From owner-freebsd-security  Sun Oct  8 15:45:18 2000
Delivered-To: freebsd-security@freebsd.org
Received: from homer.softweyr.com (bsdconspiracy.net [208.187.122.220])
	by hub.freebsd.org (Postfix) with ESMTP id EA41137B502
	for <freebsd-security@freebsd.org>; Sun,  8 Oct 2000 15:45:15 -0700 (PDT)
Received: from localhost
	([127.0.0.1] helo=softweyr.com ident=Fools trust ident!)
	by homer.softweyr.com with esmtp (Exim 3.16 #1)
	id 13iPMJ-0001RE-00; Sun, 08 Oct 2000 16:55:55 -0600
Message-ID: <39E0FB7B.E01EA57A@softweyr.com>
Date: Sun, 08 Oct 2000 16:55:55 -0600
From: Wes Peters <wes@softweyr.com>
Organization: Softweyr LLC
X-Mailer: Mozilla 4.75 [en] (X11; U; FreeBSD 4.1-STABLE i386)
X-Accept-Language: en
MIME-Version: 1.0
To: cjclark@alum.mit.edu
Cc: "Jeffrey J. Mountin" <jeff-ml@mountin.net>,
	David Talkington <dtalk@prairienet.org>,
	"freebsd-security@FreeBSD.ORG" <freebsd-security@FreeBSD.ORG>
Subject: Re: Check Point FW-1
References: <200010080427.PAA19412@cairo.anu.edu.au> <Pine.LNX.4.21.0010080405010.6829-100000@sherman.spotnet> <4.3.2.20001008070308.00b9ae90@207.227.119.2> <20001008130301.U25121@149.211.6.64.reflexcom.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

"Crist J . Clark" wrote:
> 
> On Sun, Oct 08, 2000 at 07:13:17AM -0500, Jeffrey J. Mountin wrote:
> 
> [snip]
> 
> > Another reason why they may not wish to go with "in-house" talent is the
> > idea to out source.  Companies do this so they don't have to pay for a
> > full-time employee or reallocate internal resources for projects.  In some
> > cases it is worthwhile.  Other times it's an endless black hole.  Can only
> > blame the suits for taking this idea too far at times.
> 
> Another reason, and this is not necessarily the management's fault, is
> the lack of qualified people available. At least this is the case in
> many, if not most, parts of the US. There are a lot of qualified
> people who are only interested in doing contract work. If you have the
> choice of hiring, (a) no one, (b) a not-qualified full time person, or
> (c) a qualified contract person, for a job that needs to be done NOW,
> what choice does management really have?

The same one they always choose, (d) yank some secretary or janitor in, 
tell them it is now their job to "make the computers secure", and threaten
to fire them if it isn't done yesterday at no cost.  This is the main 
reason the internet is such a happy hunting ground for script kiddies.

-- 
            "Where am I, and what am I doing in this handbasket?"

Wes Peters                                                         Softweyr LLC
wes@softweyr.com                                           http://softweyr.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message