[71075] in North American Network Operators' Group
Re: IT security people sleep well
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Mon Jun 7 23:11:39 2004
To: Jason Frisvold <friz@corp.ptd.net>
Cc: Robert Boyle <robert@tellurian.com>, nanog@merit.edu
In-Reply-To: Your message of "Mon, 07 Jun 2004 22:40:19 EDT."
<EFE80D82AA4F264FB24E73BEAF72FC9503E725@EXCHANGE5.corp.ptd.net>
From: Valdis.Kletnieks@vt.edu
Date: Mon, 07 Jun 2004 23:09:50 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_-488519358P
Content-Type: text/plain; charset=us-ascii
On Mon, 07 Jun 2004 22:40:19 EDT, Jason Frisvold <friz@corp.ptd.net> said:
> Do you trust every person you work with? Are your internal networks
> completely segmented (including the ethernet switches?)
And there's different kinds of trust too..
I've got a co-worker who I totally trust not to do something malicious.
However, it's 11PM, and I'm still in my lab because I just spent several hours
figuring out that a pile of gear I was supposed to test was *supposed* to
include a Foundry switch to use for a private network - but instead of 4 ports
connected to PCs that were dual-homed to the building network and the private
net, he wired up 3 ports to dual-homed boxes, and one port to the building net
to reach the 4th PC. Whoops... ;)
Do you trust every person you work with to not maliciously snarf packets *and*
to not accidentally route all those cleartext packets out the wrong interface
at the wrong time?
--==_Exmh_-488519358P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFAxS39cC3lWbTT17ARAqD4AJ9Qwy3UQdlfn/z/C9r6+IKeXwB26wCeIokm
N33lApDMzInn5YUtqZa6BjE=
=FEIJ
-----END PGP SIGNATURE-----
--==_Exmh_-488519358P--
