Re: Scaled Back Cybersecuruty

2003-01-14 Thread Kelly J. Cooper
third party. And that takes money.) > to that end :-), something is happening with a DNS ISAC. (more later.) Good idea. Good luck. Kelly J. -- Kelly J. Cooper- Security Engineer, CISSP GENUITY- Main # - 800-632-7638 Woburn, MA 01801 - http://www.genuity.net

Re: DNS issues various

2002-10-24 Thread Kelly J. Cooper
ven years of hardening hosts against SYN attacks. Five years of trying to get people to turn off the forwarding of broadcast packets. Three years of botnets generating meg upon meg of crap-bandwidth. Where are the super-geniuses? Kelly J. -- Kelly J. Cooper- Security Engineer, CISSP

Re: DNS issues various

2002-10-24 Thread Kelly J. Cooper
On Thu, 24 Oct 2002 [EMAIL PROTECTED] wrote: > On Thu, 24 Oct 2002 18:01:44 -, "Kelly J. Cooper" <[EMAIL PROTECTED]> said: > > > So, seven years of hardening hosts against SYN attacks. Five years of > > trying to get people to turn off the forwarding of

Re: what's that smell?

2002-10-08 Thread Kelly J. Cooper
Nope. As previously established, there are ISPs out there using RFC1918 networks in their infrastructure. Also, egress filtering is NOT easy, so even those ISPs doing it may not be able to do it universally. Plus, lots of attacks these days are mixing spoofed and legit traffic, or doing limit

Re: UUNET instability?

2002-04-25 Thread Kelly J. Cooper
t;before long... *> > > *> > >telnet bofh.engr.wisc.edu 666 * *The Archive of BOFH is here: * *http://bofh.ntk.net/Bastard.html Or you can buy the books: http://www.plan9.org Kelly J. (not affiliated, just a fan) -- Kelly J. Cooper- Security Engineer, CISSP GENUI

Re: How to get better security people

2002-03-29 Thread Kelly J. Cooper
On Mar 29, 2:22pm, Sean Donelan wrote: > Subject: Re: How to get better security people * *On Tue, 26 Mar 2002, Kelly J. Cooper wrote: *> I also had a short list of other questions that I used to try and get *> a feel for the person's "security minded-ness" (my term,

Re: How to get better security people

2002-03-26 Thread Kelly J. Cooper
t so candidates are unlikely to come in with the right skillset native. But if the person comes in and s/he is someone who thinks about scenarios and contingency plans and has a working knowledge of networking/computing, then I can teach him/her everything else. Kelly J. -- Kelly J. Cooper

Re: Telco's write best practices for packet switching networks

2002-03-06 Thread Kelly J. Cooper
ection, i.e. stop managing it in-band where all the kiddies and the terrorists can get at it and start managing it OOB. Hide it, shut it away, don't route it, etc. nevermind what a pain it is to manage TWO networks... nevermind how much flexibility you lose. (Sorry, my bias is