The vast amount of functionality that is
provided by organizations??™ networking, database, e-mail, instant messaging, remote
access, and desktop software is also the thing that attackers use against them. There is an
all too familiar battle of functionality versus security within every organization. This is
why in most environments the security officer is not the most well-liked individual in the
company. Security officers are in charge of ensuring the overall security of the environment,
which usually means reducing or shutting off many functionalities that users love.
Telling people that they cannot use music-sharing software, open attachments, use applets
or JavaScript via e-mail, or disable the antivirus software that slows down software
Gray Hat Hacking: The Ethical Hacker??™s Handbook
10
Chapter 1: Ethics of Ethical Hacking
11
PART I
procedures, and making them attend security awareness training does not usually get you
invited to the Friday night get-togethers at the bar. Instead these people are often called
???Security Nazi??? or ???Mr. No??? behind their backs. They are responsible for the balance
between functionality and security within the company, and it is a hard job.
The ethical hackers??™ job is to find many of these things that are running on systems
and networks, and they need to have the skill set to know how an enemy would use
them against the organization.
Pages:
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69