Search
  www.DonahueGroup.Com Tuesday, March 09 2010 @ 11:25 PM PST
Internet Report
The Internet Traffic Report monitors the flow of data around the world. It then displays a value between zero and 100. Higher values indicate faster and more reliable connections.

David's Twitter feed ?


Feed of interesting news stories from Digg

The Six Dumbest Ideas in Computer Security Email Article To a Friend View Printable Version 

Marus J. Ranum posted an interesting article on the Six Dumbest Ideas in Computer Security. His article goes though many of the management fallacies that I've spent the last decade fighting against in countless consulting engagements.

Although Marcus makes some excellent points, however where he listed some "minor dumbs" he states that firewalls should always be used.

It's my experience that there could be a better way. We could decide as a group that the fundamental protocols (DNS, ARP, etc.) of the Internet should be rewritten to not be based on the assumption of implicitly trusting others. This assumption was more true in the Internet’s infancy when it was primarily a inter-college network. But in modern life, we don't trust strangers much, so why should our computers do so?

On Bruce Schneier's weblog there was an excellent discussion regarding this topic. My comments are listed under "David D" and Marcus responded, for the most part, agreeing with me.

It should be also noted that the ideas proposed here are based on recent conversations with folks at Sun and mirror concepts previously stated in Marcus's 1998 Black Hat keynote: re-code the Internet and blame it on Y2K and discussed in Abe Singer's "Security Without Firewalls" approach to distributed system security.
  [ Views: 549 ]  

Created this page in 0.28 seconds

 Copyright © 2010 www.DonahueGroup.Com
 All trademarks and copyrights on this page are owned by their respective owners.