Prev: Is MBAM is a 100% safe application?
Next: The End of m.p.s.v.
From: DAngel on 3 May 2010 15:42
I always find myself wondering why legitimate institutions send HTML based
emails, I am referring to non-mass mail emails (Which seems to dampen the
benefits even more and still teach users that HTML emails can, in fact, be
legitimate in nature. With the filtering technologies, safe practice
protocols, and epidemic levels of social engineering on today's web, you
would think such practices would be discouraged. I have to admit that I am
young, still a student, and posses a very security centric view in regards to
IT. With the widespread use of tools like Netcat, compromised mailservers
spewing spam, and bots adding to the potential vulnerabilities it seems like
very little training is given to many of the end users I speak with. Feel
free to disagree, I would rather learn from a veteran than hold a pedantic,
but incorrect view on such topics.
From: David H. Lipman on 3 May 2010 16:41
From: "DAngel" <DAngel(a)discussions.microsoft.com>

| I always find myself wondering why legitimate institutions send HTML based
| emails, I am referring to non-mass mail emails (Which seems to dampen the
| benefits even more and still teach users that HTML emails can, in fact, be
| legitimate in nature. With the filtering technologies, safe practice
| protocols, and epidemic levels of social engineering on today's web, you
| would think such practices would be discouraged. I have to admit that I am
| young, still a student, and posses a very security centric view in regards to
| IT. With the widespread use of tools like Netcat, compromised mailservers
| spewing spam, and bots adding to the potential vulnerabilities it seems like
| very little training is given to many of the end users I speak with. Feel
| free to disagree, I would rather learn from a veteran than hold a pedantic,
| but incorrect view on such topics.

Actually, many large enterprise establishments force text-only email.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp


From: "FromTheRafters" erratic on 3 May 2010 16:57
"DAngel" <DAngel(a)discussions.microsoft.com> wrote in message
news:C47A8BD8-2AB4-4A01-BC6C-26CB22B2F9AF(a)microsoft.com...
>I always find myself wondering why legitimate institutions send HTML
>based
> emails, I am referring to non-mass mail emails (Which seems to dampen
> the
> benefits even more and still teach users that HTML emails can, in
> fact, be
> legitimate in nature. With the filtering technologies, safe practice
> protocols, and epidemic levels of social engineering on today's web,
> you
> would think such practices would be discouraged.

It seems to me that generally speaking the IT industry (computer
security specifically) has given up completely on what was once thought
to be the *only* answer - user education. Forget that now, today the
trend is toward enforcement of best practices by software policy.

> I have to admit that I am
> young, still a student, and posses a very security centric view in
> regards to
> IT. With the widespread use of tools like Netcat, compromised
> mailservers
> spewing spam, and bots adding to the potential vulnerabilities it
> seems like
> very little training is given to many of the end users I speak with.

This would be IMO the tangible evidence of my above statement.

> Feel
> free to disagree, I would rather learn from a veteran than hold a
> pedantic,
> but incorrect view on such topics.

I agree, and the problem is administrators that don't even know that
they are administrators or what administrator are *supposed* to do
(i.e., home users).


 | 
Pages: 1
Prev: Is MBAM is a 100% safe application?
Next: The End of m.p.s.v.