[IP] more on Chinese hackers
Begin forwarded message:
From: David Wagner <daw@xxxxxxxxxxxxxxx>
Date: November 27, 2005 4:56:19 PM EST
To: marcaniballi@xxxxxxxxxxx (Marc)
Cc: daw@xxxxxxxxxxxxxxx ('David Wagner'), wilsonrj@xxxxxxxxx,
dave@xxxxxxxxxx
Subject: Re: [IP] more on Chinese hackers
I pretty much agree with your concepts, with the exception that I
never said
"all systems are equally insecure."
You said that putting information on a private network is "JUST AS
VULNERABLE" as putting it on an Internet-connected computer. That's
just
not true.
SIPRNET (the military's private network for SECRET data) is not "JUST AS
VULNERABLE" as the Internet. That's probably partly because SIPRNET is
administered more carefully -- but the fact that SIPRNET is not
connected
to the Internet anywhere also helps. Controlling topology is useful
at managing certain kinds of risks. The security community has known
this for a long time. It's one of the principles underlying firewalls.
Completely eliminating all connectivity to the Internet is just another
kind of firewall, and one that is generally more secure than today's
porous firewalls.
-- David
-------------------------------------
You are subscribed as roessler@xxxxxxxxxxxxxxxxxx
To manage your subscription, go to
http://v2.listbox.com/member/?listname=ip
Archives at: http://www.interesting-people.org/archives/interesting-people/