lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
From: Michael.Schmidt at T-Mobile.com (Schmidt, Michael R.)
Subject: A rather newbie question

Me too, that is why I joined this list, that is why I am concerned enough to learn.  That is why I pull the plug on my kids (I have four, and they are all educated in net usage) when they click (or allow their friends to click) yes to stupid net windows that say stupid things like - your machine is not protected would you like me to install a free tool to protect you?

I've told them many times - don't worry Dad is the protector, if you are not sure ask me, call me, whatever, just don't do anything stupid.

I am thinking I need to have a class again (at home of all places) on how to safely surf the internet.  Matter of fact I am resolved to again teach my kids about internet safety.  I think it ought to be a class like drivers ed, something that they teach in school even.

And if it weren't for places like this and people like you (and I hope me) the net would be a worse place.

-----Original Message-----
From: full-disclosure-admin@...ts.netsys.com [mailto:full-disclosure-admin@...ts.netsys.com]On Behalf Of Ethan Vaughn
Sent: Monday, May 03, 2004 10:23 AM
To: full-disclosure@...ts.netsys.com
Subject: RE: [Full-Disclosure] A rather newbie question

This might be obvious, so i apologize in advance.

I just wanted to point out that this is probably the no.1 security fallacy
I hear among my endlusers.

"Schmidt, Michael R." <Michael.Schmidt@...obile.com> wrote:
> Thanks,
>
> I use ISA server.  This is my home network, so I probably have nothing
> that they would be interested in.  I do have two static IP addresses and
> a DSL line.

Yes, there *is* something "they" are interested in: owning your box. Even
the  wimpiest granny-owned win95 box is valuable to a blackhat. Once
"owned" your box becomes a "safe machine" from which a blackhat can launch
anonymous attacks. Any trace will come back to you.

I think of it this way, how would I like my personal machine's IP address
to show up in a DDoS attack log against FBI.org? That usually motivates me
to spend a little extra time on my personal net's securiy.




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ