Full Disclosure mailing list archives
RE: [OFFTOPIC] Zone Alarm
From: "John Ruppert" <likewhoa_666 () hotmail com>
Date: Thu, 05 Jun 2003 14:29:29 +0000
From: "Robert J. Liebsch" <rliebsch () stoneyamashita com>To: "Michael Reilly" <michaelr () cisco com>, "Schmehl, Paul L" <pauls () utdallas edu>, "Kurt Seifried" <listuser () seifried org> CC: "Ben Tyson-Norrman" <ben () twowaytv co uk>, <full-disclosure () lists netsys com>Subject: RE: [Full-disclosure] [OFFTOPIC] Zone Alarm Date: Wed, 4 Jun 2003 16:45:28 -0700 I have on asbestos underwear, so I am prepared for your flames...
asbestos sounds much like a big bird's name.
However,
please, yes.
Because security is inconvenient does not make it irrelevant. You do have your car serviced? You do go see a doctor regularly? You do perform maintenance to your home? ....don't you?
Well that is personal. I would not want people to associate me with a home see doctor maintenance system. But hey, if foo is inconvenient the sentence "foo is inconvenient does not makes it irrelevant." is true. However, yes, this sentence can apply to anything that is irrelevant and has been discarded from your argument list.
How can you expect the right thing to be easy? You must have at least NAT running on a fairly safe box.
just 'echo 1 > /proc/sys/net/ipv4/ip_forward` # Right thing. see the 1 ?
Everything, software/hardware/firmware/you/me/the damed dog have security vulnerabilities. Safe sex is everyone's responsibility isn't it? Safe driveing is everyone's responsibility. Safe gun handling. And we all know what happens.
All this is inconvenient but it does not make it irrelevant.
Come on. If we don't make demands that people wake the hell up and be responsible human beings, and responsible computer users... Give up and get a different career on a different planet. I have a VERY small office. Only 30 users. But EVERY one of them has DSL at home. Every one of them has hardware providing NAT, every one of them has system monitoring utilities and antivirus utilities, every one of them has muchmore than the basic precautions taken. But now, two years later, they take itas a given. As a requisit for computing in this information age.
You are loosing your head over a firewall discussion, my friend.And anyways, how do you think it affect them to run an irc server, or two if they don't know it ?
My users, my lame ass users who forget how to print, who can seldom rememberhow to zip a file, or any number of other things users don't know how to do because they weren't practiced.... They laugh at people who don't concider some security issues.
Laugh.
Take your stance a little bit further... How many sysadmins, netadmins, secadmins don't follow policy? How many skip security because its too hard.
None. The question you should have asked is how many real sysadmins, netadmins, secadmins are left on the planet.
Because its too complicated, because it takes too long? I know how many. Lookat the penetrations, look at the defacements. This is everyones issue. This is not offtopic.
I must say I do think it is off topic, my friend.
Lets take this further still... Suppose you don't expect users to do this. Suppose I plant a zombie on your users machine because all they had was Zone Alarm, or better yet, Nothing at all. Now your user comes to work. My zombie says "hey, this addressis an RFC1918 address, Time to wake up and go to work." Then I can weasle myway in to your very well maintained network.
End-user are probably mostly stupid and you said it earlier. Stupid people do not really care about intelligent matters. Intelligent people do not really care about what is stupid.
This isn't easy. Neither was getting people to take a bath during the plagues. Neither is carrying herpes because you didnt wear a condom, Netiher is burying family because you didn't put your gun away, or put on a saftey belt...
m00
off topic? How?
You are talking about a social problem, my friend. This is not a security question, it is already identified. -likewhoa How do you plan to change the world today ? _________________________________________________________________Tired of spam? Get advanced junk mail protection with MSN 8. http://join.msn.com/?page=features/junkmail
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: [OFFTOPIC] Zone Alarm, (continued)
- Re: [OFFTOPIC] Zone Alarm Nick FitzGerald (Jun 05)
- RE: [OFFTOPIC] Zone Alarm Robert J. Liebsch (Jun 04)
- RE: [OFFTOPIC] Zone Alarm Robert J. Liebsch (Jun 04)
- RE: [OFFTOPIC] Zone Alarm Schmehl, Paul L (Jun 04)
- RE: [OFFTOPIC] Zone Alarm JT (Jun 04)
- RE: [OFFTOPIC] Zone Alarm Lars Duesing (Jun 05)
- RE: [OFFTOPIC] Zone Alarm Cedric Blancher (Jun 05)
- Re[2]: [OFFTOPIC] Zone Alarm Frank J. Hoffmann (Jun 05)
- Re: Re[2]: [OFFTOPIC] Zone Alarm lee . x . james (Jun 05)
- RE: [OFFTOPIC] Zone Alarm JT (Jun 04)
- Re: [OFFTOPIC] Zone Alarm Shawn McMahon (Jun 05)
- Re: [OFFTOPIC] Zone Alarm Valdis . Kletnieks (Jun 05)
- Re: [OFFTOPIC] Zone Alarm Valdis . Kletnieks (Jun 05)
- RE: [OFFTOPIC] Zone Alarm eddie (Jun 05)