I think this issue sound be discussed with your client, not on a firewalls
group. Client confidentiality is one of those things that make or a break
a security specialist.
merlin
Cerberus Security Integrators Inc.
merlin @
darkcore .
com
http://www.darkcore.com/~merlin/index.html
On Thu, 19 Feb 1998, Greg Collins wrote:
> All,
>
> We recently completed an audit for a financial institution. After we turned
> in our report we received word that the V.P. who commissioned the audit
> would like us to "tone down" the report. He apparently thinks that the audit
> was too harsh. I obviously have an opinion on this, but I would like to hear
> your thoughts on the subject.
> BTW, we found some very serious problems. Such as a UNIX machine accessible
> from the Internet...NO FIREWALL or anything to stop an intrusion. Yes, it
> was running a version of sendmail with known problems!
>
> Thanks
> Greg Collins
> Data Quest Information Systems
> gcollins @
dqisystems .
com
> "I have but one thing which cannot be taken from me, and that is my
> integrity. It I must give up of my own will."
>
>
References:
|
|
