[EMAIL PROTECTED] said: > So, given that _all_ employees of an enterprise are going to have > access to the source of your operating system, and a lot of the other > software that runs on it, the people responsible for those systems > cannot hope for security through obscurity. They will have to assume > they're in a hostile environment (80%(?) of all system intrusions are > from employees, as I recall) and act accordingly.
That number might be true of mainframes, but figures I saw maybe a year ago out it down to around 50% as attacks arriving over the Internet become more numerous. If you count email virus attacks, I don't believe attacks originating inside are anything like so numerous in comparison any more. True, a lot of those are harmless to a lot of people, but I could legitimately count them as attacks (though futile) on my system whenever they arrive here. Is Code Red an attack on my computer? I saw lots of hits from it. -- Cheers John Summerfield Microsoft's most solid OS: http://www.geocities.com/rcwoolley/ Note: mail delivered to me is deemed to be intended for me, for my disposition.
