Just some quick observations here, maybe I’ll have time to write about them in more depth in the future.
- Information Security does not flow from Policy. It flows from Policy Implementation.
- You can have secure information without policy, and you can have policy but no secure information. They are not mutually inclusive.
- Always remember to use hashes in your Perl scripts to cache data that you look-up (DNS, whois, LDAP, whatever). It will make everything faster, trust me on this.