RE: What challenges are security admins facing?

["Ben Nagy" <ben () iagu net>]

One at random: Fixing internal host vulnerabilities. Working out which bits
need patching / replacing, and getting the time, priority and authority to
make sure it gets fixed.

This is basically the root cause of all the recent worms - it's not that
someone didn't know there was a problem, it's just that "factors" got in the
way of things being resolved. My favourite is that some people didn't patch
for Sapphire/Slammer because their vendors wouldn't support SQL Server if
the newest service pack was applied.

Problems are finding the vulnerabilities, being able to  fix them (you'd be
surprised how many security admins do not have the authority to mandate a
patch for the public webservers), and making sure they actually got fixed.
"Product" can help with some of this, but it's a process / attitude problem
at the heart.

Firewalls Aren't Enough, blah blah blah News at Seven.

ben

> -----Original Message-----
> From: firewall-wizards-admin () honor icsalabs com 
> [mailto:firewall-wizards-admin () honor icsalabs com] On Behalf 
> Of Paul Ammann
> Sent: Monday, May 26, 2003 4:49 PM
> To: firewall-wizards () honor icsalabs com
>
> Hi
[...]
> I'm curious as to what people 
> challenges 
> security admin are facing.[...]

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards