This comes at an interesting time for me. I'm reading the CISSP (Certified Information Systems Security Professional) exam book*. In chapter 1, there is a blurb that goes:
To have viable accountability, you must be able to support your security in a court of law. If you are unable to legally support your security efforts, then you will be unlikely to be able to hold a human accountable for actions linked to a user account.
It goes on to say:
The point of security is to keep bad things from happening while supporting the occurrence of good things. When bad things do happen, organizations often desire assistance from law enforcement and the legal system for compensation. To obtain legal restitution, you must demonstrate a crime was committed, that the suspect committed that crime, and that you took reasonable efforts to prevent the crime. This means your organization's security needs to be legally defensible... Ultimately, this requires a complete security solution that has strong multifactor authentication techniques, solid authorization mechanisms, and impeccable auditing systems...
Basically, the upshot of this whole thing is "if you don't try hard enough to secure your stuff, then no one is going to help you out when the eventual security breach happens." And it's not wrong. Look at how many companies are getting blamed and sued for breaches of their data (Target, Yahoo, etc.) because they left one door open or weren't paying enough attention. Should we obscure our ports? Absolutely. It may not stop anything, but it will help the company prove (when the breach happens) that we did everything in our power to make it more difficult for anyone to actually access the servers. And that alone might be enough to hold the hackers accountable in a court of law, even if it doesn't stop them in the first place.
*(ISC)2 Official Study Guide - CISSP Certified Information Systems Security Professional Official Study Guide, Seventh Edition, James Michael Stewart, Mike Chapple, Darril Gibson, Sybex, 2015.
Brandie Tarvin, MCITP Database AdministratorLiveJournal Blog: http://brandietarvin.livejournal.com/[/url]On LinkedIn!, Google+, and Twitter.Freelance Writer: ShadowrunLatchkeys: Nevermore, Latchkeys: The Bootleg War, and Latchkeys: Roscoes in the Night are now available on Nook and Kindle.