I come from the same ideology as you, but after doing this type of work for 10 years plus, I am afraid I have changed my stance.
It is not the ammount of years which has jaded me from my previously much more open policy, but rather the out and out war being waged for control of end-users PCs and the change from more of a naughty boy type hacking to one where there is real crime more and more often being the motivation.
On my current network with 4500+ end users, we lock everything down real tight. No local admin privs, a default deny policy, and if you feel you have a reason to need a port opened, you had better be willing to pitch your cause all the way up the chain of command (I have no problem with granting such things, but it is my ass that gets chewed out/looks bad when an incident occurs which I am being paid to prevent, so I want everyone in the chain to sign off as well).
And it is not just the overt things occurring, I think the rootkits are perhaps the most frightening, if they are well written, they could tunnel through an http proxy no problem, and likely transmit data through already open channels, and if not abused, they could go undetected for quite a long time (maybe years). I think it is incumbent on any security professional to be as vigilant as possible, as it is not just the end-users we are protecting, it is the customer, and partners data, and they deserve to have their personal data not be stolen.
Or are other people getting the Google Ads featuring.
Christian Singles
Eritrean Singles (seems pretty specific)
Eritrean couples (hmmmm)
I see a theme
I can only claim to have a medium WAF, While building this, and a few subsequent outages ( I was implementing the telemarketer torture script for fun), the little woman could not make calls.
Subsequently, anyone claiming they tried to call, and us not getting the call has been blamed on the system (along with any other minor annoyance)
Reminded me too much of my day job, so I have temporarily unhooked it (though I caught her still blaming things on it):)
Kissy
Not to mention MULE! I had countless of hours dumped into that game.
http://atarimule.neotechgaming.com/
There is apparently a MULE community still out there, you can play the atari version online with multiple players on your PC (WINXP/98 only)
Sorry for replying to myself
Kissy
Slashdot Mirror
Bah!
I come from the same ideology as you, but after doing this type of work for 10 years plus, I am afraid I have changed my stance.
It is not the ammount of years which has jaded me from my previously much more open policy, but rather the out and out war being waged for control of end-users PCs and the change from more of a naughty boy type hacking to one where there is real crime more and more often being the motivation.
On my current network with 4500+ end users, we lock everything down real tight. No local admin privs, a default deny policy, and if you feel you have a reason to need a port opened, you had better be willing to pitch your cause all the way up the chain of command (I have no problem with granting such things, but it is my ass that gets chewed out/looks bad when an incident occurs which I am being paid to prevent, so I want everyone in the chain to sign off as well).
And it is not just the overt things occurring, I think the rootkits are perhaps the most frightening, if they are well written, they could tunnel through an http proxy no problem, and likely transmit data through already open channels, and if not abused, they could go undetected for quite a long time (maybe years). I think it is incumbent on any security professional to be as vigilant as possible, as it is not just the end-users we are protecting, it is the customer, and partners data, and they deserve to have their personal data not be stolen.
Some viagra could be helpfull for that I hear.
emacs is clearly superior to vi
Oh wait... Nevermind
Or are other people getting the Google Ads featuring. Christian Singles Eritrean Singles (seems pretty specific) Eritrean couples (hmmmm) I see a theme
Have you worked for the gov't lately. A lot of them are still IBM shops (he types from his IBMPC) Kissyfish
When the big hand reaches the little hand, it's bed-time for Michael Jackson. Kissyfish
Quoth
> I need good Unix/X compatibility for when I
> deal with the big iron.
You have got an SNA adapter for a Mac? Or a Virtual Z/OS system
Green with envy
I can only claim to have a medium WAF, While building this, and a few subsequent outages ( I was implementing the telemarketer torture script for fun), the little woman could not make calls. Subsequently, anyone claiming they tried to call, and us not getting the call has been blamed on the system (along with any other minor annoyance) Reminded me too much of my day job, so I have temporarily unhooked it (though I caught her still blaming things on it) :)
Kissy
Not to mention MULE! I had countless of hours dumped into that game. http://atarimule.neotechgaming.com/ There is apparently a MULE community still out there, you can play the atari version online with multiple players on your PC (WINXP/98 only) Sorry for replying to myself Kissy
Bring back Archon! Now that was a game! One of the first I ever bought (for my commodore 64). Kissyfish
HEY!!! Wait a minute there... Radio Drama ROCKS! Especially the old stuff with the ads still in the audio.
My local NPR plays them every sunday night, and I look forward to it every week.
Kissy