[126950] in North American Network Operators' Group
Re: Nato warns of strike against cyber attackers
daemon@ATHENA.MIT.EDU (Jorge Amodio)
Wed Jun 9 08:28:01 2010
In-Reply-To: <201006091202.o59C26tb006864@aurora.sol.net>
Date: Wed, 9 Jun 2010 07:27:52 -0500
From: Jorge Amodio <jmamodio@gmail.com>
To: Joe Greco <jgreco@ns.sol.net>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
> I'm all fine with noting that certain products are particularly awful.
> However, we have to be aware that users are simply not going to be requir=
ed
> to go get a CompSci degree specializing in risk management and virus
> cleansing prior to being allowed to buy a computer. =A0This implies that =
our
> operating systems need to be more secure, way more secure, our applicatio=
ns
> need to be less permissive, probably way less permissive, probably even
> sandboxed by default, our networks need to be more resilient to threats,
> ranging from simple things such as BCP38 and automatic detection of certa=
in
> obvious violations, to more comprehensive things such as mandatory virus
> scanning by e-mail providers, etc., ... =A0there's a lot that could be do=
ne,
> that most on the technology side of things have been unwilling to commit
> to.
Great comments Joe, and I agree with you that there is a lot more that
can be done and should be done, but there is a main difference with
your recount about the auto industry, all those changes were pushed by
evolving regulation and changes in the law and enforcement.
Going back then to a previous question, do we want more/any regulation ?
Cheers
Jorge
