Skip Links

Network World

  • Social Web 
  • Email 
  • Close

Network managers: good worries, disappointing lapses

Security managers exhibiting risky behaviors, survey shows
'Net Insider By Scott Bradner , Network World , 05/06/2008
Scott Bradner

VanDyke Software recently published results of the fifth annual edition of its survey of network and system administrators the company hired Amplitude Research to conduct and analyze. 

Most of the survey questions concerned security, as it should be, considering the importance of that topic. The general results (also covered by Network World’s Denise Dubie) are generally realistic -- managers felt issues that they might have an ability to affect were more important than some of the issues (like user training) that managers often feel are impossible or at least outside their ability to control. But behind the headlines there were some results I found surprising and not just a little disappointing.

Most usefully, because VanDyke has been commissioning this survey for five years, one can get a sense of the changing management pain points. Issues that managers who answered the survey this year felt to be most important were securing remote access (up in importance over the last five years), keeping virus definitions up to date (down quite a bit over the same period) and monitoring intrusions (which has stayed about the same).

The biggest decline in importance over the five years the survey has been run is patching systems. I expect this is not because the need to patch has decreased in any way but because patching systems are now quite mature and thus are not a significant worry. I also expect that the drop in importance of keeping virus definitions up to date has happened for the same reason.

For all the focus on real problems mentioned by the survey, a few important ones seem not to be getting proper attention.

More than a quarter of network managers admit that they are still configuring their network devices using insecure telnet, and more than a third are using insecure HTTP rather than using secure SSH or HTTPS.

While this is down quite a bit from five years ago it is still far too high. I only hope that there are no cases where the network manager has to access the network devices while at a conference or hotel. It's easy to hand control of your network devices to a random observer in such cases. A tale from long ago illustrates the potential for mischief when passwords get leaked, as they can be with telnet and HTTP.

Partner Content

Brilliantly simple security and control solutions for email, web and endpoint

www.sophos.com

Stopping data leakage

Learn how to exploit your current security investment to control the information that flows into, through and out of your network.

Download the white paper.

Why detection rates aren't enough

Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask to prospective vendors to get the right endpoint solution.

Download the white paper.

Unauthorized applications: Taking back control

Employees installing and using unauthorized applications like IM, VoIP, games and peer-to-peer file-sharing applications cause many businesses serious concern. How do you control these applications?

Download the white paper.

Comments (2)
Login
Forgot your account info?

One can only wonder where their auditors are.By Anonymous on July 13, 2008, 6:28 amNot much to wonder here. All too frequently the entity doing the work is also auditing and/or certifying/accrediting their own work. That, surprisingly to the uninitiated,...

Reply | Read entire comment

Practical SecurityBy tuomoks on May 7, 2008, 2:40 pmPractical security is difficult, period! Point security is not but read on.. I know, this study was about network and systems security but as long as those are seen...

Reply | Read entire comment

View all comments

Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed
Save The Date!
What They Are Saying

Intel...I guarantee you will never ever see a customer using Wimax the way it was laid out by Intel 6...- Anonymous

Join the Discussion