Subject: | |
From: | |
Reply To: | |
Date: | Tue, 7 Feb 1995 05:25:15 GMT |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
In <d00al2N000000000@MHS> Jerry Fochtman
<[log in to unmask]> writes:
>[...snip...]
>
>[..plug alert...]
>
>In addition to HP's Security Monitor Product, Monterey's SAF/3000
product
>provides the same capability with many more robust security features if
>your into that sort of thing.
>
>[...EOP...(end of plug)..]
>
>Regards -- Jerry Fochtman
>
Jerry -- in all fairness to security vendors everywhere, shouldn't you
also "plug" other vendors, such as
[blowing-own-horn-alert]
VESOFT's Security/3000
[end blowing-own-horn-alert]
as well? they
all have the same or similar features (removal of hand-holding error
messages, enhanced user recognition, front-end menus, idle timeouts,
etc.)
Actually, it is because of questions like this (How do I break in) that
security vendors make a living. We all ask that question, determine an
answer or two, and then ask the question "How can I prevent this from
occuring?" Many times the answer is "Train the user", but
implementation of that answer has always proven difficult. Sure, you
can "train" the user on the proper use of passwords, etc., but no amount
of training is going to keep them from writing their passwords on
post-it notes attached to the face of the monitor (or the slide-out
writing table of the high-school's secretary - a la Ferris Buelher) In
this case, you take the next best method, which is to implement a
program that does better checking that standard MPE security provides.
Tom Emerson
VESOFT Technical Support
|
|
|