Even worse (IMHO) is that it will allow one-stop-shopping for
hackers and
terrorists. Hack or bribe your way into the database and no-one
will
question your credentials. Our existing databases and personnel are
not
immune. Once we put all our eggs in one basket the criminal or
terrorist
need go no further.
I think that it's a really, really bad idea.
It all has to do with expenditure of resources, no one wants to spend
time/resources/money if they can avoid it. Private and public sector alike.
Security is a major hassle, except if you are a security firm because then
you make money.
When I was a student I used to be a security guard, let me tell you no one
likes signing in in the morning, imagine if people have to go through more
security.
I called out to and made one of the partners of a law firm sign out on his
way out, he was cordial but I was grilled the next morning. "Why did you do
that?!!" "You told us everyone Ahd to sign in." "Yes, but..." Even when
the rules are written down, managers expect the rules not to be followed.
It becomes a status symbol, not to have to go through security. People are
unbelievable, pride rules at allL costs for some.
My wife was a security guard too, one evening on Canada Day she was told to
prevent all traffic through a bridge. A big limousine drives up, she stops
it and tells them to turn back. The driver said: "This is the maire!!!
Let us through!" She radioed in for advice, then let them through. But not
before they showed her some ID. The chauffeur wasn't happy, this was
beneath them.
What if it wasn't the maire in the back of that limo?
I bet this happens all over the world, esp. in countries where "security" is
tighter.
When the rules are too tight, also, you open yourself up for bribery
scandals... again because of those big egos that think they are above
everyone else. Imagine how much money you could make by entering people's
names in that central database, or altering records... what a mess. Single
point of failure.
Regards,
Patrice Boivin
Systems Analyst (Oracle Certified DBA)
--
Please see the official ORACLE-L FAQ: http://www.orafaq.com
--
Author: Boivin, Patrice J
INET: [EMAIL PROTECTED]
Fat City Network Services -- (858) 538-5051 FAX: (858) 538-5051
San Diego, California -- Public Internet access / Mailing Lists
--------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from). You may
also send the HELP command for other information (like subscribing).
