Re: Firewall Vendors

[David Escalante <david.escalante () BC EDU>]

As I seem to point out every year or two, this is a public list,
archived and indexed on Internet search engines.

IMHO it's not a great idea to post, "I have a brand XXX security device"
because were there ever to be a known vulnerability with said device,
and someone with bad intent were trying to develop a list of entities
with that type of device to exploit, there you are, easily
"google-hackable."  Others may disagree or call me paranoid.

I don't want to start another discussion of what info ought to be public
about one's security infrastructure or whether this list ought to be
public.  I am only doing a reminder for those who might not have
remembered or thought about it in respect to this thread.

As a sort of "P.S.", the institution I'm at was attacked a number of
years ago with a targeted exploit against a specific piece of software
that's run here.  We actually caught the off-campus non-affiliated
attacker, and when he was asked about why he attacked us, he indicated
that he found mention of the fact that we had that particular software
on Google since one of our departments had not-so-thoughtfully
documented it very thoroughly for the use of internal staff on their
public web page, thus my sensitivity.
--
David Escalante
Boston College

Attachment: david_escalante.vcf
Description: