nanog mailing list archives
Re: Fwd: Dan Kaminsky
From: Paul Vixie <vixie () isc org>
Date: Mon, 03 Aug 2009 15:30:34 +0000
William Allen Simpson <william.allen.simpson () gmail com> writes:
Are we paying enough attention to securing our systems?
almost certainly not. skimming RFC 2196 again just now i find three things. 1. it's out of date and needs a refresh -- yo barb! 2. i'm not doing about half of what it recommends 3. my users complain bitterly about the other half in terms of cost:benefit, it's more and more the case that outsourcing looks cheaper than doing the job correctly in-house. not because outsourcing *is* more secure but because it gives the user somebody to sue rather than fire, where a lawsuit could recover some losses and firing someone usually won't. digital security is getting a lot of investor attention right now. i wonder if this will ever consolidate or if pandora's box is just broken for all time. -- Paul Vixie KI6YSY
Current thread:
- Re: DNS hardening, was Re: Dan Kaminsky, (continued)
- Re: DNS hardening, was Re: Dan Kaminsky Christopher Morrow (Aug 06)
- Re: DNS hardening, was Re: Dan Kaminsky Paul Vixie (Aug 06)
- Re: DNS hardening, was Re: Dan Kaminsky Ross Vandegrift (Aug 06)
- Re: DNS hardening, was Re: Dan Kaminsky Christopher Morrow (Aug 06)
- Re: DNS hardening, was Re: Dan Kaminsky Steven M. Bellovin (Aug 07)
- Re: DNS hardening, was Re: Dan Kaminsky Douglas Otis (Aug 10)
- Re: DNS hardening, was Re: Dan Kaminsky Florian Weimer (Aug 06)
- A DNSSEC irony Edward Lewis (Aug 06)
- Re: DNS hardening, was Re: Dan Kaminsky Florian Weimer (Aug 06)
- Re: DNS hardening, was Re: Dan Kaminsky Florian Weimer (Aug 06)
- Re: Fwd: Dan Kaminsky Dave Israel (Aug 03)
- Re: Dan Kaminsky Jorge Amodio (Aug 05)