lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <Pine.GSO.4.43.0309300453200.7337-100000@tundra.winternet.com>
From: dufresne at winternet.com (Ron DuFresne)
Subject: [inbox] Re: CyberInsecurity: The cost of
 Monopoly


> No, I meant proper security training.  Is that so hard to understand?
> Regardless of the OS, every user should know how and why to patch.  Every
> user should understand what social engineering is, how to detect it and
> what to do about it.  Every user should understand physical security,
> locking your workstation, why you should logout and when, etc., etc.  Every
> user should understand the basics of malicious code, how to spot it, what
> to do about it, how to recognize hoaxes, where the resources are when they
> need help.
>
> Without user training and an educated user community, no security program
> can ever hope to succeed.
>

Which I find too often is a top down failure, to provide even the proper
documentation on policies and corporate guidlines.  You'd be surprised
how many times I have poked up the ladder at those supposedly tasked to
provide concrete documents to guide various groups, from admins and
network engineers to end users and system setup specialists, to find that
the information to point others at does not exist, and though planned for
the last two years to be completed, is *not* at present priority.  Of
course everytime I clime that ladder, all hell breaksout as someone gets
pissed their lack of responsibility has been called into accountable
inactivity.  And far too often the damned messenger gets shot, almost
makes one feel like the boarders and handguns of Texas reaches the east
coast...

Thanks,


Ron DuFresne
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
	***testing, only testing, and damn good at it too!***

OK, so you're a Ph.D.  Just don't touch anything.


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ