end user security
Josh Rollyson <dinodrac@SUMMIT.MAGENET.NET> Wed, 10 October 2001 02:29 UTC
Received: from mailbag.cps.intel.com (mailbag.cps.intel.com [192.102.199.72]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id WAA17917 for <run-archive@LISTS.IETF.ORG>; Tue, 9 Oct 2001 22:29:03 -0400 (EDT)
Received: from mailbag.intel.com (mailbag.cps.intel.com [192.102.199.72]) by mailbag.cps.intel.com (8.9.3/8.9.3/d: relay.m4,v 1.6 2000/11/24 22:10:56 iwep Exp iwep $) with ESMTP id TAA23336; Tue, 9 Oct 2001 19:07:49 -0700 (PDT)
Received: from MAILBAG.INTEL.COM by MAILBAG.INTEL.COM (LISTSERV-TCP/IP release 1.8d) with spool id 14848 for IETF-RUN@MAILBAG.INTEL.COM; Tue, 9 Oct 2001 19:07:49 -0700
Received: from mail.2mbit.com (summit.magenet.net [216.152.230.50]) by mailbag.cps.intel.com (8.9.3/8.9.3/d: relay.m4,v 1.6 2000/11/24 22:10:56 iwep Exp iwep $) with ESMTP id SAA23235 for <ietf-run@mailbag.cps.intel.com>; Tue, 9 Oct 2001 18:57:48 -0700 (PDT)
Received: (from dinodrac@localhost) by mail.2mbit.com (8.11.6/8.11.6) id f9A1tjq02828 for ietf-run@mailbag.intel.com; Tue, 9 Oct 2001 21:55:45 -0400
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
Message-ID: <20011009215545.C32066@magenet.net>
Date: Tue, 09 Oct 2001 21:55:45 -0400
Reply-To: IETF-RUN <IETF-RUN@mailbag.cps.INTEL.COM>
Sender: IETF-RUN <IETF-RUN@mailbag.cps.INTEL.COM>
From: Josh Rollyson <dinodrac@SUMMIT.MAGENET.NET>
Subject: end user security
To: IETF-RUN@mailbag.cps.INTEL.COM
I'd like to suggest that a document is needed on the responsibilities of end users to maintain secure systems. Every day I deal with abuse from compromised systems on broadband connections. The providers are usually too overwhelmed to take any action, and the users were usually never informed of the risks, or of their responsibility to insure their system isn't misused. Typically, when you do get a response from the user, you find out that it was a default <insert consumer operating system of choice here> installation, and that they had services running that they weren't using, that they had no idea they needed to keep updating things to stay secure, they had no firewall or packet filter, essentially an open door to abusers. Compromises of end user desktop computers can largely be stopped by basic education and basic security practices. Yet most users never learn this until its too late. While there is no magic bullet, users need to be informed, preferably before their systems are connected to the global internet, that there are certian things they must do to protect themselves and more importantly, the rest of the internet. -- Josh Rollyson System Administrator - SOSDG/2Mbit.com IRC Operator - efnet.vuurwerk.nl
- end user security Josh Rollyson
- Re: end user security Ted Gavin
- Re: end user security Bryan Follins
- Re: end user security Austin Bill-P23393
- Re: end user security Josh Rollyson
- Re: end user security Sally Hambridge
- Re: end user security Josh Rollyson
- Re: end user security Bill Frizzell
- Re: end user security Austin Bill-P23393