> > "It's ok we're behind a firewall" > > The response I received from a DBA when I forwarded an > email detailing a security vulnerability in a > particular database application. > > And not the first time I have heard this response when > cautioning about security vulnerabilities. > > I want to raise the security awareness of the company > so that they start to understand that a Firewall isn't > absolute protection.
Read Kevin Mitnicks book "Art of Deception" and then pass it around to the various folks. Also see this WRT how social engineering can be used: http://www.wired.com/news/infostructure/0,1377,57753,00.html to get past the "firewall" Jim Liddil
