Firewall Wizards mailing list archives

Re: SCADA

From: "R. DuFresne" <dufresne () sysinfo com>
Date: Thu, 23 Apr 2009 17:18:45 -0400 (EDT)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 15 Apr 2009, Daniel E. Hassler wrote:

OK - I expected this. As I stated I was/am not trolling. Heck - check theemail headers - This noise is coming from Thunderbird on a WinXP Pro system.I don't expect this system is secure even with two different firewalls and anAV software product installed. Marcus - I've really enjoy yourworks/writings/postings and sincerely did not mean any offense. I've readover and over about SCADA security issues but find practically nothing on themarket to effectively address them. We can write a lot on the FirewallWizards list about the woes of mixing today's connected business needs withyesterdays isolation is a form of security. My basic question is why aren'tthose who have a clue creating solutions to meet the business needs? This iswhere I think our time is better spent (and the.the $$$ are). If I canrephrase my original question it would be more like: "I think we can dobetter, If we build it will they come?"

As I have read this thread, and a variety of otherrs over the years, Ikeep coming to the conclusion that many seem to miss the point that "thosewho have a clue" are ignored, or their chants/rants about how to securesystems like SCADA are missed or ignored. the point being made early onand at various times in this version of the thread, leave then off thecorporate network and far far away from any internet capable connection.Or have I misinterpreted the advice given over the years on this topicspecifically?

Similair point to broader corporate network security, do not let insecureprotocols pass the perimiter. Seems to me that these threads keep poppingup from time to time because folks just do not like the answers they aregetting from the clued. Or, am I again misreading and interpreting?



Thanks,


Ron DuFresne

- --~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

        admin & senior security consultant:  sysinfo.com
                        http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A  E838 B2DF AFCC 94B0 6629

These things happened. They were glorious and they changed the world...,
and then we fucked up the endgame.    --Charlie Wilson

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFJ8Ns4st+vzJSwZikRAjUDAJ4+Ba8Idt7d3AwT7N1NSRXsI81BKwCdE2YB
gmlB6WGPQ8c022hR5tji+/s=
=SXn2
-----END PGP SIGNATURE-----
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Re: SCADA, (continued)
- - - Re: SCADA Chris Blask (Apr 15)
    - Re: SCADA Behm, Jeff (Apr 15)
    - Re: SCADA Chris Blask (Apr 15)
    - Re: SCADA R. DuFresne (Apr 23)
  - Re: SCADA R. DuFresne (Apr 23)
    - Re: SCADA Chris Blask (Apr 23)
- Re: SCADA Marcus J. Ranum (Apr 15)
  - Re: SCADA Daniel E. Hassler (Apr 15)
    - Message not available
    - Re: SCADA Daniel E. Hassler (Apr 15)
    - Re: SCADA Brian Loe (Apr 16)
    - Re: SCADA R. DuFresne (Apr 23)
    - Re: SCADA Daniel E. Hassler (Apr 24)
    - Re: SCADA Paul Ferguson (Apr 25)
    - Re: SCADA Arthur Clune (Apr 27)
    - Re: SCADA Dotzero (Apr 27)
    - Re: SCADA Paul D. Robertson (Apr 27)
    - Re: SCADA Jim Seymour (Apr 27)
    - Re: SCADA Dotzero (Apr 27)
    - Re: SCADA Paul D. Robertson (Apr 27)
    - Re: SCADA ArkanoiD (Apr 27)
- Re: SCADA Bill McGee (bam) (Apr 15)

(Thread continues...)