Firewalls: Re: system() -> Mosaic

Firewalls
(April 1994)

Indexed By Thread: [Previous] [Next]

Subject:	Re: system() -> Mosaic
From:	dotytr @ nscultrix2 . network . com (Ted Doty)
Date:	Fri, 8 Apr 94 14:28:35 CDT
To:	firewalls @ greatcircle . com, johns @ oxygen . house . gov

From: johns @
 oxygen .
 house .
 gov (John Schnizlein)

> The goal of firewallers is to enable the most widespread access for the
> emerging technology enabled mostly by the Internet.
> Mosaic is one client of the Internet development of the World Wide Web (WWW)
> of information that epitomizes the future of the Internet (and NII).
> The ONLY solution is to work with the people who are developing these GREAT
> applications to help them avoid security problems.
> Resisting technological (and maybe even social) advances has been the biggest
> mistake people really interested in network security have made.
> Remember that security is the last bastion for reactionary managers trying
> to maintain the status quo.

I remember Dave Clark at Interop 90 pounding the podium and doing his
very best Kruschev impersonation, saying that the 1990s was going to be
the "decade of the great unplugging" because of highly publicised
security breaches.  I can't think of anyone who would accuse him of
being reactionary and trying to maintain the status quo.

We ALL want to "enable the most widespread access" for people in our
organizations (no, I am neither a manager nor a reactionary).  The fact
of the matter is that some people are PAID to ensure (try to ensure?)
that the crown jewels aren't stolen.

One thing I have found particularly humerous is that the two biggest
threads on this list lately have been "Software is grotesquely buggy and
the damn vendors better do something about it" and "What's the cheapest
screaning router around?".  Vendors aren't able to do anything if people
aren't willing to pay for product.  This, unfortunately, is a classic
security related problem (hey, anybody ever made any money off a
NSCS-certified operating system?).

- Ted

--------------------------------------------------------------------------
Ted Doty, Network Systems Corporation | phone:      +1 301 596-2270
8965 Guilford Road, Suite 250         | fax:        +1 410 381-3320
Columbia, MD, 21046 USA               | voice mail: (800) 233-1485
--------------------------------------------------------------------------
if (setsockopt(sockfd, SOL_SOCKET, STD_DISCLAIMER, (char *), &sendbuff,
    &optlen) < 0)
printf ("Standard Disclaimers Apply ...\n");

Follow-Ups:

Re: system() -> Mosaic
From: Steve Simmons <scs @ lokkur . dexter . mi . us>

Indexed By Date	Previous:	Minimalist 'telnet' wanted (was: Mixing Authentification Strategies) From: plarkin @ iphase . com (Patrick Larkin Jr)
Indexed By Date	Next:	unplugging... From: hobbit @ ftp . com (Hobbit)
Indexed By Thread	Previous:	Re: system() -> Mosaic From: johns @ oxygen . house . gov (John Schnizlein)
Indexed By Thread	Next:	Re: system() -> Mosaic From: Steve Simmons <scs @ lokkur . dexter . mi . us>