Quote Marc Stiegler

This commit is contained in:
Christopher Lemmer Webber 2019-07-18 15:38:25 -04:00
parent 07616a4328
commit affeb7885f
No known key found for this signature in database
GPG Key ID: 4BC025925FF8F4D3

View File

@ -400,6 +400,17 @@ structurally insufficient to be the /foundation/ of our approach.
*** Blocklists, allow-lists, and perimeter security
#+BEGIN_QUOTE
"With tools like access control lists and firewalls, we engage in
'perimeter defense', which is more correctly described as 'eggshell
defense'. It is like an eggshell for the following reason: while an
eggshell may seem pretty tough when you tap on it, if you can get a
single pinhole anywhere in the surface, you can suck out the entire
yoke. No wonder cybercrackers laugh at our silly efforts to defend
ourselves. We have thrown away most of our chances to defend
ourselves before the battle even begins."
-- Marc Stiegler, [[http://www.skyhunter.com/marcs/ewalnut.html][E in a Walnut]]
#+END_QUOTE
*** Access Control Lists