it? > > > And what doctors do you think have the time besides yourself ? > > I am administering 17 such machines in about 10 minutes per Try 60+ servers and 3-400 pc's plus 100 thin clients and the above 50 firewalls. You think tight arse doctors (remember I"m married to 1 before you get all fired up) are gonna pay monthly fee for me to check the log's, Now your'e in fantasy land :) Andrew. _______________________________________________ Gpcg_talk mailing list [email protected] http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk
