[44702] in North American Network Operators' Group
Re: Network security: The auditors point of view
daemon@ATHENA.MIT.EDU (Patrick Greenwell)
Mon Dec 10 00:58:01 2001
Date: Sun, 9 Dec 2001 21:57:21 -0800 (PST)
From: Patrick Greenwell <patrick@cybernothing.org>
To: Sean Donelan <sean@donelan.com>
Cc: nanog list <nanog@merit.edu>
In-Reply-To: <Pine.GSO.4.40.0112092235120.21223-100000@clifden.donelan.com>
Message-ID: <20011209215359.Q20805-100000@unagi.cybernothing.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Sun, 9 Dec 2001, Sean Donelan wrote:
>
> On Sun, 9 Dec 2001, Patrick Greenwell wrote:
> > I have no personal knowledge of the DOI's infrastructure, and unless you
> > do, I think we're all left to speculate as to whether or not the "home
> > page server" of the DOI had access to the Indian trust data. My
> > speculation would be that it does if it's Internet connected...
>
> The great thing about our government is public oversight. It may be
> embarrassing to the managers involved, but Interior's computer security
> is detailed in several places.
Really an excellent point. On a somewhat tangential note, would Internet
security be aided if businesses were held to higher degrees of
public disclosure and/or accountability?
Not that it would ever happen of course, but I think the discussion around
the question could be intriguing....
