Great Circle Associates Firewalls
(June 1996)

Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]

Subject: -No Subject-
From: Warren Moore <warren . moore @ cbis . com>
Date: 24 Jun 96 7:17:01
To: firewalls-digest <firewalls-digest @ GreatCircle . COM>

On Thu, 20 Jun 1996 my mailer thinks Bill Stout said:

>At 05:15 PM 6/20/96 -0400, Frank Willoughby wrote:
>>Actually, this is no longer the case.  According to the 1996 CSI/FBI
>>survey, most of the security incidents are commited by external entities,
>>not internal ones.  If memory serves, it used to be @80% of the incidents
>>were internal.  Now @60% are external.  
>Do you have corroborating links on this?

Try for the study...keep in mind that it was *not* 
administered under controlled conditions, and may be statistically invalid.

Also, on 6/20, Brad Walker may have written:

>> From frankw @
 in .
 net Thu Jun 20 15:36:24 1996
>> Date: Thu, 20 Jun 96 17:05:31 -0400
>> To: firewalls @
 GreatCircle .
>> From: Frank Willoughby <frankw @
 in .
>> Subject: Re: Pilot Network Services
>> Those in sensitive gov't agencies generally won't be fooled so easily.
>This is completely wrong. I have a close personal friend who works
>for the CIA and she lied on her polygraph. The tester accepted
>her answer as factual. The polygraph is a poor test of a person's
>truthfulness and honesty. Hence the reason it's inadmissible as
>evidence in a court of law.
>-brad w.

Leaving aside the implied question of ethics in Brad's example, there are many 
who can "beat" a polygraph, particularly those with certain psychological 
disorders; such as pathological liars.  However, the results of a polygraph 
test *are* admissable in court in most U.S. venues, but only with the agreement 
of both the prosecution and defense.
Warren S. Moore, CISSP
<warren .
 moore @
 cbis .
Information Security Specialist
Cincinnati Bell Information Systems Inc.

Indexed By Date Previous: Re: cisco access list quest -- IP options and tiny frags
From: Michel Lavondes <lavondes @ tidtest . total . fr>
Next: Re: CIFS - To Firewall or not to Firewall ?
From: John Betts <johnb @ aztec . co . za>
Indexed By Thread Previous: Re[2]: CIFS - To Firewall or not to Firewall ?
From: "Jim Meritt" <jmeritt @ smtpinet . aspensys . com>
Next: Re: -No Subject-
From: Ryan.Russell/SYBASE

Search Internet Search