PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

Have a laugh on me...

From: tadaka at gmail.com (Jason Wood)
Date: Mon, 12 Oct 2009 12:24:39 -0600
You have my sympathy.  Perhaps a pen test would help get some skin in the
game for management.  Seems like no one believes its possible until they get
taken out behind the wood shed.  I'd bet most of us find ourselves in a
similar position too often.

Jason


On Mon, Oct 12, 2009 at 11:24 AM, Soft Reset <softreset64738 at gmail.com>wrote:


Without spilling details, I told the IT team to remove an exposed web
portal from the internet as it was not SSL protected and the password was
easy enough to be found in my kid's "My First Dictionary".  This is the
response I got back from our "top guy":

 "Many people need access to the web portal.  Remember that one of the
objectives is to develop a strategy
  for the customer. Easier access, not harder, should be the goal."

I laughed.  How about you?


--SR6

_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com





-- 

irc: Tadaka
Twitter:  Jason_Wood
jwnetworkconsulting.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20091012/c426ff2e/attachment.htm
Previous By Date Next
Previous By Thread Next

Current thread: