Tim Mullen, 2004-03-15
When everyone in the security world has something to sell, it's harder than ever to get straight answers about genuine threats.
Colapse all |
Post comment
Wow - that was actually a decent read!
2004-03-15
Penguinisto (1 replies)
Penguinisto (1 replies)
No, seriously... you do much better when you're not pimping Microsoft stuff :)
As for the subject at hand, yep: I agree perfectly. OTOH, this was the same problem when it came to damned near every other "hot' subject since the dawn of computing time.
Name the big, hot IT-like subject, and sud...
[ more ] [ reply ]
As for the subject at hand, yep: I agree perfectly. OTOH, this was the same problem when it came to damned near every other "hot' subject since the dawn of computing time.
Name the big, hot IT-like subject, and sud...
[ more ] [ reply ]
Wow - that was actually a decent read!
2004-03-16
BobTheBuilder (1 replies)
BobTheBuilder (1 replies)
I used to always wonder why Tim Mullen sucked so badly at being objective about anything. His articles tend to be peppered heavily with Pro-MicroSoft and Anti-Linux comments.
Now I finally see the bio tag line. He's an exec at a company that does consulting for MicroSoft. Explains a lot....
[ more ] [ reply ]
Now I finally see the bio tag line. He's an exec at a company that does consulting for MicroSoft. Explains a lot....
[ more ] [ reply ]
Wow - that was actually a decent read!
2004-03-19
Anonymous
Anonymous
> I used to always wonder why Tim Mullen
> sucked so badly at being objective about
> anything.
criticism about being objective? uhhm... pot, kettle, black?
> His articles tend to be peppered heavily
> with Pro-MicroSoft and Anti-Linux
> comments.
Please, find JUST ONE anti-Linux co...
[ more ] [ reply ]
> sucked so badly at being objective about
> anything.
criticism about being objective? uhhm... pot, kettle, black?
> His articles tend to be peppered heavily
> with Pro-MicroSoft and Anti-Linux
> comments.
Please, find JUST ONE anti-Linux co...
[ more ] [ reply ]
Where to Turn? Better management
2004-03-15
Anonymous
Anonymous
Sounds like your client needs to brush up on his risk management skills. If there was fires raging from MyDoom and NetSky, yet he was diverted to patch a vulnerability with no imminent threat, that's a serious management issue.
I don't intend to come off as rude, but the money your client is spen...
[ more ] [ reply ]
I don't intend to come off as rude, but the money your client is spen...
[ more ] [ reply ]
Where to Turn?
2004-03-15
Anonymous (1 replies)
Anonymous (1 replies)
Rethinking the way information is dispensed? What is that about?
How about teaching our customers how to make better decisions about the threats that face them, by actually having them do an analysis of their business and creating a security policy so there is less of a question what the priorit...
[ more ] [ reply ]
How about teaching our customers how to make better decisions about the threats that face them, by actually having them do an analysis of their business and creating a security policy so there is less of a question what the priorit...
[ more ] [ reply ]
Consultants have to create dependency
2004-03-19
Sparrowhawk
Sparrowhawk
Teaching a customer to fend for themselves is the antithesis of consulting. Otherwise where would their repeat business come from? My experience with consultants is they're in the business of solving your problem while providing as little information as possible, to ensure you'll have to call them...
[ more ] [ reply ]
[ more ] [ reply ]
Where to Turn?
2004-03-15
Anonymous (1 replies)
Anonymous (1 replies)
Well the ASN exploit _could_ have been huge. Historically everytime an exploit comes out and everyone says it's not a big deal they are proven wrong pretty quickly.
I whole heartedly agree with your belief security has become product. Talk to any IT manager they can tell you the names of a milli...
[ more ] [ reply ]
I whole heartedly agree with your belief security has become product. Talk to any IT manager they can tell you the names of a milli...
[ more ] [ reply ]
Where to Turn?
2004-03-21
Anonymous
Anonymous
The biggest problem is email viruses. We could almost completely get rid of them if we a)used pgp sigs religiously b) disallowed ALL attachments. People have started using their email accounts like they are file transfer clients. Or, if that is not possible, have all files sent or recieved encrypted...
[ more ] [ reply ]
[ more ] [ reply ]
Where to Turn?
2004-03-16
Barbara McGowin
Barbara McGowin
If security is difficult and hard to manage chances are the approach to security is not logical and consistant. Determine the impact on your organization the system would have if there is a loss of confidentiality, access, and integrity. Do a risk assessment and then determine what needs to be don...
[ more ] [ reply ]
[ more ] [ reply ]
Where to Turn?
2004-03-17
Anonymous CISSP
Anonymous CISSP
I had to read this 3 times.
No really I did.
What, no pro-M$ isms?
What, no linux bashing?
Well "bugger me"
[Editors note - British slang, not literal].
Sounds like your client is suffering from bad management, and perhaps a variation on the "when you're up to your arse in aligat...
[ more ] [ reply ]
No really I did.
What, no pro-M$ isms?
What, no linux bashing?
Well "bugger me"
[Editors note - British slang, not literal].
Sounds like your client is suffering from bad management, and perhaps a variation on the "when you're up to your arse in aligat...
[ more ] [ reply ]
Here, have a clue by four
2004-03-18
Anonymous
Anonymous
So let's see... the ASN.1 vulnerability allows an attacker to gain admin access via a port that's enabled on most firewalls going to web servers. The bagle, mydoom, and netsky variants so far have been little more than a nuisance. The key difference between the rash of virii over the last few months...
[ more ] [ reply ]
[ more ] [ reply ]
Where to Turn?
2004-03-19
Stefan
Stefan
BRAVO. That was a much-needed breath of fresh air. I was also quite annoyed by how quickly the elitist looney-bin "guru's" started calling ANS.1 "the mother of all Windows vulnerabilities"...
http://www.grc.com/default.htm
...just like uPnP was the "worst vulnerability ever", and the whole D...
[ more ] [ reply ]
http://www.grc.com/default.htm
...just like uPnP was the "worst vulnerability ever", and the whole D...
[ more ] [ reply ]
Tourette's Syndrome
2004-03-20
Anonymous
Anonymous
>cursing like Joe Pesci with Tourette's >Syndrome
This Mullen guy just doesn't get it, first it's his mimicking the 'nips' in his previous piece, now he's taken a very serious syndrome and turned it into yet another cheap laugh for his yet another useless writing piece.
The guy's a social oaf,...
[ more ] [ reply ]
This Mullen guy just doesn't get it, first it's his mimicking the 'nips' in his previous piece, now he's taken a very serious syndrome and turned it into yet another cheap laugh for his yet another useless writing piece.
The guy's a social oaf,...
[ more ] [ reply ]
Where to Turn?
2004-03-24
blacklight
blacklight
"Even security has become so commercialized and politicized that customers are being forced to go outside normal channels."
The cynical comment is "I wonder why." For one thing, anyone can set himself up as a security professional, because there are no legal or professional prerequisites. For ano...
[ more ] [ reply ]
The cynical comment is "I wonder why." For one thing, anyone can set himself up as a security professional, because there are no legal or professional prerequisites. For ano...
[ more ] [ reply ]
[ more ] [ reply ]