On Thu, Oct 16, 2003 at 11:08:46PM +0200, Bernd Eckenfels wrote:
> In article <[EMAIL PROTECTED]> you wrote:
> > A read-only /usr is not a security measure.
>
> Depends on your definition og it-security. It reduces downtime, prevents
> some admin and software failures and therefore is a security
On Fri, Oct 17, 2003 at 06:26:01PM +0200, Bernd Eckenfels wrote:
> And to reply to myself:
>
> Information Security - As defined by ISO-17799, information security is
> characterized as the preservation of:
>
> * Confidentiality - ensuring that information is accessible only to
> those
On Sat, Oct 18, 2003 at 04:05:22AM +0200, Goswin von Brederlow wrote:
Mounting stuff read-only also prevents filesystem corruption in case
the system does crash
A quiescent filesystem isn't going to be corrupted in a system crash.
You need to have metadata inconsistencies caused by filesystem
Michael Stone <[EMAIL PROTECTED]> writes:
> On Sat, Oct 18, 2003 at 04:05:22AM +0200, Goswin von Brederlow wrote:
> >Mounting stuff read-only also prevents filesystem corruption in case
> > the system does crash
>
>
> A quiescent filesystem isn't going to be corrupted in a system crash.
> You ne
On Sat, 18 Oct 2003 23:36, Goswin von Brederlow wrote:
> Michael Stone <[EMAIL PROTECTED]> writes:
> > A quiescent filesystem isn't going to be corrupted in a system crash.
> > You need to have metadata inconsistencies caused by filesystem activity
> > before you can get corruption.
>
> Which you g
In article <[EMAIL PROTECTED]> you wrote:
> Anyway perhaps we should get a new mailing list debian-security-de for the
> German meaning of security. Then the rest of us can discuss crypto, MAC, and
> other things that match the English meaning of the word.
Very funny. Personally I feel you are
In article <[EMAIL PROTECTED]> you wrote:
> In the IT field, "security" refers specifically to unauthorized use, as in
> "security guard", and "security system". It does not, in general, refer to
> the more generic definitions of "security", as in "security blanket",
> "securities and exchange com
Hey all,
no jihad please, there are times to couple intruder/vandalism security and
safety, and there are times to look at both concepts as distinct.
To use the distinct definition, safety includes security, as not-secured data
is not safe, and security without safety measures makes no sense.
P
On Sun, 19 Oct 2003 03:44, Bernd Eckenfels wrote:
> In article <[EMAIL PROTECTED]> you wrote:
> > Anyway perhaps we should get a new mailing list debian-security-de for
> > the German meaning of security. Then the rest of us can discuss crypto,
> > MAC, and other things that match the English mean
Matt Zimmerman wrote:
>
> On Fri, Oct 17, 2003 at 06:26:01PM +0200, Bernd Eckenfels wrote:
>
> > And to reply to myself:
> >
> > Information Security - As defined by ISO-17799, information security is
> > characterized as the preservation of:
> >
> > * Confidentiality - ensuring that informat
On Sat, Oct 18, 2003 at 04:05:22AM +0200, Goswin von Brederlow wrote:
Mounting stuff read-only also prevents filesystem corruption in case
the system does crash
A quiescent filesystem isn't going to be corrupted in a system crash.
You need to have metadata inconsistencies caused by filesystem acti
Michael Stone <[EMAIL PROTECTED]> writes:
> On Sat, Oct 18, 2003 at 04:05:22AM +0200, Goswin von Brederlow wrote:
> >Mounting stuff read-only also prevents filesystem corruption in case
> > the system does crash
>
>
> A quiescent filesystem isn't going to be corrupted in a system crash.
> You ne
On Sat, 18 Oct 2003 23:36, Goswin von Brederlow wrote:
> Michael Stone <[EMAIL PROTECTED]> writes:
> > A quiescent filesystem isn't going to be corrupted in a system crash.
> > You need to have metadata inconsistencies caused by filesystem activity
> > before you can get corruption.
>
> Which you g
In article <[EMAIL PROTECTED]> you wrote:
> Anyway perhaps we should get a new mailing list debian-security-de for the
> German meaning of security. Then the rest of us can discuss crypto, MAC, and
> other things that match the English meaning of the word.
Very funny. Personally I feel you are
In article <[EMAIL PROTECTED]> you wrote:
> In the IT field, "security" refers specifically to unauthorized use, as in
> "security guard", and "security system". It does not, in general, refer to
> the more generic definitions of "security", as in "security blanket",
> "securities and exchange com
Hey all,
no jihad please, there are times to couple intruder/vandalism security and
safety, and there are times to look at both concepts as distinct.
To use the distinct definition, safety includes security, as not-secured data
is not safe, and security without safety measures makes no sense.
P
On Sun, 19 Oct 2003 03:44, Bernd Eckenfels wrote:
> In article <[EMAIL PROTECTED]> you wrote:
> > Anyway perhaps we should get a new mailing list debian-security-de for
> > the German meaning of security. Then the rest of us can discuss crypto,
> > MAC, and other things that match the English mean
Matt Zimmerman wrote:
>
> On Fri, Oct 17, 2003 at 06:26:01PM +0200, Bernd Eckenfels wrote:
>
> > And to reply to myself:
> >
> > Information Security - As defined by ISO-17799, information security is
> > characterized as the preservation of:
> >
> > * Confidentiality - ensuring that informat
18 matches
Mail list logo
