From owner-freebsd-chat Sat Mar 27 23: 5:38 1999 Delivered-To: freebsd-chat@freebsd.org Received: from charleston.softhome.net (charleston.SoftHome.net [204.144.231.41]) by hub.freebsd.org (Postfix) with SMTP id BCE3D14EF9 for ; Sat, 27 Mar 1999 23:05:33 -0800 (PST) (envelope-from bradley@softhome.net) Received: (qmail 18965 invoked by uid 417); 28 Mar 1999 07:26:05 -0000 Received: from max1-ppp-47.cyberix.com (HELO BillyJoeBob) (207.106.53.226) by smtp.softhome.net with SMTP; 28 Mar 1999 07:26:05 -0000 From: "Brad Benson" To: Subject: RE: Working in the IT Field - Trials and Tribulations Date: Sun, 28 Mar 1999 02:04:02 -0500 Message-ID: <000001be78e9$294a4980$6400a8c0@BillyJoeBob> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2173.0 In-Reply-To: <19990327134838.B5863@netmonger.net> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 Sender: owner-freebsd-chat@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > On Fri, Mar 26, 1999 at 12:07:03AM -0500, Brad Benson wrote: > > You said before the network isn't connected to the Internet. If it's a > > closed system you shouldn't have to worry a lot about your > security on the > > NT box. Unless you have some skilled and disgruntled employees. > I would make > > What's that statistic again about the percentage of security incidents > that come from the inside? I don't know about the statistics. I can say that the biggest security issues I've had, in the companies I've done work for, had little to do with the OS. Employees working on these closed networks often take security as a joke. I can't count the times I've gone into a company where most employees new the root or admin password. I used to do a lot of work with NetWare and it was even worse. People would setup a network and just give every user supervisory rights. It doesn't matter how tight the OS is if everyone has the password, or no one setup the security right in the first place. I'd put money on the fact that any statistic on internal security has a lot to do with this type of problem. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message