RE: "Act as part of operating system"

Wed, 30 Apr 2008 01:15:31 -0700 

No, but you might add that you will need to see a copy of their bond
just to make sure they have enough to cover your losses.
 
Jon


On Tue, Apr 29, 2008 at 3:45 PM, Salvador Manzo <[EMAIL PROTECTED]> wrote:


        On 4/29/08 10:43 AM, "Ben Scott" <[EMAIL PROTECTED]> wrote:
        
        > On Tue, Apr 29, 2008 at 11:05 AM, Ziots, Edward
<[EMAIL PROTECTED]> wrote:
        >> Id love to know what RDBMS is using that nonsense.
        >
        >   It's prolly not the DB engine itself, but some craptastic
        > application code using the DB.  I recall one app vendor from
my
        > consulting days, where their official recommendation was just
to put
        > every user in the Domain Administrators group, since that
"solves a
        > lot of problems".  This was around 2004, for those of you
keeping
        > score at home.
        >
        > -- Ben
        
        
        Lovely.  Is it wrong that my first question to them would then
be "so, will
        you be reimbursing us for downtime caused my this massive
destruction of my
        company's security model?"
        
        
        -----
        Salvador Manzo  [ 620 W. 35th St - Los Angeles, CA 90089  e.
[EMAIL PROTECTED] ]
        Auxiliary Services IT, Datacenter
        University of Southern California
        818-612-5112
        ---
        "Sometimes it is said that man can not be trusted with
government of
        himself. Can he, then, be trusted with the government of others?
Or have we
        found angels in the forms of kings to govern him? Let history
answer this
        question."
        -- Thomas Jefferson (First Inaugural Address, 3/4 1801)
        


        ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!    ~
        ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm>  ~
        


That is why you need to put the security requirements of the system into
the contract and have vulnerability/pen testing tools to verify that
they do meet your security needs. 

 

Z

 

Edward E. Ziots

Network Engineer

Lifespan Organization

MCSE,MCSA,MCP,Security+,Network+,CCA

Phone: 401-639-3505

-----Original Message-----
From: Jon Harris [mailto:[EMAIL PROTECTED] 
Sent: Tuesday, April 29, 2008 4:21 PM
To: NT System Admin Issues
Subject: Re: "Act as part of operating system"

 

 


~ Upgrade to Next Generation Antispam/Antivirus with Ninja!    ~
~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm>  ~

Reply via email to