home *** CD-ROM | disk | FTP | other *** search
- <html>
-
- <head>
- <meta http-equiv="Content-Language" content="en-us">
- <meta name="GENERATOR" content="Microsoft FrontPage 5.0">
- <meta name="ProgId" content="FrontPage.Editor.Document">
- <meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
- <title>New Page 1</title>
- </head>
-
- <body>
-
- <p class="para">
- <img border="0" src="res://sifrwlsnapin.dll/#2/#277" width="287" height="38"></p>
- <div class="sect2">
- <p class="para"><font face="Tahoma" size="2">With that in mind, look at the
- decisions you've made about security and decide what you think your system
- security goals should be. That may not be the policy that your site ends up
- with, but it's an important.</font></div>
- <div class="sect2">
- <p class="para"><font face="Tahoma" size="2">The second step towards putting
- together a working security policy for your site is to determine what
- everybody else's security policy is. What do the users and managers expect
- security to do for them? What do they think of the way security is handled
- currently? What are other computer facilities doing and why? </font></p>
- <p class="para"><font face="Tahoma" size="2">Every site has at least one
- security policy. The problem is that most sites have more than one; perhaps as
- many as there are people involved with the site's computers. Sometimes this
- proliferation of policies is purely unconscious; different computer facilities
- within the same site may be doing radically different things without even
- realizing it. Sometimes it's an open secret; administrators may be trying to
- maintain a security policy that they believe is necessary, even though the
- user population does not agree with them. Sometimes it's out-and-out war.
- Generally, people think of universities as the main place where computer users
- and computer administrators are engaged in open security warfare, but in fact
- many companies spend large amounts of time fighting about security issues (for
- example, administration and the engineers are often at odds).</font></div>
- <p class="para"><font face="Tahoma" size="2">Given the limitations and drawbacks
- of firewalls, why would anybody bother to install one? Because a firewall is the
- most effective way to connect a network to the Internet and still protect that
- network. The Internet presents marvelous opportunities. Millions of people are
- out there exchanging information. The benefits are obvious: the chances for
- publicity, customer service, and information gathering. The popularity of the
- information superhighway is increasing everybody's desire to get out there. The
- risks should also be obvious: any time you get millions of people together, you
- get crime; it's true in a city, and it's true on the Internet. Any superhighway
- is fun only while you're in a car. If you have to live or work by the highway,
- it's loud, smelly, and dangerous.</font></p>
-
- </body>
-
- </html>
-