Re: Security Breach ?

From: Aleksandar Milivojevic (amilivojevic_at_pbl.ca)
Date: 03/03/05

  • Next message: Guy Fraser: "Re: Security Breach?" 
    Date: Thu, 03 Mar 2005 14:33:53 -0600
To: For users of Fedora Core releases <fedora-list@redhat.com>

    Chris Strzelczyk wrote:
    >
    > I know what CISSP means I work right next to one. But thanks :)
    > Someday I would like to take the exam
    > but I'm only 25 and I figure I can use more experience. Acutally I
    > figure I need more experience, I'll put this
    > in the lessons learned column.

    You know, the most important thing in IT security is to be able to
    detect when security is breached. And you got that part all right. IT
    security is no different than real security (for example, if you need to
    secure a bank): prevention, detection, and reaction.

    There is no ultimately secure system. Such thing doesn't exist. There
    are flaws in every system, and how often the system you administer will
    be owned is a mater of statistical probability. Of course, the better
    you are in "prevention", the probability of somebody braking in will be
    lower. But it is impossible to get that probability to zero.

    So to make long story short, the fact that you were able to detect
    something is going wrong is far more important than the fact that
    somebody broke into the system. 

    -- 
Aleksandar Milivojevic <amilivojevic@pbl.ca>    Pollard Banknote Limited
Systems Administrator                           1499 Buffalo Place
Tel: (204) 474-2323 ext 276                     Winnipeg, MB  R3T 1L7
-- 
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
  • Next message: Guy Fraser: "Re: Security Breach?"

    Relevant Pages

    • Re: Safe One-Time Pad Usage (was: Non-Random Coin Flip?)
      ... > any proof that it is really secure at all! ... I think you can put together an argument for security reducible to a set ... a Markov model showing the probability ... some figures of thumb on the probabilities of coding errors in software ...
      (sci.crypt)
    • Re: MS Windows Security Update CD now available
      ... Hugh's line "Security should be integrated into the product to the extent that Security ... > Security should be integrated into the product to the extent that Security> is the base component of the product, and the features of the product> are built upon and around that solid, secure, transparent foundation. ... Probability, based upon simple understanding of business dynamics. ... > I could add a disclaimer here that, despite the probability that this missive will be> perceived as a diatribe against Microsoft, nothing could be further from the truth. ...
      (microsoft.public.windows.inetexplorer.ie6.browser)
    • Re: MS Windows Security Update CD now available
      ... > Security should be integrated into the product to the extent that Security ... Probability, based upon simple understanding of business dynamics. ... > perceived as a diatribe against Microsoft, nothing could be further from the truth. ... One which I suspect is born of understandable frustration. ...
      (microsoft.public.windows.inetexplorer.ie6.browser)
    • Re: Firewall security: Re: Problems with simple Samba file share
      ... facts. ... Probability doesn't mean squat when it happens to you. ... arguing that you have security through probability is not much ...
      (comp.os.linux.misc)
    • Re: Is MD5 outdated ?
      ... ]> will produce a second document that has the same hash as the first. ... ]that Greg Rose described would yield a collision with high probability ... ]In security, a threat cannot be ignored simply because it is not certain ... ]a large amount of computation, but it's not so large as to be ...
      (sci.crypt)