Information Security News mailing list archives

RE: U.S. Cyber Security Weakening

From: InfoSec News <isn () c4i org>
Date: Fri, 11 Jan 2002 12:38:49 -0600 (CST)

Forwarded from: "Thomas (Yahoo!)" <thomasroygarner () yahoo com>

One thing that makes me wonder, in the first paragraph, mentions
"...companies are not implementing security measures already
available..."

I could be reading into this article but, one a security patch comes
out for our latest/great MS Network, we cannot simply just "apply the
patch".  Even though, our security personnel scream bloody hell to do
so, you simply can't.  We learned that lesson years ago, applying a
patch, only to have another patch come out shortly, thereafter, to
correct an error in the previous patch.

We have to test the patch, ensure that it passes accreditation, ensure
that if this patch is applied, all computers on the network can run
and not "crash" or some other unforeseen problem.

I do understand the need for other physical preventive devices;
however, not everyone is running Windows NT or Windows 2K, I have
three/four Windows 95 machines running happily w/ outdated software,
Lord knows what a patch for the Network could do to my lonely Win 95
machine! :(



Thomas Roy Garner
SETIPRIME ( http://www.setiprime.com )

-----Original Message-----
From: owner-isn () attrition org [mailto:owner-isn () attrition org]On Behalf
Of InfoSec News
Sent: Wednesday, January 09, 2002 4:01 AM
To: isn () attrition org
Subject: [ISN] U.S. Cyber Security Weakening


http://www.wired.com/news/infostructure/0,1377,49570,00.html

Reuters
11:15 a.m. Jan. 8, 2002 PST

U.S. computer systems are increasingly vulnerable to cyber attacks,
partly because companies are not implementing security measures
already available, according to a new report released Tuesday.

"From an operational standpoint, cyber security today is far worse
that what known best practices can provide," said the Computer Science
and Telecommunications Board, part of the National Research Council.

[...]



-
ISN is currently hosted by Attrition.org

To unsubscribe email majordomo () attrition org with 'unsubscribe isn' in the BODY
of the mail.

Current thread:

U.S. Cyber Security Weakening InfoSec News (Jan 09)
- <Possible follow-ups>
- RE: U.S. Cyber Security Weakening InfoSec News (Jan 11)
- RE: U.S. Cyber Security Weakening InfoSec News (Jan 14)