Re: Border Security System Left Open

[Valdis.Kletnieks () vt edu]

On Fri, 14 Apr 2006 13:32:41 +1200, Nick FitzGerald said:
> Fergie wrote:
>
> > A computer failure that hobbled border-screening systems at airports
> > across the country last August occurred after Homeland Security officials
> > deliberately held back a security patch that would have protected the
> > sensitive computers from a virus then sweeping the internet, according to
> > documents obtained by Wired News.
>
> One has to question whether the folk running these systems even have 
> the _minimal_ competence for doing their job.

No need to question - we already know the answer to this.  They don't.

You *do* realize that DHS got a whole whopping 'F' grade on the latest GAO
computer security scorecard, didn't you?

> Why are "sensitive" systems such as these on networks where they _can_ 
> be exposed to network-spreading malware or [D]DoS attacks?

Because the people at DHS are too busy playing 'Security Theatre' and defending
against 'movie plot' threats to actually secure anything.

You can hardly blame them, though.  Really good security is nearly invisible,
and John Q. Public will mistake it for not doing anything.  Doing idiotic things
that piss John Q. off in the name of security makes John Q. think that Something
Is Being Done.

Attachment: _bin
Description:

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.