A Congressional hearing tomorrow will feature findings from a widely reported Government Accountability Office report on security risks posed by Department of Defense sales...
3 comments:
Anonymous
said...
And meanwhile no part of the government will really change and no one will be held accountable for this. It's a perfect example of why such large bureaucracy is bad. There are parts of the DoD that are really on the ball with security, and then there are parts that act like flaming idiots. For example, there was a hack attack against the DoD a year or so ago that was successful because a sysadmin used a blank password for an entire lab's worth of PCs (50-100 or more Windows PCs).
At this point, I don't even know what the solution is except to start firing people for this behavior.
I don't even know what the solution is except to start firing people for this behavior.
What the govt needs is to adopt a Red Cell approach to security. Hire experts to breach it and give them carte blanc on the methods, timing and targets.
Managers fear looking foolish in their superior's eyes. If there's a buch of Red Cell types out there running rampant and making them look like fools, they'll tighten up their stuff. It may be under duress, with a lot of grumbling, but they'll do it.
3 comments:
And meanwhile no part of the government will really change and no one will be held accountable for this. It's a perfect example of why such large bureaucracy is bad. There are parts of the DoD that are really on the ball with security, and then there are parts that act like flaming idiots. For example, there was a hack attack against the DoD a year or so ago that was successful because a sysadmin used a blank password for an entire lab's worth of PCs (50-100 or more Windows PCs).
At this point, I don't even know what the solution is except to start firing people for this behavior.
I wonder if Mr Beamish has one.
I don't even know what the solution is except to start firing people for this behavior.
What the govt needs is to adopt a Red Cell approach to security. Hire experts to breach it and give them carte blanc on the methods, timing and targets.
Managers fear looking foolish in their superior's eyes. If there's a buch of Red Cell types out there running rampant and making them look like fools, they'll tighten up their stuff. It may be under duress, with a lot of grumbling, but they'll do it.
Post a Comment