Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Security for the Paranoid
Mark Burnett, 2005-04-26

Paranoia is the key to success in the security world. Is it time to worry when other security professionals consider you too paranoid?

Comments Mode:
Security for the Paranoid 2005-04-26
norwegian
Security for the Paranoid 2005-04-26
Anonymous (5 replies)
Security for the Paranoid 2005-04-26
Anonymous
Security for the Paranoid 2005-04-27
Rickard Johansson (1 replies)
Re: Security for the Paranoid 2005-06-09
Anonymous
Security for the Paranoid 2005-04-27
Anonymous (1 replies)
Re: Security for the Paranoid 2005-05-25
Bradbury9
Security for the Paranoid 2005-04-27
Anonymous
No such thing as "being TOO paranoid/careful" 2005-05-05
Anonymous
Security for the Paranoid 2005-04-26
Anonymous (1 replies)
Security for the Paranoid 2005-04-27
Anonymous (1 replies)
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-26
Times Enemy <times@krr.org>
Security for the Paranoid 2005-04-26
styliee
Security for the Paranoid 2005-04-26
Jeroen Kemperman (2 replies)
Security for the Paranoid 2005-04-26
Anonymous (1 replies)
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Shadowkill
Security for the Paranoid 2005-04-26
Anonymous
Security for the Paranoid 2005-04-26
Anonymous (1 replies)
My feelings on this matter are somewhere between "You're a bloody nutcase in need of medication and 24 hour care" and "Everything you're doing here is personally reasonable". I think the Internet we're all on would be a much safer and more stable place if people used more security than the 'nothing' that the overwhelming majority of the world uses now. Defense in depth is a great thing and I advocate it to my clients as well, but there are limits on when the security starts to become detrimental. For instance, I would really question whether or not the application you're using the 50 letter password (passphrase is probably more appropriate) on is effectively using all of those characters. The overwhelming majority of the time you're lucky if it uses 16. So then, what are those extra 34 characters for? Probably because they make you feel more secure on an emotional level than any technical level you can justify. I'll admit that the 50 character password app may, quite possibly use all those characters but there is certainly excess in your security inventory somewhere. Does this make you a raving lunatic? Not within a million miles, but even based upon the definition you researched for paranoia, your actions qualify. Not enough to make you a danger to yourself or others, but when the word is applied to you, perhaps this type of analysis of your actions, not from a defensive standpoint, but from a truly introspective standpoint may allow you and your family the capability to, perhaps, enjoy the good things about this world instead of constantly barricading yourselves against the bad. For what it's worth, I love reading your articles and learn a great deal from them. Perhaps without the 'paranoia' we wouldn't be allowed the pleasure of your writing. Or perhaps that could still exist coming from a more balanced place. Only you can decide that. Either way, thanks for the article. It gave me something very interesting to think about.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/320/31589#31589
Security for the Paranoid 2005-04-26
Anonymous
Security for the Paranoid 2005-04-26
Anonymous
Security for the Paranoid 2005-04-26
Anonymous
know your enemy 2005-04-26
Anonymous
Playing the "You're Paranoid" Card for Social Engineer & Profit 2005-04-27
Anonymous
When Paranoia Annoys Ya 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Kron
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
dan@3-e.net
Padded Cell for the Paranoid 2005-04-27
Aenox
Security for the Paranoid 2005-04-27
Anonymous (1 replies)
Re: Security for the Paranoid 2005-06-23
Morris Cox
Answers and clarifications 2005-04-27
Mark Burnett (1 replies)
Answers and clarifications 2005-04-28
Chatos Anonymous
sounds to be a reflection myself 2005-04-27
<visitbipin hotmail com>
Security for the Paranoid 2005-04-27
Anonymous
What OS are you using? 2005-04-27
Anonymous (1 replies)
What OS are you using? 2005-04-27
Zachary Palmer
Yet you use microsoft products? 2005-04-27
Anonymous
Missed the most obvious security precaution 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous coward
Security for the Paranoid 2005-04-27
ORBVS
Security for the Paranoid 2005-04-27
Anonymous (1 replies)
Re: Security for the Paranoid 2005-06-23
Morris Cox
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Stephen
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid - Firewall? 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Forget TerraFly, use Google! 2005-04-27
Anonymous Bastard
Security for the Paranoid 2005-04-27
f1r3f1ght3r
Security for the Paranoid 2005-04-27
Anonymous Coward
Security for the Paranoid? 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
josh
Social Engineer Past The Technology 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Autoversicherung
Not all that Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
JB kybrdcowboy@hotmail.com
the 50 character password 2005-04-27
Chirayu
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Security for the Paranoid 2005-04-27
Anonymous
Windows? 2005-04-27
Anonymous (1 replies)
Windows? 2005-05-02
Anonymous
Security for the Paranoid 2005-04-28
SafeCracka
Security for the Paranoid 2005-04-28
cornhead
Security for the Paranoid 2005-04-28
ZeroXeal
Security for the Paranoid 2005-04-28
Me
Being paranoid doesn't mean they wont get you! :) 2005-04-28
n54
Absolutely right, although... 2005-04-28
Dmitry Kirsanov
Security for the Paranoid 2005-04-28
Anonymous
Security for the Paranoid 2005-04-28
Anonymous
Security for the Paranoid 2005-04-28
Anonymous
Security for the Paranoid -trust wife 2005-04-28
Anonymous
Security for the Paranoid 2005-04-29
Anonymous
my password is my wife's name 2005-04-29
Anonymous
Security for the Paranoid 2005-04-29
Mat
Due Dilligence vs. Effeciency 2005-04-29
Anonymous
Security for the Paranoid 2005-04-29
Anonymous (1 replies)
Security for the Paranoid 2005-05-02
Anonymous [Information Security Defender]
50-character password is overkill 2005-05-03
Anonymous (1 replies)
Re: 50-character password is overkill 2006-02-26
Anonymous
Security for the Paranoid 2005-05-06
Anonymous (1 replies)
Re: Security for the Paranoid 2006-05-25
Anonymous
Links for the Paranoid 2007-06-16
Anonymous
Security for the Paranoid 2008-02-17
Anonymous







 

Privacy Statement
Copyright 2007, SecurityFocus