funsec mailing list archives

Re: truth is for Admins

From: "Les Bell" <lesbell () lesbell com au>
Date: Tue, 27 Oct 2009 00:17:18 +1100


Rich Kulawiec <rsk () gsp org> wrote:

And this in turn is why any security strategy that depends on user
education/cooperation has already failed.  Completely.  It's prudent
to presume that one's users are at best utterly incompetent, at worst
actively malicious, and design accordingly.
<<

In which case we're stuck between a rock and a hard place, because security
strategies that depend upon building a fool-proof system aren't looking too
flash, either.

Best,

--- Les Bell
[http://www.lesbell.com.au]
Tel: +61 2 9451 1144


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Re: truth is for Admins, (continued)
- Re: truth is for Admins Valdis . Kletnieks (Oct 25)
  - Message not available
    - Re: truth is for Admins Valdis . Kletnieks (Oct 25)
    - Re: truth is for Admins John Bambenek (Oct 25)
  - Re: truth is for Admins RandallM (Oct 25)
    - Re: truth is for Admins Valdis . Kletnieks (Oct 25)
- Re: truth is for Admins Les Bell (Oct 25)
  - Re: truth is for Admins Rich Kulawiec (Oct 26)
    - Re: truth is for Admins chris (Oct 26)
    - Re: truth is for Admins Nick FitzGerald (Oct 26)
    - Re: truth is for Admins chris (Oct 26)
- Re: truth is for Admins Les Bell (Oct 26)