From: Erin Carroll (amoeba@amoebazone.com)
Date: Tue Nov 29 2005 - 21:14:49 EST
The following columnist commentary was published on SecurityFocus today:
Regaining control
by Kelly Martin
2005-11-29
Securing endpoint systems by locking them down using complex software brings
back memories of another era, where business computers were once used for
business applications only - and businesses retained control over their
assets and data.
http://www.securityfocus.com/columnists/372
--- I've rarely had the opportunity to do pen-tests where end-point systems are part of the mix (mostly done server/network infrastructure stuff) but I'm sure some list members have run into wide-open endpoint boxes within client sites. Is locking things down tight a viable solution? How do you balance usability and development-type environments against the security concerns these boxes represent? -- Erin Carroll "Do Not Taunt Happy-Fun Ball" -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.362 / Virus Database: 267.13.10/186 - Release Date: 11/29/2005 ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:12 EDT