[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Support the Sasser-author fund started

To: Micah McNelly <micah@xxxxxxxxx>
Subject: Re: [Full-Disclosure] Support the Sasser-author fund started
From: Valdis.Kletnieks@xxxxxx
Date: Thu, 13 May 2004 17:32:37 -0400

On Thu, 13 May 2004 11:32:17 PDT, Micah McNelly <micah@xxxxxxxxx>  said:
> I wonder if people forget the liability that any organization inherits if
> they do NOT maintain a above standard protection scheme for their
> network/hosts. 

One of the problems there is the lack of a widely accepted "minimum due care"
best practices document for you to be above.  The Center for Internet Security
(http://www.cisecurity.org) has been trying to address that, and slowly making
some progress and buy-in.

(ObFullDisclosure: I'm biased, I helped develop the Solaris and Linux ones....)

Attachment: pgp00075.pgp
Description: PGP signature

References:
- RE: [Full-Disclosure] Support the Sasser-author fund started
  - From: Duquette, John
- Re: [Full-Disclosure] Support the Sasser-author fund started
  - From: Aaron Gee-Clough
- Re: [Full-Disclosure] Support the Sasser-author fund started
  - From: Micah McNelly

Prev by Date: Re: [Full-Disclosure] Sasser author
Next by Date: [Full-Disclosure] Linux bugs, fixed in current dev-tree
Previous by thread: Re: [Full-Disclosure] Support the Sasser-author fund started
Next by thread: Re: [Full-Disclosure] Support the Sasser-author fund started
Index(es):
- Date
- Thread