undefined | Better HN

0 pointsburan771y ago0 comments

Because of that one cobbled together system, or old network MFP that sends to mail, that's needed for a whole bunch of stuff, can't authenticate, and someone decided it's too expensive to replace for such a small attack surface. Until the problem costs more than the solution large organizations don't move by design. This is usually officially the benchmark: what costs more.

0 comments

6 comments · 1 top-level

maccard1y ago· 5 in thread

In my experience, there’s a random server that nobody knows who maintains it offhand, including the person who maintains it. People ask, and it just doesn’t go anywhere. Until something like this happens. It’s nothing to do with costs, its just an oversight

buran77OP1y ago

> there’s a random server that nobody knows who maintains it offhand, including the person who maintains it

It makes no sense that you'd keep an insecure service because you forgot someone needs it. You turn it off and the reminder will promptly come to you. After this it's a decision, not oversight.

> It’s nothing to do with costs, its just an oversight

The article suggests that their internal unauthenticated SMTP was there by design, not oversight, together with an authenticated (presumably external) one. Some assessment deemed addressing the risk from the unauthenticated internal one not worth the cost and effort.

> People connecting through our VPN have access to an internal-only SMTP gateway machine that doesn't require SMTP authentication [...] previous phish spammers have exploited some combination of webmail and authenticated SMTP.

maccard1y ago

> It makes no sense that you'd keep an insecure service because you forgot someone needs it. You turn it off and the reminder will promptly come to you. After this it's a decision, not oversight.

You’re assuming an org that had a policy my in place for this which was followed all along, and not that it’s a piecemeal service barely held together by dreams and prayers. My experience with university It departments is there’s an _incredible_ amount of “dunno who that belongs to but don’t touch it because it might be important” going on.

1 more reply

arccy1y ago

(opportunity) cost to dig into ownership

ivan_gammel1y ago

1. Carefully establish the one critical data flow the whole business depends on. It may cost some time, but this one you have to protect by all means, so stakeholders won't mind.

2. As for the rest, take them down one by one and see what breaks. Got a call to internal support hotline? "Ooops, sorry, we will turn it on and let's chat about it soon."

There can be a few announcements in advance to shift the blame before (2): "Declare yourself or face consequences" (ChatGPT will write a nicer email). If you are on good terms with CFO, the noise won't matter. In fact, many people will thank you, when their weird stuff is taken over for care by IT.

maccard1y ago

By that logic everything is a cost or an opportunity cost. I think the idea behind an opportunity cost is lost if you over apply it

j / k navigate · click thread line to collapse

0 comments

6 comments · 1 top-level

maccard1y ago· 5 in thread

buran77OP1y ago

> there’s a random server that nobody knows who maintains it offhand, including the person who maintains it

It makes no sense that you'd keep an insecure service because you forgot someone needs it. You turn it off and the reminder will promptly come to you. After this it's a decision, not oversight.

> It’s nothing to do with costs, its just an oversight

maccard1y ago

> It makes no sense that you'd keep an insecure service because you forgot someone needs it. You turn it off and the reminder will promptly come to you. After this it's a decision, not oversight.

1 more reply

arccy1y ago

(opportunity) cost to dig into ownership

ivan_gammel1y ago

1. Carefully establish the one critical data flow the whole business depends on. It may cost some time, but this one you have to protect by all means, so stakeholders won't mind.

2. As for the rest, take them down one by one and see what breaks. Got a call to internal support hotline? "Ooops, sorry, we will turn it on and let's chat about it soon."

maccard1y ago

By that logic everything is a cost or an opportunity cost. I think the idea behind an opportunity cost is lost if you over apply it

j / k navigate · click thread line to collapse