Paul Gilmartin wrote: >Firewall security rules. Their z system is not permitted to connect >to ftp.cbttape.org.
Elardus Engelbrecht replied: >Ok. Thanks. It seemed reasonable to me. Are those rules "reasonable"? I don't assume that, having observed the common consequences of such rules in the real world. In many instances such rules dramatically *reduce* overall enterprise security as business people (naturally!) bypass the rules to get their (expletive deleted) jobs done. Such rules might be a good way to end up with stolen laptops containing your customers' credit card numbers, passport numbers, dates of birth, and social insurance numbers, for example. Or to open up new and interesting hacker attack vectors that become available through the workarounds. It is also theoretically possible to heave your mainframe into the Mariana Trench, too, allegedly in the name of "security." And to disconnect all your telephones. It doesn't mean that's "reasonable." - - - - - Timothy Sipples Resident Enterprise Architect STG Value Creation & Complex Deals Team IBM Growth Markets (Based in Singapore) E-Mail: [email protected] ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
