mailing list archives
RE: Law office recommendations?
From: "Mike Carney" <mcar () haestad com>
Date: Tue, 18 Feb 2003 13:02:02 -0500
I think you are worrying about the quote and contract end. I would just
make sure that you provide with your quote a list of deliverables. I
would be very specific, and through the process once a deliverable is
completed I would have the law office sign off on it.
From: Vince Dang [mailto:VinceDang () HondaFCU org]
Sent: Monday, February 17, 2003 7:57 PM
To: 'Tim Heagarty'; security-basics () securityfocus com
Subject: RE: Law office recommendations?
Not sure if you are seeking for the general risk analysis or only
systems related. These are the obvious things I see in addition to
individual systems security:
-make sure everyone shreds paper docs before trashing
-address physical access to file cabinets where hard docs are kept
-address fire protection for those cabinets -secure the voice/phone
server where they record legal statements -educate atty's to use complex
voicemail passwords -educate receptionists of social engineering
From: Tim Heagarty [mailto:tim () heagarty com]
Sent: Monday, February 17, 2003 9:36 AM
To: security-basics () securityfocus com
Subject: Law office recommendations?
I wish to pick the collective brain for a moment if I may.
I am working up an initial service quote for a law office of 100+
associates and 45+ attorneys. Do you have any recommendations of areas
to be sure to get into the Risk Analysis? They've already been hit by
Slammer and a script kiddie "pubber". I just want to be on my toes as I
have not worked for attorneys before and all those sharks in the water
makes me want to do this one really well.
Also, if there's a more appropriate list for this I'd be glad to move
this discussion to it.
Tim Heagarty MCSE, MCP+I
"There are only 10 kinds of people in the world, those that understand
binary, and those that don't."
Work: (928) 636-0489
Cell: (928) 533-9690