Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up)

• From: David R Johnson <drjohn@xxxxxxxxxx>
• To: foxboro@xxxxxxxxxxxxx
• Date: Fri, 13 Feb 2009 13:56:37 -0600

McLaughlin, Sean wrote:
> This presentation caught my eye -- it's one of the topics that I'd like
> to address in training our Engineers, but a topic that I only have broad
> non-vendor specific information on. Are either of the below people
> subscribed to this group to provide some highlights? (or anyone else
> who'd like to chime in on security)
>
>   
I know Matt DeAthos reads some of the posts.  I don't know about Ernie.  
Anyway the two main points of the presentation were...
1) IPS has a cyber security team in place to assist with audits and 
securing your plant.
     This was ok, but not a lot of "take away" information as one 
attendee put it.
2) The next I/A release in September will be much more secure out of the 
box.
    They said they might be removing non-essential windows apps (media 
player, etc.).
    They said they might block ports that were not used specifically by I/A.
    They said there might be the option to put a domain controller on 
the mesh and changing well known service passwords would be allowed.
    They said the philosophy of the least privileges needed might be 
adhered to from this point forward.

Now go back and read that with s/might/will and you'll get what they 
were driving at but wouldn't commit to.

At least security has moved from something that gets lip service to 
something that is beginning to be actively worked on.

And as for the shout out to Britney.  If you know me, you know.... yeah, 
you know.

Regards,
David




 
 
_______________________________________________________________________
This mailing list is neither sponsored nor endorsed by Invensys Process
Systems (formerly The Foxboro Company). Use the info you obtain here at
your own risks. Read http://www.thecassandraproject.org/disclaimer.html
 
foxboro mailing list:             //www.freelists.org/list/foxboro
to subscribe:         mailto:foxboro-request@xxxxxxxxxxxxx?subject=join
to unsubscribe:      mailto:foxboro-request@xxxxxxxxxxxxx?subject=leave
 

• Follow-Ups:
  • Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up)
    • From: Jeremy Milum

• References:
  • [foxboro] Southeastern Users Group Wrap Up
    • From: David Johnson
  • Re: [foxboro] Southeastern Users Group Wrap Up
    • From: McLaughlin, Sean

Other related posts:

• » Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up) - David R Johnson
• » Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up)- Jeremy Milum
• » Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up)- Doucet, Terrence
• » Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up)- David R Johnson
• » Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up)- Boulay, Russ
• » Re: [foxboro] I/A Security (forked from Southeastern Users Group Wrap Up)- Deathos, Matthew

1. Home
2. foxboro
3. Archive
4. 02-2009

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---