Full Disclosure mailing list archives

Re: Re: Microsoft Security, baby steps ?

From: William Warren <hescominsoon () emmanuelcomputerconsulting com>
Date: Thu, 18 Mar 2004 12:44:33 -0500

More enterprises would automate patching if MS's track record on theirpatches was not so bad...in this regards I am talking about theirpatches either introducing new holes or breaking critical applications....


Schmehl, Paul L wrote:

-----Original Message-----
From: full-disclosure-admin () lists netsys com[mailto:full-disclosure-admin () lists netsys com] On Behalf OfFull-Disclosure
Sent: Thursday, March 18, 2004 2:17 AM
To: full-disclosure () lists netsys com
Subject: RE: [Full-disclosure] Re: Microsoft Security, baby steps ?
In an corporate environment, you will have SUS or SMSrunning. If so, no need for internet access.


I'm seeing statements like this more and more, on this list and others,
and it's really starting to bug me.  (Not picking on you personally.)
Most of the attacks on corporate boxes come from the inside.  Blocking
internet access does very little to protect you.  Don't believe it?
Then explain how Slammer and Sobig and Mydoom and Nachi and Blaster
managed to spread in corporate environments that have very good
firewalling.

Putting up a firewall is one small step in a very large process that
gets you some semblance of security.  You are not "safe" simply because
the firewall is up and running.  All it take is *one* improperly
maintained box on the inside to be compromised/infected, and the hacker
is off to the races.  What will SUS/SMS do for you then?

By all means, automate patching.  But for god's sake, don't think that
once you've done that you're done!  You've only just begun.

Paul Schmehl (pauls () utdallas edu)

Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member

http://www.utdallas.edu/~pauls/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


--
My "Foundation" verse:

Isa 54:17 No weapon that is formed against thee shall prosper; andevery tongue that shall rise against thee in judgment thou shaltcondemn. This is the heritage of the servants of the LORD, and theirrighteousness is of me, saith the LORD.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: NEVER open attachments, (continued)
- - - Re: NEVER open attachments Jimmy Mitchener (Mar 19)
    - Re: NEVER open attachments Nico Golde (Mar 20)
    - Re: NEVER open attachments Troy (Mar 20)
    - RE: NEVER open attachments Bill Royds (Mar 20)
    - Free x.509 Certs (WAS Re: NEVER open attachments) Jeremiah Cornelius (Mar 21)
    - Re: NEVER open attachments Nico Golde (Mar 21)
    - Re: NEVER open attachments Troy (Mar 21)
    - Re: Re: Administrivia Ron DuFresne (Mar 19)
- RE: Re: Microsoft Security, baby steps ? John . Airey (Mar 18)
- RE: Re: Microsoft Security, baby steps ? Schmehl, Paul L (Mar 18)
  - Re: Re: Microsoft Security, baby steps ? William Warren (Mar 18)
- RE: Re: Microsoft Security, baby steps ? alwayssecure (Mar 18)
  - Re: Re: Microsoft Security, baby steps ? Cael Abal (Mar 18)
- RE: Re: Microsoft Security, baby steps ? Ng, Kenneth (US) (Mar 18)
- RE: Re: Microsoft Security, baby steps ? Random Letters (Mar 19)
  - RE: Re: Microsoft Security, baby steps ? Paul Schmehl (Mar 19)