Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Security Czar
Scott Granneman, 2006-03-23

In this column Scott Granneman takes the role of dictator of the security world and presents his ideas about mandatory reforms that would improve security for millions of people.

Comments Mode:
Security Czar 2006-03-23
Erik N
Security Czar 2006-03-23
Anonymous (1 replies)
Here here!!! 2006-03-24
Anonymous (1 replies)
Re: Here here!!! 2006-11-08
Anonymous
Security Czar 2006-03-23
Stonewall
Security Czar 2006-03-23
Wremes (1 replies)
Re: Security Czar 2006-03-31
Anonymous
Security Czar 2006-03-23
Mr. Negative (1 replies)
Re: Security Czar 2006-03-26
Anonymous
Let's go for it! 2006-03-23
assurbanipal (2 replies)
Re: Let's go for it! - Why? 2006-03-24
Anonymous
Re: Let's go for it! 2006-04-14
Anonymous
Security Czar 2006-03-23
Nekromancer (1 replies)
Re: Security Czar 2006-03-30
EasterNerd (1 replies)
Re: Re: Security Czar 2006-03-31
Mick
Security Czar 2006-03-23
infamous41md (1 replies)
Re: Security Czar 2006-03-23
Todd Knarr (1 replies)
Re: Re: Security Czar 2006-03-23
infamous41md
Security Czar 2006-03-23
Anonymous (1 replies)
Re: Security Czar 2006-04-14
The Finger
Security Czar 2006-03-24
Anonymous
Security Czar 2006-03-24
Anonymous
Security Czar 2006-03-24
Anonymous
Security Czar -- A.K.A. Mr. Tin Pot Economic Regulator 2006-03-24
Doug Sibley (1 replies)
Re: Security Czar -- A.K.A. Mr. Tin Pot Economic Regulator 2006-03-29
Anonymous (1 replies)
Re: Re: Security Czar -- A.K.A. Mr. Tin Pot Economic Regulator 2006-04-01
Doug Sibley (1 replies)
Re: Re: Re: Security Czar -- A.K.A. Mr. Tin Pot Economic Regulator 2007-06-21
Anonymous
Security Czar - more reading of history needed 2006-03-24
Craig S Wright (1 replies)
Re: Security Czar - more reading of history needed 2006-04-14
Anonymous
Security Czar 2006-03-24
Craig S Wright
No mandatory training 2006-03-27
Michael Scovetta (3 replies)
Re: No mandatory training 2006-03-29
Anonymous
Re: No mandatory training 2006-03-29
Anonymous
You can't hurt other people with a VCR or a drill (at least typically). We do require training (or at least proof of competence) for things like cars and heavy equipment where you can hurt someone else. If bad computer security only hurt the user we wouldn't even be having this debate, but your bad computer security habits can cause me problems.

We don't let you drive a car before you prove at least a minimal competence (theoretically at least, the actual implementation by DMV is another debate) and we don't let you continue driving if you insist on ignoring traffic laws or driving recklessly enough to put others at risk. Why shouldn't we treat users of network-connected computers the same way?

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/394/33399#33399
Re: No mandatory training 2006-03-30
Anonymous
Yes! (except for one thing...) 2006-03-28
Penguinisto
Security Czar 2006-03-29
Anonymous
Security Czar 2006-03-30
Lunkwill
Security Czar 2006-03-31
Paul Stepowski
Security Czar 2006-03-31
FortHEX
Security Czar 2006-04-02
Anil B







 

Privacy Statement
Copyright 2008, SecurityFocus