[NTLUG:Discuss] OT? security comparsion

MadHat madhat at unspecific.com
Wed Nov 16 11:38:44 CST 2005 

On Nov 16, 2005, at 11:04 AM, Neil Aggarwal wrote:
> Greg:
>
> I did not dismiss SSL in any of my comments.
>
> He was asking if email or fax was more secure than an SSL connection
> and I stated that email was not.

Fax is not more secure, unless you know where it is going.  About  
like SSL it is about how the data is handled on the far end.  If you  
are sending a FAX to a general fax machine, anyone in the company may  
see it.  Do you know if the janitor, who makes minimum wage, has  
access to the faxes?  Do they shred the faxes after the data is  
entered somewhere else or do they just through them away?  Transport  
is only one issue to worry about.


>
> 	Neil
>
> --
> Neil Aggarwal, JAMM Consulting, (214) 986-3533, www.JAMMConsulting.com
> FREE! Valuable info on how your business can reduce operating costs by
> 17% or more in 6 months or less! http://newsletter.JAMMConsulting.com
>
> -----Original Message-----
> From: discuss-bounces at ntlug.org [mailto:discuss-bounces at ntlug.org]  
> On Behalf
> Of Greg Edwards
> Sent: Wednesday, November 16, 2005 9:55 AM
> To: NTLUG Discussion List
> Subject: Re: [NTLUG:Discuss] OT? security comparsion
>
> Neil Aggarwal wrote:
>> Terry:
>>
>> Using your analogy, I think it is like putting the key in an  
>> envelope,
>> writing the word "Key" on the outside, and leaving it on top of the
> doormat.
>>
>> Anyone that is looking will have full access to whatever you are  
>> sending.
>>
>> If they are looking the in the first place, they have some  
>> mischeivious
>> or malicious intent.
>>
>> 	Neil
>>
>
> Don't be so quick to dismiss the value of SSL.  As well stated  
> earlier,
> it's not SSL and the information transferred that hackers get.   
> They get
> it from the back end of systems they've broken into.  I don't know the
> percentages of which OS is cracked more often, but I'd think my  
> luck guess
> of M$ being in the 95%+ would be right ;)
>
> If you do insist on sending zip files encrypt them first.  Let your
> receivers know off line what the encryption key is and they'll be  
> able to
> decrypt and uncompress with "unzip".  Your unzip does have to have the
> encryption option compiled in.
>
> -- 
> Greg Edwards
> New Age Software, Inc. - Software Engineering Services
> http://www.nas-inet.com
>
> _______________________________________________
> https://ntlug.org/mailman/listinfo/discuss
>
>
> _______________________________________________
> https://ntlug.org/mailman/listinfo/discuss
>

--
MadHat (at) Unspecific.com, C²ISSP
E786 7B30 7534 DCC2 94D5  91DE E922 0B21 9DDC 3E98
gpg --keyserver wwwkeys.us.pgp.net --recv-keys 9DDC3E98

More information about the Discuss mailing list