The 10 Immutable Laws of Security

[tekno]

I guess this is would be something like the 10 commandments, but in the security world.

or something like that.......

Law #1: If a bad guy can persuade you to run his program on your computer, its not your computer anymore.
Law #2: If a bad guy can alter the operating system on your computer, its not your computer anymore.
Law #3: If a bad guy has unrestricted physical access to your computer, its not your computer anymore.
Law #4: If you allow a bad guy to upload programs to your web site, its not your web site any more.
Law #5: Weak passwords trump strong security.
Law #6: A machine is only as secure as the administrator is trustworthy.
Law #7: Encrypted data is only as secure as the decryption key.
Law #8: An out of date virus scanner is only marginally better than no virus scanner at all.
Law #9: Absolute anonymity isn't practical, in real life or on the web.
Law #10: Technology is not a panacea.

**EDIT***
Of course with the assistance of many intelligent members here at AO, if you happen to break any of these "commandments" we can help you get your system back, and help you stop those "Bad Guys"!


Full Article: The 10 Immutable Laws of Security

[skiddieleet]

Good post. You should have added that with the assistance of AO, if you break any of these commandments, it is possible to get your computer back.

[tekno]

very true.

how selfish of me

thanks h3r3tic