Date: Wed, 04 Apr 2001 13:58:59 -0500 From: "Simon" <simon@optinet.com> To: "Chuck" <cdc2@csd.uwm.edu>, "Kal Torak" <kaltorak@quake.com.au> Cc: "Enno Davids" <enno.davids@metva.com.au>, "Forrest W. Christian" <forrestc@imach.com>, "freebsd-isp@FreeBSD.ORG" <freebsd-isp@FreeBSD.ORG> Subject: Re: Chasing the kiddies (was: Named Keep crashing) Message-ID: <20010404185444.7CFC337B724@hub.freebsd.org> In-Reply-To: <Pine.OSF.3.96.1010404134339.8922B-100000@alpha1.csd.uwm.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
That's true, however, a lot if not most companies don't take security seriously until it bites them in the ass. An organization must care before an admin would. -Simon On Wed, 4 Apr 2001 13:47:27 -0500 (CDT), Chuck wrote: > >Okay, let me refraze. > >I work for a University I am the sole computer guy for a network >containing 50 work stations and four servers to include exchange and all >that fun stuff that goes with it....Give me the correct resources and I >will give the security that goes with it...but with what I have thats >impossible. After all they dont pay me the 90,000 that it takes. > >To get to my point, not all IT departments are large enough to cover every >single security breach in an OS, esspecialy when that OS is open source >and any good coder who knows how to read can find a million holes it. > > >Im not saying that the Admins should be stupid, just that there is only so >much one person can do. > > > >On Thu, 5 Apr 2001, Kal Torak wrote: > >> Date: Thu, 05 Apr 2001 01:56:06 +1000 >> From: Kal Torak <kaltorak@quake.com.au> >> To: Chuck <cdc2@csd.uwm.edu> >> Cc: "Forrest W. Christian" <forrestc@imach.com>, >> Enno Davids <enno.davids@metva.com.au>, freebsd- isp@FreeBSD.ORG >> Subject: Re: Chasing the kiddies (was: Named Keep crashing) >> >> Chuck wrote: >> > >> > How can you tell the difference between a sloppy admin and one who has >> > only been working the field for a few years and hasnt learned all the >> > stuff that you have in all your years in it.. Why should we have to spend >> > all our time keeping up with things like patches, upgrades, new hardware, >> > virus while trying to keep our customer base happy providing 99.99% uptime >> > and trying to fend out everyone person (its not just kids) with a computer >> > who want to see how much trouble they can cause and either not get caught >> > or get caught so they can put it on a job resume that they know how to >> > mess up peoples machines. >> > >> > I run a MS shop and with all that I have to do its impossible to keep up, >> > the only thing saving my butt is that MS has only limited release of >> > source code so that everyone who knows C cant just browse though and find >> > the holes, but even still I dont know when I can go thought a week without >> > having problems from somewhere. >> >> Yes, its your job! >> You have no right to complain to some kids isp that they cracked your systems >> if you didnt even bother securing them! >> >> Companys that have personal data, should be fined if there security is breached >> through poor administration... You can make as many laws as you like against >> sniffing etc, but it wont slove anything! >> >> Infact I dont even see how anyone could call network scanning a crime... >> Its just like knocking on someones door to see if they are home, are we >> going to make that a crime as well? >> > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010404185444.7CFC337B724>