On Sat, 2008-03-29 at 11:41 -0500, Bryen wrote:
Unfortunately, he used a poor choice of words to lump two separate concepts together. Attacks are a higher risk coming from the outside. They tend to be random, looking for an open port somewhere.
Internally, its not an attack but more of a security control risk where individuals given certain amount of leeway or authority have access to information and we don't know for sure what they're doing with that information.
Two entirely different security issues.
Well stated, you took the word right out of my mouse ;-)) otoh, don't be to generous woth trust. A former employer had *all* their systems open with host.equiv I would suggest to have iptables up-and-running, but to generates warnings on several ports. If someone from within is trying to do funny tricks, (s)he is easily found and have to explain the purpose. people could/should be fired for such actions. hw --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org