On Sat, 2003-02-08 at 17:30, Stefan van der Eijk wrote: > > > > > >>>[...] > >>>For paranoid users/admins like me, grsec with pax and some others > >>>options enabled, a system updated and systrace with good policies > >>>sounds like 'kiddies' out! :) > >>> > >>> > >>> > >>Maintaining those policies can be very costly. Just wondering what you > >>are so paranoid about... > >> > >> > >It's only my own policy.And it's really funny for me. > > > So you make your own policy, and then implement it, and probably also > audit the implementation? > > Whos' paying you to do it? I was doing it at work...no more.I'm trying in the new job, but my boss fights against security policies, AFAIK.
> [...] > > >>How much security is needed is mainly a business descision --> what do > >>you want to protect (against what) and how much must it cost. > >>It's up to them to decide how much security is adequate. > >> > >> > >CSO's are doing it, i'm doing the pratical job only. > > > So the CSO's are asking you to get that level of security, while they > are running a product from a company that has filed for bankrupty. OK. Explained above.I was doing it with other distribution. > What are you trying to protect against the script kiddies? My job :P > [...] -- Gustavo Franco <[EMAIL PROTECTED]>
