On February 2, Jeff Hellige wrote:
I guess
my opinion, which isn't very popular here, is that unless
permission has been explicitly given, one should not assume permission
to a local LAN, or internet access through the LAN. I do recognize that
my position is due to working frequently at secured sites. One such
facility, in San Antonio, prohibits ANY access to their network by
non-employees. Contractors must tell a technician what commands to
enter, and which buttons to click.
I agree with the above. Nobody should ever just assume it is
ok to do whatever they wish on somebody elses network withouth
getting explicit permission first. I have similar problems with
contractors in a similar secure building. If for no other reason
than it is bad etiquette to impose yourself into someone elses area
without permission to do so.
However, the admin must assume that someone WILL just walk in and do
whatever they wish, when the admin least expects it...some people do
it because they're assholes, some just do it without thinking because
they weren't raised to have any manners. One must strive to make the
network resilient to such crap.
Moral of the story: if you're anal about this sort of thing, don't leave
unguarded or unused network ports "hot".
Sellam Ismail Vintage Computer Festival
------------------------------------------------------------------------------
International Man of Intrigue and Danger