At 08:07 PM 7/20/03 -0500, Schmehl, Paul L wrote:
But don't waste a lot of time doing it. They only follow up when actual
injury has been sustained (financial or otherwise.)
True. But they do use the information for statistical and pattern
development purposes.
m5x
_
> -Original Message-
> From: madsaxon [mailto:[EMAIL PROTECTED]
> Sent: Sunday, July 20, 2003 3:27 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [Full-Disclosure] Microsoft wins Homeland
> Security Bid ( Reuters)
>
> That's because the Secret Service, not
At 01:22 AM 7/20/03 -0600, you wrote:
consider that the last time i reported a "nigerian" scam on the fbi tip
site i got a nice bulk email, claiming not to be "automatic" (just a
stock form letter, not much difference) advising me that i didn't need to
let them know about such things.
That's be
n O'Neill died in a stairwell of the world
trade center on 9/11, shortly after starting work there....
> From: "morning_wood" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Subject: Re: [Full-Disclosure] Microsoft wins Homeland Security Bid ( Reuters)
> Da
> NSA already did their own open source distro
> http://www.nsa.gov/selinux/
Not true. SELinux is a prototype implementation of a security concept. It
very much is _not_ a distro. (which is its greatest strength - SELinux
packages are available for Debian, Suse, Redhat and Gentoo)
Plus, while I'
how can Microsofts Windows OS even be considered for Homeland Security...
http://timesofindia.indiatimes.com/cms.dll/html/uncomp/articleshow?msid=79912
morning_wood
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure
On July 16, 2003 at 18:00, Blue Boar wrote:
>
> I'd rather my government hire the IT personnel themselves and do their own
> distro, with the help of the smart guys from
> the NSA, etc... for security standards.
NSA already did their own open source distro http://www.nsa.gov/selinux/
There is no
On July 16, 2003 at 13:19, Brad Bemis wrote:
>
> Agreed! Customer demand is the only way that we as a community can
> influence the evolution of inherent security controls, whether the target
> of discussion is Microsoft or any other product vendor.
>
Switching vendors is a great way to influence
On Wed, 2003-07-16 at 17:31, northern snowfall wrote:
> Even if you mod out an OS like Linux, you are still stuck with
> the inability of support at a large scale, since other groups will
> stray from supporting your distro as its codebase isn't as well
> known and may be more advanced/abstract.
>
I'd rather my government hire the IT personnel themselves and do their
own distro, with the help of the smart
guys from the NSA, etc... for security standards.
Yeh, that's not a bad wish, I must admit. The major stumbling block
is when you've got an OS that few people understand. With a large
yossarian wrote:
The point I am missing here - we might not like M$ to have won, but who else
could? It is a government, so think big companies. Would you rather it was
Symantec or IBM? Or think about the big systems integrators EDS and CSC
style would that be much better? Smaller players like Ver
The point I am missing here - we might not like M$ to have won, but who else
could? It is a government, so think big companies. Would you rather it was
Symantec or IBM? Or think about the big systems integrators EDS and CSC
style would that be much better? Smaller players like Veridian or
Secure
l Message -
From: "Jason Coombs" <[EMAIL PROTECTED]>
To: "Brad Bemis" <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Wednesday, July 16, 2003 9:55 PM
Subject: RE: [Full-Disclosure] Microsoft wins Homeland Security Bid (
Reuters)
> Aloha, Brad.
>
> Ni
[SNIP]
>
> I am by no means arguing that Microsoft systems are secure, but I would
> like to point out that Windows 2000 and XP offer a myriad of security
> enhancements that, given a COMPETENT installation by a KNOWLEDGEABLE system
> administrator following DOCUMENTED practices for devic
The CALEA device is based on Solaris, not Windows.
I never said it had anything to do with Windows. The
comparison was a parallel in understanding vulnerabilities
in digital medium.
Don
http://www.7f.no-ip.com/~north_
___
Full-Disclosure - We believe
> Hopefully, they wont learn the hard way like the
> FBI did (to a lesser extent) with CALEA.
The CALEA device is based on Solaris, not Windows.
The FBI's Carnivore (a.k.a. DCS1000) is based on Windows.
http://www.epic.org/privacy/carnivore/
___
Full-D
/1854215
Danny
-Original Message-
From: northern snowfall [mailto:[EMAIL PROTECTED]
Sent: Wednesday, July 16, 2003 3:50 PM
To: Brad Bemis
Cc: [EMAIL PROTECTED]
Subject: Re: [Full-Disclosure] Microsoft wins Homeland Security Bid (
Reuters)
>
>
>You are absolutely right! I will
nt: Wednesday, July 16, 2003 6:22 AM
To: [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] Microsoft wins Homeland Security Bid (
Reuters)
I find it interesting that so many negative comments have been made about
this.
...
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> No. Customer demand should play the *least* part in security
> evolution. The *main* thing that security analysts and security
> developers should focus on are the capabilities of the
> opposition, whomever they may be. Your foe is not your
I have no interest in the OS religion argument, but your analogy spawned
a great curiosity. How do you propose that this ex-convict "prove that
he understands." if you don't give a gun?
Long term participation in our concept of a what we deem "society "
and an adherence to what does not negat
> -Original Message-
> From: northern snowfall [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, July 16, 2003 2:29 PM
> To: Brad Bemis
> Cc: [EMAIL PROTECTED]
> Subject: Re: [Full-Disclosure] Microsoft wins Homeland
> Security Bid ( Reuters)
>
> The thought proce
I am not arguing with you. I am just stating a point of fact. An
unfortunate fact, but a fact nonetheless.
If you admit that it is unfortunate, you admit that something must change.
Don't accept problems. Solve them. Otherwise, you are the problem, too.
It is not the thinking that is
dangerou
> -Original Message-
> From: northern snowfall [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, July 16, 2003 12:29 PM
> To: Brad Bemis
> Cc: [EMAIL PROTECTED]
> Subject: Re: [Full-Disclosure] Microsoft wins Homeland Security Bid (
> Reuters)
>
>
> >
> >
&
You are absolutely right! I will not argue this point at all. The only
thing I will say is that product security is based on a process of
evolution. My statement was intended to indicate that it is customer
demand that drives the speed of that evolution.
No. Customer demand should play the
I would hope and think that this would give Microsoft
more incentive to make their products more secure from
the begging. I see this as possibly being a benefit to all of
us (hopefully).
Agreed! Customer demand is the only way that we as a community can
influence the evolution of inherent s
MAIL PROTECTED]
Sent: Wednesday, July 16, 2003 11:54 AM
To: Brad Bemis; [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] Microsoft wins Homeland Security Bid (
Reuters)
Brad,
Good point's.
My two cents, I would hope and think that this would give Microsoft more
incentive to make their prod
On Wed, 16 Jul 2003 09:21:52 PDT, Brad Bemis <[EMAIL PROTECTED]> said:
> My point is that security is a process, not a product. Microsoft is going
> to work very hard with the DHS to provide a secure baseline that takes into
> account the sensitivity of information associated with the defense of
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> If they got stuff from two independent vendors, that would
> at least give you a snowball's chance of half your systems
> surviving any given attack.
> And if there's *any* agency in the federal government that needs to be
> bulletproof, DHS is i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> I would hope and think that this would give Microsoft
> more incentive to make their products more secure from
> the begging. I see this as possibly being a benefit to all of
> us (hopefully).
Agreed! Customer demand is the only way that we as
Throwing off the biases against Microsoft for past code-based
transgressions and the historical promulgation of insecure software, it is
not like Microsoft hasn't made a significant effort to revamp the security
of its more modern systems. While they still have a long way to go over
the next 5 t
ailto:[EMAIL PROTECTED]
Sent: Wednesday, July 16, 2003 10:22 AM
To: [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] Microsoft wins Homeland Security Bid (
Reuters)
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-discl
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I find it interesting that so many negative comments have been made about
this.
Throwing off the biases against Microsoft for past code-based
transgressions and the historical promulgation of insecure software, it is
not like Microsoft hasn't made a
: [Full-Disclosure] Microsoft wins Homeland
>Security Bid (Reuters)
>
>
>Alright... good to know part of the nations security rests on the back
>of a bunch of windows boxen! At least they went with Dell... I am sure
>their new security policy will help some when the first worm
Alright... good to know part of the nations security rests on the back
of a bunch of windows boxen! At least they went with Dell... I am sure
their new security policy will help some when the first worm hits their
office. *frown*
-KF
northern snowfall wrote:
http://www.reuters.com/newsArticle.
http://www.reuters.com/newsArticle.jhtml?type=technologyNews&storyID=3095377
Don
http://www.7f.no-ip.com/~north_
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
35 matches
Mail list logo