Lack of Understanding of Computers or Networks

Not all network or system intrusions are a directed effort. Sometimes, a user initiates a security breach through a lack of understanding. For example, an uneducated user with administrative rights on a Microsoft Windows 2000 or Microsoft Windows XP system can easily remove or change critical settings, resulting in an unusable system. Having too much trust combined with a lack of understanding can be equally dangerous. Often, network administrators open up their entire network to someone else when access to a single machine is all that is required. A poorly trained or inexperienced firewall administrator can easily open connectivity to a point that the firewall becomes ineffective. Another possibility is that a temporary firewall opening becomes a permanent opening because of a lack of procedures to ensure that temporary openings are closed after the need has passed. Although some security breaches occur without malicious intent, a good security policy can help prevent them.

0 0

Post a comment