Re: [fw-wiz] Exchange & Blackberry

strider_at_mailworks.org
Date: 06/22/04

  • Next message: Paul D. Robertson: "Re: [fw-wiz] Access to internal resources" 
    To: "Paul D. Robertson" <paul@compuwar.net>
Date: Tue, 22 Jun 2004 07:32:43 -0500

    All true Paul, but you know us techno weenies don't want to deal with
    policy, risk assessments, etc...we want to play with toys ;)

    Don
    On Tue, 22 Jun 2004 08:13:42 -0400 (EDT), "Paul D. Robertson"
    <paul@compuwar.net> said:

    > More importantly, what does your security policy say about the
    > requirements for such servers/services?
    >
    > Every decision point shouldn't require a completely new assessment, it
    > should require going into a category of risk management that's already
    > outlined, with the appropriate software and hardware infrastructure needs
    > outlined, and adjusting for the quirks of the particular thing.
    >
    > For instance "This type of server only gets access to the communications
    > segment," or "This type of server doesn't get carte blanch access to the
    > internal network," or "This type of server has to be on a separate
    > external segment" are all valid security policy statements- but the
    > policy
    > should address such things at a macro level, with detailed adjustments
    > for implementation.
    >
    > Paul
    > -----------------------------------------------------------------------------
    > Paul D. Robertson "My statements in this message are personal
    > opinions
    > paul@compuwar.net which may have no basis whatsoever in fact."
    > probertson@trusecure.com Director of Risk Assessment TruSecure
    > Corporation 

    -- 
  
  strider@mailworks.org
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
  • Next message: Paul D. Robertson: "Re: [fw-wiz] Access to internal resources"

    Relevant Pages

    • Re: Discussion Topic
      ... an official policy of firing people for their 2nd mistake. ... C'mon, if Paul says it, it has to be true. ... I used those jobs to keep body and soul together as I went to college nights. ... We've been there, and we realize that even in the age of Obama, we live in the best country in the world where an immigrant fresh off the boat can start a business, take care of their family and send each and every one of their 11 kids to college. ...
      (alt.smokers.cigars)
    • Re: Domain vs Local Security Policy
      ... You guys (Steven and Paul) are correct but I believe the OP ... but for logging onto machine specific accounts that remains irrelevant. ... >> own password policy and block the policy inheritance from ... To affect domain accounts, the ...
      (microsoft.public.win2000.security)
    • Re: Discussion Topic
      ... an official policy of firing people for their 2nd mistake. ... C'mon, if Paul says it, it has to be true. ... actually treat employees fairly, if not so extravagantly in pay. ... What IS your source for this policy information on firing? ...
      (alt.smokers.cigars)
    • Re: Kerry criticizes Bushs space vision
      ... Paul wrote: ... > As far as I?m concerned, Kerry is looking at low-earth orbital missions and ... What kind of policy is that? ... The space advocacy groups would welcome it simply because its space policy;-) ...
      (sci.space.policy)
    • Re: Moving to NYC? Dont forget your wading boots.
      ... Paul J Gans wrote: ... pouch with his policy of getting families to stay in the city and not ... a policy of closing underutilized schools and selling them to ...
      (talk.origins)