Christian Wettergren <cwe @
it .
kth .
se> writes:
> | Find somebody who has no firewall and essentially no packet filtering
> | and has run a publicly visible site for some years, but has had no
> | serious intrusions.
> |
> | A challenge? Yes. To allow little or no outside access and maintain
> | security is quite easy -- it takes not much expertise. To achieve the
> | same result with no real barrier between the world and you except the
> | inherent security of your internal machines and network -- that takes a
> | real expert to achieve.
>
> But that really easy! I would say most sites would not detect an intrusion
> unless the intruder wants that to happen. So it would actually be the default
> case.
Lets find a "really" good intruder. This is a guy who broke into all those
sites who believe they never had a break in. I belive if you have wrappers,
packetfilters, and all the other funny stuff installed, you will get alerts.
B U T you only get alerts from those stupid intruders that make any mistakes
and hit any traps. I think it's a little bit like robbing through a mine-field.
Or compare it with speeding. Police make statistics about different crimes.
But do you appear in this statistic if you don't get caught?
BTW I belive also my firewall is set up that intruders have really no
chance. (because I never saw one onto my firewall.)
If I will catch one some day I know, it was not secure.
(Joke, joke, joke)
have fun ...
Peter Bruderer
======================================================================
Peter Bruderer | E-Mail: brudy @
ch .
ibm .
com | voice: +41 +1 436 63 40
IBM Switzerland | OV/VM: PBRU at CHVM1 | fax : +41 +1 436 85 25
Hohlstrasse 560 | |
CH-8048 Zurich | |
======================================================================
Follow-Ups:
References:
|
|
