| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: jasonc at science.org (Jason Coombs) Subject: FW: Tim recommended you Gregory A. Gilliss (ggilliss@...publishing.com) thinks that > spam doesn't have anything to do with security I disagree completely, Gregory. spam is DDoS of my inbox. It was the threat of spam that caused the first port 25 blocking. Now it's the threat of everything else bad that is prompting blocking of ports 135, 138, 139, 445, etc. -- people thought port 25 blocking did something *good* so they're inclined to repeat the same mistake in the future and the belief that "fixes" solve security problems gets a new lease on life. The infosec response to spam is one of the best models of study possible for security professionals because like small insects, bacteria and biological viruses used for research in the lab, spam evolves faster than just about everything else and it demonstrates shorter incubation periods and very short life cycles... Every person serious about electronic security should study the history of spam and put a little effort once in a while into trying to stop it, just to really understand the most important generic truth about security of any kind (go ahead and quote me on this): "Quash the threat here and it will pop up over there." Sincerely, Jason Coombs jasonc@...ence.org
Powered by blists - more mailing lists