[isalist] Re: NISCC Vulnerability Advisory 693564/NISCC/FOLDERSHARE - Security Implications of the FolderShare Program

  • From: "Thor (Hammer of God)" <thor@xxxxxxxxxxxxxxx>
  • To: "isalist@xxxxxxxxxxxxx" <isalist@xxxxxxxxxxxxx>
  • Date: Sat, 23 Sep 2006 10:28:51 -0700

Yeah- putting en masse file sharing capabilities in the hands of the general
user-base isn¹t too bright.

t


On 9/23/06 6:06 AM, "Amy Babinchak" <amy@xxxxxxxxxxxxxxxxxxxxxxxxxx> spoketh
to all:

> I wasn¹t disagreeing with you. Just because something can be done doesn¹t make
> it a bad program. Just another thing that corp has to think about when
> protecting outgoing data flow was my only point.
>  
> 
> Amy 
>  
>  
> 
> 
> From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-bounce@xxxxxxxxxxxxx] On
> Behalf Of Thomas W Shinder
> Sent: Friday, September 22, 2006 11:32 PM
> To: isalist@xxxxxxxxxxxxx
> Subject: [isalist] Re: NISCC Vulnerability Advisory 693564/NISCC/FOLDERSHARE -
> Security Implications of the FolderShare Program
>  
> I'm using it and it's pretty straightforward. You share stuff with people you
> want to share it with.
>  
> I'm not saying that you can't do "dumb stuff" with the application -- but to
> call it at as a "security risk" is like calling out SMTP as a "security risk"
> or breathing ocean air a security risk. I tell you, the security wankers are
> really getting out of hand (pardon the pun ;)
>  
> Tom
> 
>  
> Thomas W Shinder, M.D.
> Site: www.isaserver.org <http://www.isaserver.org/>
> Blog: http://blogs.isaserver.org/shinder/
> Book: http://tinyurl.com/3xqb7
> MVP -- Microsoft Firewalls (ISA)
> 
>  
>>  
>> 
>> 
>> From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-bounce@xxxxxxxxxxxxx] On
>> Behalf Of Amy Babinchak
>> Sent: Friday, September 22, 2006 12:54 PM
>> To: isalist@xxxxxxxxxxxxx
>> Subject: [isalist] Re: NISCC Vulnerability Advisory 693564/NISCC/FOLDERSHARE
>> - Security Implications of the FolderShare Program
>> The potential danger comes from users doing things you don¹t want them doing
>> on your business network. When I tested the application when Microsoft first
>> purchased it, it gave me the creeps. Yet another way for information to get
>> lifted off a corporate network easily.
>>  
>> 
>> Amy 
>>  
>>  
>> 
>> 
>> From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-bounce@xxxxxxxxxxxxx] On
>> Behalf Of Thomas W Shinder
>> Sent: Friday, September 22, 2006 1:42 PM
>> To: isalist@xxxxxxxxxxxxx
>> Subject: [isalist] NISCC Vulnerability Advisory 693564/NISCC/FOLDERSHARE -
>> Security Implications of the FolderShare Program
>>  
>> Here's the latest candidate for moron "security" advisory of the year so far:
>> 
>> NISCC Vulnerability Advisory 693564/NISCC/FOLDERSHARE - Security Implications
>> of the FolderShare Program:
>> http://www.uniras.gov.uk/niscc/docs/br-20060920-00635.html?lang=en
>> 
>> It's like the CDC coming out with an advisory saying "If you put your head in
>> a meat grinder, you might suffer potentially irreversible damage to your
>> memory"
>> 
>> Sheesh -- security wankers...
>

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 09-2006