Ok — now that I’ve got your attention.
I kid you not, I was sitting in a vendor meeting this morning where the vendor (who shall remain nameless) expressed some opinions on crypto which just about made me fall over.
In no particular order:
1/ Eight layers of encryption are automatically better than 1.
2/ MPLS networks are private.
3/ LAN Extension connections through a telco are “point-to-point”, and private.
4/ Network designs with 4 firewalls in series are the best.
5/ You can “see” past the first few firewalls with traceroute (8).
6/ Normally we install a mini-tower firewall.
7/ We don’t have a review of our firewall available, no, it’s not a commercially available product.
8/ Firewalls provide: “redundancy and security and everything else.”
9/ We’re not allowed to use more than 128bit encryption because the government needs to be able to decrypt it to prevent terrorism.
and best of all…
10/ We won’t use SSL because 128bit SSL can be cracked in 3 minutes… by one of our engineers.
[tags]crazy people, vendors, baloney, shoot me[/tags]