|
|
On 1/4/06, Jason Haar <Jason.Haar@xxxxxxxxxxxxx> wrote: > Leonard Isham wrote: > > Which brings me to a warning of not getting caught up in Security > > Theatre (http://en.wikipedia.org/wiki/Security_theatre). Rootkits are > > designed to evade detection, iptables, and even honeypost technology > > can provide deceiving information. > > > > > Well then, we might as well pack up and go home then! What you say is > true, but that means *nothing* can ever satisfy you. > > Just because a solution only works 99.99% of the time doesn't make it > useless... > OK lets take a step back. I did not say it was useless, but that it is not a guarantee that all is well. Security is about risk assessment and evaluation. There is no security utopia just acceptable risk. The fact that a computer responds as expected is not a guarantee that all is well, on the other hand if it responds incorrectly there is an elevated risk. One should use defense in depth, and other accepted security practices. Many commercial products promote their queries of the remote system as all that is needed to protect your network and that is Security Theatre IMHO. Does that clear up my stance? -- Leonard Isham, CISSP Ostendo non ostento. ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-01/msg00085.html on line 214 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-01/msg00085.html on line 214 |