On Tue, 2006-04-25 at 12:17 -0500, Paul Schmehl wrote:
> I hate to tell you this, but even that wouldn't make a difference to
> some Deans.
You need a lot more than a single news article to make your case, I
understand that. The point is, in order to persuade someone that isn't
taking the matter seriously, the more resources and precedent you have
the stronger a case you'll have.
> I have had profs and Deans complain because we wouldn't
> allow them to just put a hacked machine back online. They think that
> somehow, once we've discovered a breach, it automagically goes away (or,
> more likely, it's not as important as the work that server was doing.)
Indeed, I've seen similar responses but that does not mean you forget
about it. The information should still be presented and the precedent
cited to help back up the fact that it has serious implications.
> > ;-P
> >
> If you look at my sig you should be able to figure out I'm not at the
> school cited in that article. (And that's not to say that we're any
> better than they are or that we'd never be hacked like that.)
You missed the smiley, I'm aware it wasn't your school - it was just a
fitting coincidence considering I read the article just minutes before
reading your post. :-)
--
With Regards..
Barrie Dempster (zeedo) - Fortiter et Strenue
- http://reboot-robot.net -
"He who hingeth aboot, geteth hee-haw" Victor - Still Game
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/