This talk about security reminds me of my pre-engineering Unix Admin days. (not to hijack or anything, all in good fun)
HeadHoncho- We need to make these systems more "Secure" Mr. Azar. Is it true we have Telnet and FTP enabled on these systems.
Me (Mr. Azar)- Why yes, telnet is enabled, I'd prefer performing my duties in my Office rather than in the Datacenter with an Arctic parka, I'm sure the DBA's would feel the same way. As far as FTP is concerned I only start/stop that service when I need to move a file within the companies network.
HeadHoncho- I think we need to keep these services off if thats possible. We need to be as Secure as we possibly can....
Me- [sarcasm]While were at it why don't I disconnect the network cables all together.
HeadHoncho- (taking me seriously) If that's what we need to do....
Me- Hell, why don't I just shutem all down, dig a 20ft whole in the basement of the parking garage, toss em all in, and fill with concrete!![/sarcasm]
HeadHoncho-(finally detecting sarcasm)I don't find your comments very apropriate Mr. Azar.....
Me- Well, I don't find it apropriate for you to dictate what kind of security we need on an internal vlan with no direct connection to the outside world.
True Story, BTW there is a moral to the story.
