At 08:00 AM 6/30/97 +0000, you wrote:
>Date: Sun, 29 Jun 1997 14:28:21 -0500
>From: Vin McLellan <vin @
>Subject: Re: Spooky Tremors in InfoSec (was, TIS funding)
> This whole thread works off the absurd premise that the network
>security is like strong crypto -- and that the _only_ way into a "protected
>network perimeter" is through some maliciously-installed backdoor in a
> In the real world, that's simply not true -- as the active
>participants of this List damn well know better than most!
I'm not as worried about through-the-looking-glass type rumours about back
doors installed for Israeli intelligence, as I am about 300 desktop modems,
root passwords with three characters, explaining why SMB ports are a
security problem when exposed in the Inet, etc.
Frankly, it annoys me to no end to have to wade through unsubstantiated
rumours, regardless of the originators intent (be it good or bad). If its
not backed up by demonstratable fact, then it is simply spam ala "good
times" virus material. If I don't see any facts, then I have to assume the
rumour is really just a targeted attack on a product/company. In an age
where Wallstreet weenies are basically buying/selling technology stocks via
Santaria ritual, unsubstantiated rumour could seriously impede a company
in a market such as firewalls, which now has a lot of competitors with
products on relatively level playing ground, I would expect the starting of
rumour wildfires to be a potent potential weapon.
Say this developed into a rant didn't it?