RE: a basic lesson in security

From: marco misitano (misi_at_cisco.com)
Date: 10/29/03

  • Next message: J Kallberg: "Re: military strike possible?" 
    To: <security-basics@securityfocus.com>
Date: Wed, 29 Oct 2003 16:06:28 +0100

    have a look at this.

    http://www.ietf.org/internet-drafts/draft-aeble-ooo-replies-00.txt

    Marco Misitano, CISSP
    http://misitano.com
    marco-at-misitano-dot-com

    ----Original Message----
    From: Paul O'Malley [mailto:ompaul@eircom.net]
    Sent: Monday, October 27, 2003 20:32
    To: security-basics@securityfocus.com
    Subject: a basic lesson in security

    > Hiya,
    >
    > Problem information disclosure.
    > Method auto responders.
    >
    > Issue telling me (and who knows who else) you are out of the office
    > and being giving enough information to do social engineering.
    >
    > I am amazed at the amount of people who have set auto responders to
    > this mailing list - bad form folks unless you are all running honey
    > pot organisations (or sub organisations).
    >
    > I suggest that if you have a piece of software that you set it to
    > cause the minimum of messages (i.e. internal only) if you must mail
    > externally you put the organisation at risk.
    >
    > Should you have you a policy to help with dealing with caller
    > verification?
    >
    > Solution:
    > Have a second mail address that you use for list based material. (Now
    > that was hard was it not?)
    >
    > Cheers have a good week folks.
    >
    > Paul O'Malley
    >
    >
    >
    >
    > ---------------------------------------------------------------------------
    > Forum Systems PRESIDIO: PGP / XML GATEWAY APPLIANCE
    > The Presidio integrates PGP data encryption and XML Web Services
    > security to
    > simplify the management and deployment of PGP and reduce overall PGP
    > costs
    > by up to 80%.
    > FREE WHITEPAPER & 30 Day Trial -
    > http://www.securityfocus.com/sponsor/ForumSystems_security-basics_031027
    > ----------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    Forum Systems PRESIDIO: PGP / XML GATEWAY APPLIANCE
    The Presidio integrates PGP data encryption and XML Web Services security to
    simplify the management and deployment of PGP and reduce overall PGP costs
    by up to 80%.
    FREE WHITEPAPER & 30 Day Trial -
    http://www.securityfocus.com/sponsor/ForumSystems_security-basics_031027
    ----------------------------------------------------------------------------

  • Next message: J Kallberg: "Re: military strike possible?"

    Relevant Pages

    • a basic lesson in security
      ... Problem information disclosure. ... I am amazed at the amount of people who have set auto responders to this ... PGP / XML GATEWAY APPLIANCE ...
      (Security-Basics)
    • Re: a basic lesson in security
      ... Paul O'Malley wrote: ... >Problem information disclosure. ... >I am amazed at the amount of people who have set auto responders to this ... PGP / XML GATEWAY APPLIANCE ...
      (Security-Basics)
    • Re: UNTRUSTED signature in GPG
      ... The reason the key is marked 'untrusted' is becuase PGP doesn't know who the ... 'Fernando Shayani' and using to email people? ... >> the world's premier event for IT and network security experts. ... This ALL INCLUSIVE curriculum utilizes lectures, case studies and true hands-on utilization ...
      (Security-Basics)
    • Re: GPG and Signing
      ... most of the people I communicate with via e-mail don't use PGP ... Since various governments stopped trying to prosecute Phil Zimmerman, ... It is not rational that they would design a security system that they ... I just wonder how many people it takes to do all the monitoring, ...
      (Debian-User)
    • Re: Encryption of files on USB flash drive
      ... >> that PGP is not useful? ... > of those vulnerabilities... ... security experts can review it. ... > order to gain some convenience... ...
      (sci.crypt)