Firewall Wizards mailing list archives
Re: Altavista v TIS toolkit on Linux, which is better?
From: Ted Doty <ted () iss net>
Date: Fri, 14 Nov 1997 08:52:40 -0500
At 12:24 PM 11/12/97 +0000, Chris Booth wrote: [details on configuration deleted]
We don't have much money so I use as much freeware as possible, and I don't have *any* time.
At the recent cyber crime conference in Washington DC, Jim Settle (former head of the FBI computer crime squad) made the following recommendations to on how to move from a 20% security level to 80%. These include: Move to one-time passwords (e.g. s/key) Implement password management schemes (e.g. passwd+) Encrypt sensitive/proprietary information (e.g. PGP) Implement network monitoring tools Use vulnerability tools regularly against your own network (e.g. COPS, SATAN II) Run war dialers at least every 6 months Hot test disaster recovery plans Perform regular penetration testing, and use outside consultants to verify results Establish an Incident Response procedure Establish an Incident Response Team Secure network elements owned by 3rd parties (such as ISP supplied routers) Note that almost all of these can be had for free, less the time needed to set them up. The key quote for your situation: Most networks can move from the 20% level of protection to the 80-90% level by allocating $50,000 a year for 3-5 years. Relating this back to your original point, namely a lack of money combined with a lack of time, your best bet likely is to get another administrator to help out. - Ted -------------------------------------------------------------- Ted Doty, Internet Security Systems | Phone: +1 770 395 0150 41 Perimeter Center East | Fax: +1 770 395 1972 Atlanta, GA 30346 USA | Web: http://www.iss.net -------------------------------------------------------------- PGP key fingerprint: 362A EAC7 9E08 1689 FD0F E625 D525 E1BE
Current thread:
- Altavista v TIS toolkit on Linux, which is better? Chris Booth (Nov 13)
- Re: Altavista v TIS toolkit on Linux, which is better? Ted Doty (Nov 14)
- Re: Altavista v TIS toolkit on Linux, which is better? Paul D. Robertson (Nov 14)
- Re: Altavista v TIS toolkit on Linux, which is better? Ted Doty (Nov 20)
- Re: Altavista v TIS toolkit on Linux, which is better? -= ArkanoiD =- (Nov 15)
- Re: Altavista v TIS toolkit on Linux, which is better? Ted Doty (Nov 20)
- Re: Altavista v TIS toolkit on Linux, which is better? Paul D. Robertson (Nov 14)
- Re: Altavista v TIS toolkit on Linux, which is better? Jeff Needle (Nov 14)
- Re: Altavista v TIS toolkit on Linux, which is better? chuck yerkes (Nov 14)
- <Possible follow-ups>
- RE: Altavista v TIS toolkit on Linux, which is better? Peter Mayne (Nov 14)
- Re: Altavista v TIS toolkit on Linux, which is better? Ted Doty (Nov 14)