[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Philosophical Question: Inheriting a Firewall

To: nick@holland-consulting.net,Nick Holland <nick@holland-consulting.net>,"Misc @OpenBSD" <misc@openbsd.org>
Subject: Re: Philosophical Question: Inheriting a Firewall
From: Roger Walkup <rwalkup@cheqnet.net>
Date: Sun, 10 Dec 2000 15:01:07 -0600
References: <3A33B185.F09A8A20@holland-consulting.net>

Nick,

I go back to my US Navy days (1980s) when it comes to matters of security. 
While *some* people (dipsh*t officers mostly) were a bit lax, the Navy as a
whole had quite tight policies.  If a Radioman who had the radio shack door
combo and the combinations of *any* crypto safes transfered, all combinations
were changed that day.  This wasn't a reflection on that person, just policy. 
It was the same with other security systems.  

With that in mind, I'd say wipe it and start fresh.  Aside from the former
admin person, there may be other unauthorized (read "script kiddies") people
who have gained access some time in the past.  This is a great time to ensure
they're not there, especially if your client is counting on you to provide a
secure, clean system.

Roger

References:
- Philosophical Question: Inheriting a Firewall
  - From: Nick Holland <nick@holland-consulting.net>

Prev by Date: Re: CAD on OpenBSD
Next by Date: Re: Chpasswd in OpenBSD ???
Prev by thread: Re: Philosophical Question: Inheriting a Firewall
Next by thread: Re: Philosophical Question: Inheriting a Firewall
Index(es):
- Date
- Thread