Re: [fw-wiz] How to Save The World

From: Marcus J. Ranum (mjr_at_ranum.com)
Date: 12/13/04

  • Next message: Frederick M Avolio: "Re: [fw-wiz] How to Save The World" 
    To: fred@avolio.com (Frederick M Avolio), firewall-wizards@honor.icsalabs.com
Date: Mon, 13 Dec 2004 10:09:29 -0500

    Frederick M Avolio wrote:
    >Can you buy such a thing? I know that early AV software did that. Is
    >there anything we can buy today that will do this?

    There are a few products out that do this. Citadel has a pretty cool
    package "SecurePC" (http://www.citadel.com/securepc.asp) that's
    designed for kiosk applications. I've considered using it as a lock
    down tool for my laptop but the tool is a bit more "enterprisy"
    than I need. I think it's designed for locking down ATMs and
    stuff like that from a central point. What I want is something that
    has a ZoneAlarm-like "smart interface" that lets me reverse-engineer
    a policy over time.

    Side-note:
    YES, ATMs run Windows inside. Another example of the kind of
    pervasive IT stupidity I was referring to, earlier. Rather than run
    a custom locked-down minimized O/S it runs a full Windows
    distro that has been locked down with a layer of software. Why?
    Because it's too much work to develop a new video player rather
    than use Windows Media Player, etc, etc. So rather than spend
    $400,000 to own a solution that's "done right" corporate IT would
    rather pay $150/ATM for a turd, and millions of dollars in turd
    polish to overcome the flaws in the turd. And, of course, turd
    polish is a recurring expense whereas just doing it right the
    first time is a gift that keeps on giving.

    mjr.

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

  • Next message: Frederick M Avolio: "Re: [fw-wiz] How to Save The World"

    Relevant Pages

    • Re: Ice doesnt get the respect it deserves
      ... She was instructed from the White house on how to polish a turd. ... "The easiest way would be to invest in a rock tumbler. ...
      (alt.home.repair)
    • Re: Google it with Bing
      ... -0400 it was announced to all in a public briefing, Rev Turd ... I still keep windows around on a VM, ... There are a lot of sets of eyes on Windows, and flaws found can be very obscure and due to interactions with some other program. ...
      (alt.2600)
    • Re: Desann Files
      ... Doesn't matter how much work you put into it if it still ends up as a ... Not only is it a turd, you expect someone else to polish it for you. ...
      (comp.sys.ibm.pc.games.action)
    • Re: |[4E] More monsters: phane
      ... really appears that things have gone full circle and the RPG is now ... As an old machinist once said to me, "You can't polish a turd." ... Step 1 - Place turd in freezer for 24 hours. ...
      (rec.games.frp.dnd)
    • Re: General broad comparisons between Stratocastors
      ... Kinda like Ruger and their recent changes to the 10/22 rifle.. ... With the right polish and company "high-tech blabber", ... it's possible to polish most any turd into a diamond. ... As far as Strats, either it works or it doesn't. ...
      (alt.guitar)