posted on Dec, 18 2006 @ 04:40 AM
As people have been saying in several other threads it is most likely that the servers dealing with sensitive information are not connected to the
Internet. They may have machine there for normal Internet traffic, but even this would run on the SIPRNET or SCINET protocol, which I think you need
proprietry hardware to access.
Although they don't actually have to be completely shut off from the Internet. In my work we have set up Virtual Lans( a sort of mini network), each
Virtual Lan is inaccessible from other Virtual Lans for security. This prevents other departments from seeing what others are doing. Aswell as this
there are three proxy servers which block most traffic coming in. So essentially from outside my workplace you want to get in, you need to know an IP
address of a machine within this network, otherwise it will be extremely difficult to crack.
This works very well as a security model, there has been no breakins afaik. The only machine that has been hacked was the one given direct access to
the Internet. Everything else safely hides behind the proxy servers.
None of this stuff is *impossible* to hack. It is just difficult. Anything is possible. One thing that people overlook are Router and Switches. These
are becoming the weakest links in a network security chain. Just search for Cisco IOS exploits. If you own a router, you have a strong chance of
owning the network.
sip