Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Security (maybe basic) question

From: "Dan Tesch" <dan.tesch () comcast net>
Date: Tue, 7 Sep 2004 16:28:28 -0500

Based on your e-mail address, can we assume you are an
HP employee?  I don't have a paper to reference for you
as you asked but an example I can think of - HP Web
JetAdmin is a good application but installs Apache I think
on the machine it is on - what happens when Apache vulns.
are discovered, are manufacturers on top of issuing patches
for embedded code or even notifying customers?  I think
Dell's OpenManage uses Apache also? what average admin.
is even keeping track of that stuff?

my $.02



Generally customers feel it is not safe to use web
servers & Java for things like system adminstration from security point
of view ?

Is there any paper that explains the threats involved ?

TIA!

--------------------------------------------------------------------------

-

Computer Forensics Training at the InfoSec Institute. All of our class

sizes

are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills

of

a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
--------------------------------------------------------------------------

--





---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: