[Dshield] MS Patching side-effects

David Taylor ltr at isc.upenn.edu
Thu Aug 18 20:22:45 GMT 2005


I do have to agree with you about a lot of sysadmins not understanding
IPSEC.  I guess we could look on the news and see those in the media that
were affected by the Zotob worm and maybe find a few.  As you say, defense
in depth!


==================================================
David Taylor //Sr. Information Security Specialist
University of Pennsylvania Information Security 
Philadelphia PA USA
LTR at ISC.UPENN.EDU               (215) 898-1236
http://www.upenn.edu/computing/security/
================================================== 

SANS - The Twenty Most Critical Internet Security Vulnerabilities 
http://www.sans.org/top20/

SANS - Internet Storm Center
http://isc.sans.org


-----Original Message-----
From: list-bounces at lists.dshield.org [mailto:list-bounces at lists.dshield.org]
On Behalf Of John B. Holmblad
Sent: Thursday, August 18, 2005 3:40 PM
To: General DShield Discussion List
Subject: Re: [Dshield] MS Patching side-effects


David,

Microsoft made a terrible marketing blunder by calling the capability to 
which you refer,  IPSEC instead of, say,  IP Filtering with optional 
IPSEC, or IPSEC+. I suspect that a lot of sysadmins who have not had the 
proper training, do not understand that you can use the features of 
Microsoft's IPSEC technology  implementation to improve defense in depth 
even in the case where the IETF  defined IPSEC protocol is not even 
being used.

-- 
Best Regards,

John Holmblad

Televerage International
GSEC Gold,GCWN Gold,GGSC-0100,NSA-IAM

(H) 703 620 0672
(M) 703 407 2278
(F) 703 620 5388

primary email address:     jholmblad at aol.com
backup email address:      jholmblad at verizon.net


_______________________________________________
send all posts to list at lists.dshield.org
To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list




More information about the list mailing list