[76714] in North American Network Operators' Group
chewy middle
daemon@ATHENA.MIT.EDU (bmanning@vacation.karoshi.com)
Tue Dec 21 09:27:51 2004
Date: Tue, 21 Dec 2004 14:26:43 +0000
From: bmanning@vacation.karoshi.com
To: Suresh Ramasubramanian <ops.lists@gmail.com>
Cc: "Christopher L. Morrow" <christopher.morrow@mci.com>,
Scott Morris <swm@emanon.com>,
"Matthew S. Hallacy" <poptix@poptix.net>,
Sean Donelan <sean@donelan.com>, nanog@merit.edu
In-Reply-To: <bb0e440a04122022335f2aa03@mail.gmail.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Tue, Dec 21, 2004 at 12:03:12PM +0530, Suresh Ramasubramanian wrote:
> On Tue, 21 Dec 2004 06:22:17 +0000 (GMT), Christopher L. Morrow
> <christopher.morrow@mci.com> wrote:
> > there are others of course... it's not the OS that matters in the long
> > run, it's the administration of that OS (or so it seems to me, admittedly
> > not a sysadmin though, anymore). Sure, initial/default installs might be
> > problematic in one/all OS's, but by and large extended lifetimes on a
> > live/hostile network means patches must be applied. Seems like that
> > doesn't happen by and large.
>
> [waiting for an OpenVMS user to speak up]
>
> Frankly, from an operational perspective, I guess the only way to go
> is to trust the inside of your network even less than you trust the
> outside ... and have processes that quickly isolate and block access
> from / to compromised hosts till they are fixed.
>
> --
> Suresh Ramasubramanian (ops.lists@gmail.com)
well... i trust both inside and outside roughly the same...
the outside, i have to depend on others to do my work for
me... the inside is nobodys responsiblity but my own.
being a "good" player depends on me doing the "right" things
in my own backyard ... thats the only way to have a better
neighborhood, when everyone does their part .
--bill
