[72524] in North American Network Operators' Group
Re: Controls are ineffective without user cooperation
daemon@ATHENA.MIT.EDU (Christopher L. Morrow)
Fri Jul 16 01:29:06 2004
Date: Fri, 16 Jul 2004 05:28:28 +0000 (GMT)
From: "Christopher L. Morrow" <christopher.morrow@mci.com>
In-reply-to: <Pine.GSO.4.58.0407160055180.3131@clifden.donelan.com>
To: Sean Donelan <sean@donelan.com>
Cc: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
On Fri, 16 Jul 2004, Sean Donelan wrote:
>
> Donn S. Parker pointed out controls are ineffective without user
> cooperation.
>
> According to an AT&T sponsored survey, 78% of executives admitted to
> opening attachments from unknown senders in the last year, 29% used their
> own name or birthday as a "secure" password, 17% accessed the company
> network in a public place and didn't log out, 9% informally shared
> a network password with someone outside of the company.
surprised? if you don't teach the baby the consequences then they continue
to behave badly. I suppose it IS a little bit tough to tell the executive:
"Bad Exec!! NO COOKIE!!!" or the equivalent in execu-speak :(
>
> http://www.att.com/news/item/0,1847,13137,00.html
>
> The survey included relatively few people, 254 executives from Europe,
> North America ans Asia-Pacific regions.
>
