lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20031021212250.GA12770@bozorky.foofus.net>
From: foofus at foofus.net (Mr. Rufus Faloofus)
Subject: RE: Linux (in)security

On Wed, Oct 22, 2003 at 04:10:53PM -0400, Arcturus wrote:
[snip]
> In lieu of securing the actual box, we put a firewall (running linux/unix)
> in front of it.  Then, we use a simple approach of "that which is not
> expressly allowed, is expressly denied" in our policies, and voila.
> Secured.

It might be better to say "protected from attacks sourced
from the other side of the firewall and directed at ports 
that we filter."

[snip]
> Just for the record, this was written in Outlook, and sent out via a secured
> system, that happens to run a Microsoft OS.  

I'd never have guessed:
> "It's not the OS, it?s the operator"

--Foofus.


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ