Lists

Open Menu Close Menu

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

Re: [Fed-Talk] Java. again

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fed-Talk] Java. again

Subject: Re: [Fed-Talk] Java. again
From: Todd Heberlein <email@hidden>
Date: Fri, 28 Sep 2012 09:33:01 -0700

On Sep 28, 2012, at 6:56 AM, "Rubin, Bruce Civ USAF AFMC AFRL/RIEBA" <email@hidden> wrote:

At the USAF Research Lab Information Directorate, a cyber center of excellence, IMHO, the most important use of it is to do our time sheet input every two weeks. While I dislike vulnerabilities, I do like getting paid.

Getting paid is good :-)

I used to support several AFRL security monitoring projects in the late 1990s and early 2000s, including EPIC, EPIC2, AIDE ACTD, and AFED. Those were fun times.

It seems that a reasonable step for an enterprise would be to support white listing sites from which you can get Java code and block the rest at the border. I recall both Finjan and Secure Computing firewalls used to support features like this. Far from a perfect solution, but maybe a first step??

Todd

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden

References:
	>[Fed-Talk] Java… again (From: Todd Heberlein <email@hidden>)

Prev by Date: Re: [Fed-Talk] JavaŠ again
Next by Date: Re: [Fed-Talk] JavaŠ again
Previous by thread: Re: [Fed-Talk] JavaŠ again
Next by thread: [Fed-Talk] Updated smartcard installer?
Index(es):
- Date
- Thread