Lyrics & Knowledge Personal Pages Record Shop Auction Links Radio & Media Kids Membership Help
The Mudcat Cafesj



User Name Thread Name Subject Posted
MaJoC the Filk BS: Global Hack alert (9) RE: BS: Global Hack alert 20 Jun 23

> Some of that is scaremongering

Some alleged systems administrators *need* scaring. In system security, paranoia really is your only friend.

> the enthusiastic child would have to gain phy[s]ical or remote access
> though firewalls

Put not your trust in firewalls, nor in any locks and keys. Relying solely, or even majorly, on having put a firewall around all of one's vulnerable systems is what I call the Eggshell Security Model: once someone's got through the hardened periphery, everything goes runny. (And these days the site periphery, for many good business reasons, is more a line in the sand than a stockade fence.) Defence in depth is the name of the game here, including hardening the user-level systems, and keeping them fully patched.

.... Sorry about that. After a quarter of a century of being an admin with a systems-security fetish, and having had to clear up after multiple successful script-kiddie attacks, the stain goes deep.

Post to this Thread -

Back to the Main Forum Page

By clicking on the User Name, you will requery the forum for that user. You will see everything that he or she has posted with that Mudcat name.

By clicking on the Thread Name, you will be sent to the Forum on that thread as if you selected it from the main Mudcat Forum page.

By clicking on the Subject, you will also go to the thread as if you selected it from the original Forum page, but also go directly to that particular message.

By clicking on the Date (Posted), you will dig out every message posted that day.

Try it all, you will see.