RE: Transitive Trust: 40 million credit cards hack'd

["Behm, Jeffrey L." <BehmJL () bvsg com>]

And you (and others) assume there's only two runners. 

I still think I'll make an attempt to out run the bear and
be as tough a target as I can afford, and hope the bear is
smart enough to pursue the easy targets.

The point is, don't make yourself the _easy_ target, when there are 
things you can do that the other (easier targets) aren't doing.
When there are enough bears and few targets, everyone will get
attacked, but don't lightly toss aside the benefit of making
yourself as hard a target as you can afford. Right now, there
are still plenty of honey-soaked targets for the bears to enjoy.

I'm not necessarily saying this is a completely fail-safe way to
secure your environment, but from what I have seen of other
environments, at least the honey isn't dripping off you and
leaving a trail for the bear to easily follow. Let it drip off
the other guy(s).

Jeff

-----Original Message-----
From: Paul Melson

The problem with that strategy being, you assume that there's only one
bear.

PaulM

-----Original Message-----
True, Marcus, but not everyone _does_ use 2 factor auth. So, at this
point,
it can be effective.  You don't gotta outrun the bear, just the guy next
to
you.

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards