I think you have confirmed a problem we already knew existed; the
application is really indifferent:
A. Using yesterday's programs on today's network. Telent, anything
that starts with r, etc. These were
used in the internet's infancy.
B. Anything web enabled has something that can be exploited.
C. Everything else falls under people enduser, administrator,
and/or developer
1. Misconfigured or poorly configured apps,services, etc.
2. Poorly written apps
a. Apps that have tried to become things they really were
not meant to be.
b. Apps that morph because some new protocol support or hot
new feature was being demanded by the
market or the thinktank said this is what people would
want. "This what is going to be needed,
the killer function, etc."
3. Time - we just don't have enough of it to do all the
required research and testing very well. Not
just good or well but, very well.
Finally, the biggest obstacle to security is thinking. We do not all
think alike.
If you can't go through, go around, go under, go over, head off at the
pass, or retreat and regroup for later planning. The military does it
all the time.
-----Original Message-----
From: Chris Berry [mailto:[EMAIL PROTECTED]
Sent: Monday, June 30, 2003 7:01 PM
To: [EMAIL PROTECTED]
Subject: Re: Ten least secure programs
>From: Patrick Boucher <[EMAIL PROTECTED]>
>Greetings,
>
>The first one i would use would be "Internet Explorer" There are so
>many
>bugs and work around holes.. I think it is worst then Outlook, Or
Outlook
>express.
>
>That's my No. 1.
Well, I wasn't concerned with feature or useability bugs, only security
ones, so I don't agree. If your IE is fully patched and configured it's
not
that bad. (though I personally use Mozilla instead because of the nice
features).
Chris Berry
[EMAIL PROTECTED]
Systems Administrator
JM Associates
"Encrypt everything, and ask questions later."
_________________________________________________________________
Add photos to your messages with MSN 8. Get 2 months FREE*.
http://join.msn.com/?page=features/featuredemail
------------------------------------------------------------------------
---
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top
analysts! The Gartner Group just put Neoteris in the top of its Magic
Quadrant, while InStat has confirmed Neoteris as the leader in
marketshare.
Find out why, and see how you can get plug-n-play secure remote access
in about an hour, with no client, server changes, or ongoing
maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
------------------------------------------------------------------------
----
---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------
