Firewalls: Re: Firewalls-Digest V5 #250

Firewalls
(April 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Firewalls-Digest V5 #250
From:	Garth Kidd <garth @ dogbert . systems . sa . gov . au>
Date:	Mon, 22 Apr 1996 15:08:50 +0930
To:	Firewalls @ GreatCircle . COM
In-reply-to:	firewalls-digest-owner @ GreatCircle . COM "Firewalls-Digest V5 #250" (Apr 21, 1:00)
References:	<199604210800 . BAA19892 @ miles . greatcircle . com>

On Apr 21,  1:00, firewalls-digest-owner @
 GreatCircle .
 COM wrote:

>     As I too have seen, this does normally tend to be the case.  Or a 
> comparable situation would be that we eventually do learn a good deal 
> about a hole, but months after the 'black hat' people do.  This is due to 
> the perceived damage control that these organizations and individuals 
> believe they are doing by preventing the further spreading of info about 
> the hole.  

There's also the matter of liability -- nobody wants to be sued for 
revealing to the intruder community a security hole later exploited to 
<insert something nasty here>.  

-- 
garth @
 dogbert .
 systems .
 sa .
 gov .
 au    | Garth Kidd
 +61-8-207-7740 (voice)            | Network Services Branch
 +61-8-207-7860 (fax)              | Southern Systems
                                   | Adelaide, AUSTRALIA

Follow-Ups:

Re: Firewalls-Digest V5 #250
From: Bruce Marshall <brucem @ wichita . fn . net>

Indexed By Date	Previous:	Re: Remote dynamic rules updating From: sameer @ wiproge . med . ge . com
Indexed By Date	Next:	VNPs and things -- From: "Marcus J. Ranum" <mjr @ clark . net>
Indexed By Thread	Previous:	TIS Gauntlet 3.1 Log Enhancements From: Colin Spence <Colin_Spence @ ferntree . com . au>
Indexed By Thread	Next:	Re: Firewalls-Digest V5 #250 From: Bruce Marshall <brucem @ wichita . fn . net>