Firewalls: The role of CERT

Firewalls
(October 1993)

Indexed By Thread: [Previous] [Next]

Subject:	The role of CERT
From:	padwa @ husc . harvard . edu
Date:	Mon, 25 Oct 93 16:49:40 -0400
To:	firewalls @ greatcircle . com

	I think people are forgetting some of the concerns that CERT
works under.  Were I in their shoes, I would be pretty scared of
announcing to the world "Hey everyone, you can break into any Sun by
doing XXX".  What happens when the ABC corporation (after getting
trashed by someone who read said message) is looking for someone to
sue??  I'd hate to be counsel for CERT in that situation.  And what
about all of the sites who's admins aren't on top of security issues??

	My personal opinion is that CERT does a fine job.....at what
it does.  Recent discussions here indicate a popular desire for
"more".  I agree with this, but feel we should be careful about
bashing CERT for failing to exceed its (extremely limiting) charter.

Danny Padwa
padwa @
 husc .
 harvard .
 edu
The above opinions are not necessarily those of any of my employers,
past or present.

Indexed By Date	Previous:	CERT and information From: morgan @ engr . uky . edu (Wes Morgan)
Indexed By Date	Next:	Re: In-Security mailing lists? From: djc @ unx . sas . com
Indexed By Thread	Previous:	Re: CERT and information From: long-morrow @ CS . YALE . EDU (H Morrow Long)
Indexed By Thread	Next:	more CERT paranoia From: pmetzger @ lehman . com (Perry E. Metzger)