On Sat, 29 Aug 2020 17:03:20 +0100
The Natural Philosopher  wrote:

> The difference between theoretical risk and practical risk is huge - as
> anyone who has tried to actually hack anything or run a public facing
> server will tell you.In the real world the quality of attacks is
> abysmally low.

 Many years ago now I read a paper on the subject of viruses, worms
et al that made the point that a well written penetration should go
unnoticed as it silently hijacks some proportion of your resources. The
paper went on to describe in detail the principles behind what is now known
as a botnet, a large set of compromised machines and a private encrypted
virtual network via which they may be controlled. There are a lot of them
around these days and renting use of them is commonplace.

 Anyone who runs a public facing server will certainly tell you that
they have logs full of long obsolete script-kiddy attacks on misconfigured
servers and injection attack probes and so on. However if they are ever
successfully compromised by a professional the chances are they'll never
know anything about it.

--
Steve O'Hara-Smith                          |   Directable Mirror Arrays
C:\>WIN                                     | A better way to focus the sun
The computer obeys and wins.                |    licences available see
You lose and Bill collects.                 |    http://www.sohara.org/

--- SoupGate-Win32 v1.05