lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-id: <45448BD3.20591.7EA76D3@nick.virus-l.demon.co.uk>
Date: Sun, 29 Oct 2006 11:09:07 +1300
From: Nick FitzGerald <nick@...us-l.demon.co.uk>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: [ Capture Skype trafic ]

gabriel rosenkoetter to me:

> > Final enforcement may be an HR problem, [...]
> 
> Both setting the policy for acceptable use and enforcing that policy
> are HR's problem.

I wouldn't want to work in an IT department of a company where setting 
the policy of what is acceptable code to run on the computers I managed 
was any of HR's business.

If your "acceptable to use programs" policy is ONLY governed by an HR 
policy then YOU HAVE MUCH BIGGER PROBLEMS.

There ARE technological solutions to the "what code shall we allow to 
run on this machine" problem.  Sadly there are not more and better such 
solutions but there are some such solutions and any corporate IT system 
not devised without their use (i.e. _most_ corporate It is systems) is 
an inadequate system...


Regards,

Nick FitzGerald

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ