Joe Sick Posted January 28, 2006 Share Posted January 28, 2006 Caution, pdf alert! http://www.dhs.gov/interweb/assetlibrary/OIG_06-20_Dec05.pdf And an article on the pdf... DHS’ automated network security tools—which create warnings when detecting a possible breach of IT security—are programmed to look for pornographic keywords such as “oral.” But sometimes alerts are generated when the keywords are embedded in other words, such as in “behavioral,” the report said.The security warnings are generated automatically by network security tools and are intended to help secure IT systems and detect hacking attempts and viruses. DHS is not using those tools effectively, the audit found. “DHS had not finalized procedures for identifying the source of those messages, or for coordinating appropriate actions with other technical and security organizations,” the IG wrote. “DHS systems and data are at increased risk of service disruptions and security-related events if automated network security tools are not utilized effectively.” The number of security events increased dramatically in the last year. In July 2004, DHS was receiving about 5.4 million security event messages per month. In February, March and April 2005, the months in which the audit took place, there were 65 million such messages, the report said. In addition, the DHS network did not have its security accreditations and certifications, the report added. DHS officials agreed with the findings and recommendations. The inspector general also released a report on security risks for selected sensitive but unclassified mission-critical databases at DHS, and another on security vulnerabilities to the U.S. Visit visitor screening program. http://www.washingtontechnology.com/news/1_1/daily_news/27869-1.html Nothing earth shaking, it just sounds funny to me. I figured the number would have been higher during Ashcroft. Link to comment Share on other sites More sharing options...
airborneskins Posted January 28, 2006 Share Posted January 28, 2006 :yikes: :paranoid: Link to comment Share on other sites More sharing options...
halter91 Posted January 28, 2006 Share Posted January 28, 2006 There is nothing wrong with a little porn. Link to comment Share on other sites More sharing options...
Thiebear Posted January 28, 2006 Share Posted January 28, 2006 I handle all of the security at my company: The tools are just that. A GYnormous amount of default tools you need to tweak and twist until if fits your environment. AND THEN: They come out with a patch/upgrade that screws everything up for weeks at a time. Mcafee 3.6 came out and I had to rip 20 production SQL servers off of it as it was consuming 30% CPU. With nothing reported anywhere. (Buffer Overflow was re-enabled on the upgrade). Now that the longwinded not important to the issue is done with: We don't block porn... thats just wrong. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.