An audit of the Department of Homeland Security's system controls for remote access has found an alarming absence of configuration guidelines and several unpatched software products that put the DHS at risk of malicious hacker attacks.
By Ryan Naraine December 17, 2004, eWeek dot Com In a report made public this week, the Office of Inspector General in the DHS warned that the audit turned up weaknesses in the systems used to avoid unauthorized access. "Due to these remote access exposures, there is an increased risk that unauthorized people could gain access to DHS networks and compromise the confidentiality, integrity, and availability of sensitive information systems and resources," the report said. The OIG also discovered that the DHS does not provide adequate or effective system security controls over remote access to its computer systems and data.
The only easy day was yesterday.
...some do, some don't; some will, some won't (WR)