1995-01-26 - Re: CERT statement
Header Data
From: Marc Horowitz <marc@cam.ov.com>
To: Thomas Grant Edwards <tedwards@src.umd.edu>
Message Hash: 30b1819b44cd8fe674029d4ed01a43eb5a8227504e25abbe1717c891e7060ed2
Message ID: <9501262142.AA07376@dun-dun-noodles.cam.ov.com>
Reply To: N/A
UTC Datetime: 1995-01-26 21:39:44 UTC
Raw Date: Thu, 26 Jan 95 13:39:44 PST
Raw message
From: Marc Horowitz <marc@cam.ov.com>
Date: Thu, 26 Jan 95 13:39:44 PST
To: Thomas Grant Edwards <tedwards@src.umd.edu>
Subject: Re: CERT statement
Message-ID: <9501262142.AA07376@dun-dun-noodles.cam.ov.com>
MIME-Version: 1.0
Content-Type: text/plain
>> What we need to concentrate on is secure systems that are not vulnerable
>> to IP spoofing, as opposed to firewalls.
You're exactly right. However, getting people to deploy real security
systems is nearly impossible. My company sells a kerberos system, and
although everyone is saying they want security, nobody really
understands what this means, and as soon as we tell them that it
actually involves effort, they become far less interested. Even
though I've seen companies get hosed because of lame security, the
people who matter aren't willing to commit.
I'm hoping that as firewalls begin to fall, that the CERT will stop
recommending half-assed solutions. We'll have to wait and see.
Marc
Thread
Return to January 1995
- Return to ““Ian Farquhar” <ianf@sydney.sgi.com>”
- Return to “Marc Horowitz <marc@cam.ov.com>”
- Return to ““Perry E. Metzger” <perry@imsi.com>”
Return to “Thomas Grant Edwards <tedwards@src.umd.edu>”
- 1995-01-26 (Thu, 26 Jan 95 13:39:44 PST) - Re: CERT statement - Marc Horowitz <marc@cam.ov.com>
- 1995-01-27 (Thu, 26 Jan 95 16:07:07 PST) - Re: CERT statement - “Perry E. Metzger” <perry@imsi.com>
- 1995-01-27 (Thu, 26 Jan 95 16:09:05 PST) - Re: CERT statement - Marc Horowitz <marc@cam.ov.com>
- 1995-01-27 (Thu, 26 Jan 95 16:23:19 PST) - Re: CERT statement - “Perry E. Metzger” <perry@imsi.com>
- 1995-01-27 (Fri, 27 Jan 95 10:50:35 PST) - Re: CERT statement - Thomas Grant Edwards <tedwards@src.umd.edu>
- 1995-01-27 (Fri, 27 Jan 95 10:53:30 PST) - Re: CERT statement - “Perry E. Metzger” <perry@imsi.com>
- 1995-01-27 (Fri, 27 Jan 95 11:09:38 PST) - Re: CERT statement - Thomas Grant Edwards <tedwards@src.umd.edu>
- 1995-01-27 (Fri, 27 Jan 95 11:32:12 PST) - Re: CERT statement - “Perry E. Metzger” <perry@imsi.com>
- 1995-01-27 (Fri, 27 Jan 95 11:09:38 PST) - Re: CERT statement - Thomas Grant Edwards <tedwards@src.umd.edu>
- 1995-01-27 (Fri, 27 Jan 95 10:53:30 PST) - Re: CERT statement - “Perry E. Metzger” <perry@imsi.com>
- 1995-01-27 (Thu, 26 Jan 95 16:09:05 PST) - Re: CERT statement - Marc Horowitz <marc@cam.ov.com>
- 1995-01-30 (Sun, 29 Jan 95 16:03:30 PST) - Re: CERT statement - “Ian Farquhar” <ianf@sydney.sgi.com>
- 1995-01-27 (Thu, 26 Jan 95 16:07:07 PST) - Re: CERT statement - “Perry E. Metzger” <perry@imsi.com>