Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 28 Mar 1999 05:43:44 -0700
From:      Donald Wilde <dwilde1@thuntek.net>
To:        Brad Benson <bradley@softhome.net>
Cc:        freebsd-chat@FreeBSD.ORG
Subject:   Re: Working in the IT Field - Trials and Tribulations
Message-ID:  <36FE2400.76272225@thuntek.net>
References:  <000001be78e9$294a4980$6400a8c0@BillyJoeBob>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
Brad Benson wrote:
> 
> > On Fri, Mar 26, 1999 at 12:07:03AM -0500, Brad Benson wrote:
> > > You said before the network isn't connected to the Internet. If it's a
> > > closed system you shouldn't have to worry a lot about your
> > security on the
> > > NT box. Unless you have some skilled and disgruntled employees.
> > I would make
> >
> > What's that statistic again about the percentage of security incidents
> > that come from the inside?
> 
> I don't know about the statistics. I can say that the biggest security
> issues I've had, in the companies I've done work for, had little to do with
> the OS. Employees working on these closed networks often take security as a
> joke. I can't count the times I've gone into a company where most employees
> new the root or admin password. I used to do a lot of work with NetWare and
> it was even worse. People would setup a network and just give every user
> supervisory rights. It doesn't matter how tight the OS is if everyone has
> the password, or no one setup the security right in the first place. I'd put
> money on the fact that any statistic on internal security has a lot to do
> with this type of problem.
> 

I've worked at companies that _were_ connected to the Internet where the
CEO insisted we take passwords _off_ all the W95 clients so he could do
his employees' work himself or snoop theirs. One wanted to kill the
server passwords, too, but I drew the line... =8-O

Actually, SOftware magazine had a security article a while back ( ~9
months ) and I think the percentage was around 90% for _internal_
sabotage. CEO's don't like to know there are ramifications for screwing
their employees.

-- 
Donald Wilde              "Bringing the Internet to everyone!"
Wilde Media
1380 Rio Rancho Blvd. SE #117  voice:      505-771-0709
Rio Rancho, New Mexico 87124   e-mail:     dwilde1@thuntek.net


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?36FE2400.76272225>