[18310] in cryptography@c2.net mail archive
Re: Another entry in the internet security hall of shame....
daemon@ATHENA.MIT.EDU (Ian G)
Sat Aug 27 09:47:48 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Sat, 27 Aug 2005 09:17:11 +0100
From: Ian G <iang@systemics.com>
To: "Steven M. Bellovin" <smb@cs.columbia.edu>
Cc: Chris Kuethe <chris.kuethe@gmail.com>, cryptography@metzdowd.com
In-Reply-To: <20050826195915.E9D1A3BFFED@berkshire.machshav.com>
Steven M. Bellovin wrote:
> But this underscores one of my points: communications security is fine,
> but the real problem is *information* security, which includes the
> endpoint. (Insert here Gene Spafford's comment about the Internet,
> park benches, cardboard shacks, and armored cars.)
*That* makes much more sense, ignore my earlier email.
http://homes.cerias.purdue.edu/~spaf/quotes.html
"Secure web servers are the equivalent of heavy armored cars.
The problem is, they are being used to transfer rolls of
coins and checks written in crayon by people on park benches
to merchants doing business in cardboard boxes from beneath
highway bridges. Further, the roads are subject to random
detours, anyone with a screwdriver can control the traffic
lights, and there are no police."
iang
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
