Firewall Wizards mailing list archives
RE: Denial of service
From: Jim Wamsley 303-673-8163 <wamsljr () coltano stortek com>
Date: Tue, 25 Aug 1998 09:51:36 -0600 (MDT)
While everyone is concerned about the external clown who is trying to stop us from doing business, let's not forget about the internal side of the security game. Take a little time to look around at your network and you will find plenty of examples of Denial of Service from your own customers. And I am not talking about the engineers who are challenging the marketing guys to Doom or NetTrek every day at lunch. I am tallking about the applications developers who roll out a centralized application with the client side being interactive across the WAN, without any thought of all the major downloads going across the same link. Or the two guys that found this really neat backup package somewhere on the Internet, and decide they are going to back up each other's stuff, all gazillion gig worth daily and they are on opposite sides of the backbone. Or the obnoxious sys admin who decides to back up the Internet servers at noon, and for some reason doesn't know about incremental backups. (Why would anyone bother backing up a news server anyway.) Or the guy who just learned to write scripts in TCL and writes one to go after the same web page on the same server, every 5 seconds. For 12 hours, and let's not forget the guys in Corporate Education with their network, with its textbook design that some how, no matter what you do to keep it firewalled, always seems to get on the backbone. Compared to these guys, the external guys are easy. We know what their goals are. The internal guys are just stupid and harder to catch, let alone 'convict'. ______________________________________________________________ [ Jim Wamsley, Network Engineering ] [ StorageTek 2270 S. 88th St, M.S. 4380, Louisville, CO 80028 ] [ Audible: (303) 673-8163 Logical jim_wamsley () stortek com ] [ Beware of Strong Drink! ] [ It may cause you to shoot at tax collectors. ] [ And Miss!! ] [ Lazarus Long ] [______________________________________________________________]
Current thread:
- Re: Denial of service, (continued)
- Re: Denial of service ICMan (Aug 19)
- Re: Denial of service Ted Doty (Aug 23)
- Re: Denial of service Pawel Maciejewski (Aug 19)
- Re: Denial of service Gigi Sullivan (Aug 19)
- Re: Denial of service Bennett Todd (Aug 19)
- Re: Denial of service HASSAN . KARIM (Aug 19)
- Re: Denial of service Frank de Jong (Aug 19)
- Re: Denial of service Logic Man (Aug 19)
- RE: Denial of service Randy Samos (Aug 23)
- RE: Denial of service Biggerstaff, Craig T (Aug 24)
- RE: Denial of service Jim Wamsley 303-673-8163 (Aug 25)