Re: How to obtain a complete list of CR2 compromised hosts

["Jay D. Dyson" <jdyson () treachery net>]

-----BEGIN PGP SIGNED MESSAGE-----

On Mon, 6 Aug 2001, Kee Hinckley wrote:

> We need to change our mindset here.  Server attacks are no longer 
> just deal with by "admin/IT/Infosec/whomever staff".  Solutions need 
> to address both audiences.

        Your logic is unassailable and should indeed be heeded.  I liken
this to the difference between CSI personnel and someone who just came
home and found their front window broken.  The CSI will dust for prints,
retain all evidence (up to and sometimes including every splinter of
glass), and file a full report.  Joe or Jane citizen will instead merely
sweep up the glass, throw it out, put in a new pane and carry on their
merry way. 

- -Jay

  (    (                                                         _______
  ))   ))   .-"There's always time for a good cup of coffee."-.   >====<--.
C|~~|C|~~| (>------ Jay D. Dyson - jdyson () treachery net ------<) |    = |-'
 `--' `--'  `- Black as hell, sweet as love, swift as death. -'  `------'

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
Comment: See http://www.treachery.net/~jdyson/ for current keys.

iQCVAwUBO27k0rlDRyqRQ2a9AQG7nQQAlsNAEy9Wd1X+sCT5qNAxMF52ZZTWfE2W
9Ye8WXdBsp6o9c8yQeSotNpYMqXmeJDMRel9DLEUh4p9pNWr6zK1vhdBWCTjRoUZ
zh4kM3tajkQbNLYXADknuHmr6IrYv/8C0r3uSh0ABD6k0wr8mqURyAgaXuiR/Zbv
yCPMVrxUxhw=
=l6oi
-----END PGP SIGNATURE-----


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com