Re: Patching networks redux (fwd)

[Jonathan Rickman <jonathan () xcorps net>]

-----BEGIN PGP SIGNED MESSAGE-----

On Thursday 31 July 2003 23:36, denatured wrote:
>   As an Information Security Officer I assume that you consider yourself
> an "Expert".  That assumption being based on the fact that with the title
> of "Officer", and the responsibility that goes with it, I'd hope you
> think of your self way.  Curious though, after having it demonstrated to
> you that your network is VERY insecure I would have thought that you
> would take the time to fix it vice writing on this discussion board
> throughout the day.  Is that not having the time/resources or just plain
> neglegence?  I mean mistakes happen, but an outright ignoring of the
> problem, when it has been released to a list of this size, should concern
> your employer just a little. If you're going to let the whole world know
> that
> 'utd48637' is low on yellow, you should put an admin password on it.  But
> why does the world nees any access to your printers...and the rest of it
> all.

This is just plain silly if you ask me. Sure, Paul seems to be a little weak 
in the "think positive" department, but resorting to this kind of tactic 
because you disagree with his views is not only unprofessional, but 
immature. I really don't know if you care about the unprofessional part, 
since I really have no idea whether you are in fact a professional of any 
kind, as you chose to hide behind a pseudonym and a free email account. 
But, based on the immaturity you have just displayed by basically playing 
"tattle tattle", I seriously doubt that you are. Paul posts as himself with 
no attempt to conceal his real identity. Did it ever occur to you that 
perhaps he has nothing to hide from his employer? It's pretty damn easy to 
sit behind a curtain of anonymity and take cheap shots, but it also gives 
you zero credibility. 

>   Think about it.

You first.

- -- 
Jonathan Rickman
X Corps Security
http://www.xcorps.net

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iQEVAwUBPynxpjTwrX0N9QH/AQELmAf/fmnn+Ik5Ol+WQtS3RZIX1ySK0+IA5dEm
i3eXn4lvlD61XjentF7+1zXY/S0LIGzTu3NmI8E4Ni6mey/+KVee0WvlwL9f1CBW
ywec+1V+h4uGWsRnIAyX2cbZiivdUgoZdmLCGvR4I7UnHFSLiUs1+d2s+WkLFrSG
D7xlEocZSsHKZUpFKDRC2g/mL5GLE1566UjYo9itMZRytucgqjWYqOC24JHg7z30
iPfrdp8CJ1JjZ3MwhYxcOm4GcvRQYo9lJvDJJcdQdQwuEOXR+HwDc1YjrTwc6ASN
OWUOdfxUlXNPTIF0n60MAWTFnqNluCM4jrYEsl6CSdmZQ2fz99oyyA==
=Huu4
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html