1:00 AM
Paul B
 |
| (Photo credit: Wikipedia) |
Nothing rings more true in network security. No matter how much time and money you throw at the problem, the minute your guard drops, the bad guys can get you. On that note, here are the Ten Immutable Laws of Network Security:
- If a bad guy can persuade you to run his program on your computer, it's not your computer anymore
- If a bad guy can alter the operating system on your computer, it's not your computer anymore
- If a bad guy has unrestricted physical access to your computer, it's not your computer anymore
- If you allow a bad guy to upload programs to your website, it's not your website any more
- Weak passwords trump strong security
- A computer is only as secure as the administrator is trustworthy
- Encrypted data is only as secure as the decryption key
- An out of date virus scanner is only marginally better than no virus scanner at all
- Absolute anonymity isn't practical, in real life or on the Web
- Technology is not a panacea (cure-all)
These are all good things to keep in mind on your day-to-day IT activities. These are also good things for the executives you report to to keep in mind as well. Just because you doled out a few thousand bucks here, doesn't mean the bad guys won't get in over there.
[Via Technet]
Related articles
