Disaster Recovery

From: A Barnett (abarnett@ndirect.co.uk)
Date: 09/14/01

• Previous message: Michael Batchelder: "Re: How to discover FW-1 management module or GUI?"
• Next in thread: Jim Miller: "Re: Disaster Recovery"
• Reply: Jim Miller: "Re: Disaster Recovery"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Message-ID: <008101c13cb0$aff71200$0a01a8c0@tigerbox>
From: "A Barnett" <abarnett@ndirect.co.uk>
To: <PEN-TEST@securityfocus.com>
Subject: Disaster Recovery
Date: Fri, 14 Sep 2001 01:03:29 +0100

All,

This is aimed at being a discussion thread rather than any type of comment.

Following the recent disasters in the US I was struck by a simple but
worrying thought with respect to the IT infrastructures. Assuming that most
if not all of the companies ( and government) involved had half decent
disaster recovery plans then they will have back up offices ready equipped.
OK this is normal and correct procedure but how well are these centres kept
up to date with respect to the latest security patches.

Example - Your disaster plan says we need X workstations and Y servers with
Z telephone / comms connections running A, B and C software. This means you
can be up and running in the nominal 24 hours or whatever but who actually
has the responsibility to keep these systems up to date.

My point being has anybody actually checked these systems for lets say Code
Red problems ? How much risk are companies going to expose themselves to and
if there is an additional risk over and above what the sysadmins who is
going to carry the can ?

Thoughts or experiences would be appreciated to help refine my own plans.

Tony Barnett

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

---

• Previous message: Michael Batchelder: "Re: How to discover FW-1 management module or GUI?"
• Next in thread: Jim Miller: "Re: Disaster Recovery"
• Reply: Jim Miller: "Re: Disaster Recovery"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Disaster Recovery ... disaster recovery plans then they will have back up offices ready equipped. ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... (Pen-Test) RE: Charging customers on security ... security", either. ... secure software, or of the good for the data-processing community. ... disaster recovery rather than disaster prevention, ... the frequency and total cost of disaster recovery). ... (SecProg) REVIEW: "Disaster Recovery Planning", Jon William Toigo ... Toigo's first edition outshone almost all later DRP (Disaster Recovery ... Planning) and BCP works. ... Toigo examines the question of whether people will see this ... perused for problems (such as security), while, at the same time, they ... (alt.computer.security) REVIEW: "Disaster Recovery Planning", Jon William Toigo ... Toigo's first edition outshone almost all later DRP (Disaster Recovery ... Planning) and BCP works. ... Toigo examines the question of whether people will see this ... perused for problems (such as security), while, at the same time, they ... (comp.security.misc)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(14)