[thelist] Hardening a webserver More Exact
Chris Johnston
fuzzylizard at gmail.com
Mon Jan 17 08:52:20 CST 2005
On Sun, 16 Jan 2005 22:06:57 +1100, Ken Schaefer <Ken at adopenstatic.com> wrote:
> A book on what?
>
> "Real" security is not for dilettantes. I certainly won't claim to be a font
> of knowledge, but I've talked to enough security pros to know that I don't
> know enough (I'm consciously incompetent, which is a step beyond
> unconsciously incompetent). If you need "real security", get some good
> consultants in for you. There are plenty of well known and reputable security
> firms that can do this for you, for a fee.
>
So are you trying to say that security can not be learned from a book?
The only to ensure that your computers are secure is to hire a
consultant?
I can understand the fact that each situation is different and that
the security that needs to be put in place is highly dependant on the
situation, however, I think there is a certain amount of knowledge
that can be learned from reading web articles and books. Even if I
were to hire a consultant, as you so strenously argue, I would still
want to acquire a fairly good grounding in computer security. This way
I work intelligently with the consultant and I am not taken for a
ride. If a consultant can learn this stuff, then so can other people.
This ain't rocket science.
In addition, although some of the suggestions have been simplistic,
there are some tips that can be employed to raise the level of
security. Even if the person employing those tips does not fully
understand all the reasons behind them.
--
chris johnston
www.fuzzylizard.com
"For millions of years, mankind lived just like the animals and
something happened which unleashed the power of our imagination, we
learned to talk."
Pink Floyd
More information about the thelist
mailing list