You have my sympathy. Perhaps a pen test would help get some skin in the game for management. Seems like no one believes its possible until they get taken out behind the wood shed. I'd bet most of us find ourselves in a similar position too often.
Jason On Mon, Oct 12, 2009 at 11:24 AM, Soft Reset <[email protected]>wrote: > Without spilling details, I told the IT team to remove an exposed web > portal from the internet as it was not SSL protected and the password was > easy enough to be found in my kid's "My First Dictionary". This is the > response I got back from our "top guy": > > "Many people need access to the web portal. Remember that one of the > objectives is to develop a strategy > for the customer. Easier access, not harder, should be the goal." > > I laughed. How about you? > > > --SR6 > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > -- irc: Tadaka Twitter: Jason_Wood jwnetworkconsulting.com
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
