Forwarded from: "Thomas (Yahoo!)" <thomasroygarnerat_private> One thing that makes me wonder, in the first paragraph, mentions "...companies are not implementing security measures already available..." I could be reading into this article but, one a security patch comes out for our latest/great MS Network, we cannot simply just "apply the patch". Even though, our security personnel scream bloody hell to do so, you simply can't. We learned that lesson years ago, applying a patch, only to have another patch come out shortly, thereafter, to correct an error in the previous patch. We have to test the patch, ensure that it passes accreditation, ensure that if this patch is applied, all computers on the network can run and not "crash" or some other unforeseen problem. I do understand the need for other physical preventive devices; however, not everyone is running Windows NT or Windows 2K, I have three/four Windows 95 machines running happily w/ outdated software, Lord knows what a patch for the Network could do to my lonely Win 95 machine! :( Thomas Roy Garner SETIPRIME ( http://www.setiprime.com ) -----Original Message----- From: owner-isnat_private [mailto:owner-isnat_private]On Behalf Of InfoSec News Sent: Wednesday, January 09, 2002 4:01 AM To: isnat_private Subject: [ISN] U.S. Cyber Security Weakening http://www.wired.com/news/infostructure/0,1377,49570,00.html Reuters 11:15 a.m. Jan. 8, 2002 PST U.S. computer systems are increasingly vulnerable to cyber attacks, partly because companies are not implementing security measures already available, according to a new report released Tuesday. "From an operational standpoint, cyber security today is far worse that what known best practices can provide," said the Computer Science and Telecommunications Board, part of the National Research Council. [...] - ISN is currently hosted by Attrition.org To unsubscribe email majordomoat_private with 'unsubscribe isn' in the BODY of the mail.
This archive was generated by hypermail 2b30 : Fri Jan 11 2002 - 16:57:59 PST