MOC: ISPs should protect Kuwaiti websites?

Posted by Bashar
October 5, 2008

Ministry of Communications representative in Kuwait have made an official weird announcement following several hacks on Kuwaiti websites, stating that the ministry and it’s governmental sites are not ready against hackers attacks (invitation for hackers), and then went on to explain why they are not ready, and why they can’t protect the banks and other corporation sites in Kuwait. He concluded finally by diagnosing the problem somehow as the fault of the ISPs! Saying they should work harder, and invest in providing security mechanisms for those sites!

 

Correct me if I’m wrong, but what does an ISP have to do with securing someone else’s website? If my site is vulnerable for SQL Injection, how is that the fault of the ISP. If my site has weak or blank passwords, if I am not patching my server with latest updates, or if my server has so many open ports inviting hackers to come in. What part of this actually relates to the ISPs?

 

It seems MOC was too scared of being hacked and blamed, having no clue about website security, and the actual role of the ISPs, they go on and point fingers to their “Usual Suspect”. The ISPs.

 

Well then, since it’s a matter of banks security, I guess that makes YouTube second priority to ISPs and MOC. Go figure protecting our sites :).  Meanwhile, we will set our passwords to blank, since it’s your responsibility.

Popularity: 10% [?]

Related Posts:

ISP, Kuwait, , , , ,

Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically to your feed reader.

Comments

Little knowledge is dangerous.

Another evidence that MOC officials are too old for this.

Comment by S0lo on October 5, 2008 @ 1:01 pm

Solo: I hope they are old and about to retire. My fear is they are young and have decades to retire

Comment by Bashar on October 5, 2008 @ 1:19 pm

MOC officials are still using cables and telexes.

They might learn about the Fax by the year 2012.

Comment by hilaliya on October 5, 2008 @ 2:36 pm

they shouldn’t blame ISPs … they should blame the internet rat (some fictional rat I blame whenever something wrong happens)

Comment by Q8GEEK on October 5, 2008 @ 2:45 pm

hilaliya: Really? I thought Fax is the hot technology in ministries :)

Q8GEEK: That could work as well.

Comment by Bashar on October 5, 2008 @ 3:33 pm

it’s alot easier to blame an isp that it is to say that there is no way of preventing hacks, sploits(as teh cooool kids say) and defacement of various websites.

Comment by KTDP on October 5, 2008 @ 4:07 pm

old or young, they always put the wrong people in the wrong places, willa ya rabi someone works in a computer store tells me “shtabeen bel linux, its a windows mobile”!

sigh

Comment by blasha on October 5, 2008 @ 7:11 pm

KTDP: My fear is, it’s not only easier, they seem to be ignorant about the fact this is irrelevant to the ISP.

blasha: :) I met some company owner once and when he saw Linux as required OS he had the weird look on his face: “Who uses Linux?”. Then I said you should support Firefox.
“And what’s that supposed to be?”

:P

Comment by Bashar on October 5, 2008 @ 7:48 pm

Well I think there’s a small part where ISPs get to be blamed but that’s only if they’re the host for your domain.

Also ISPs can provide crucial help (internet solutions including online security) but still we can’t hold that against them.

Comment by MacaholiQ8 on October 6, 2008 @ 10:56 pm

MacaholiQ8: Indeed, if they are the host, they are partially liable as a hosting company, not as an ISP.

Providing online security solution might be an extra charged for service, as consulting and such. But again, irrelevant. If my site has open ports, heck best ISP can’t do anything about it.

Comment by Bashar on October 7, 2008 @ 1:40 am

What a bunch of idiots, don’t they even know that ISPs refuse outside security intervention of any sort! There is no way they are going to allow an ISP to provide security for a bank/financial institution since it means they have access to their sensitive data or routing protocols!

And MOC is the main ISP of the country! So they are practically blaming themselves! idiots!

Comment by Marzouq on October 7, 2008 @ 1:50 pm

ISPs should held responsible if something like the comcast DNS incident

http://q8geeks.org/blog/lol-comcast/

but other than that, i think they should blame no one but the internet rat!

Comment by Q8GEEK on October 7, 2008 @ 1:57 pm

Marzouq: Yeah, which is why they jumped out blaming other ISPs :P

It’s one thing being ignorant. It’s another thing showing it to the world. Silence is a sign of wisdom people say. When you speak, you make mistakes :)

Q8GEEK: LOL at the post :). Guess we don’t have the passion for it.

Comment by Bashar on October 9, 2008 @ 12:21 am

What you say is correct, Bashar. But the problem is wider. There are fields where a help for web publishers is reasonable and doable.

Comment by Dr.Leos on May 20, 2009 @ 6:54 am

Dr.Leos: Hmm, I’m not sure exactly how. But at all rates, MOC is missing the whole point. Clearly they didn’t know what they’re saying :)

Comment by Bashar on May 21, 2009 @ 7:31 pm

Bashar: All claims should be understood in contexts, even sometimes the “hidden” content is more important than the “visible” one. :-)

Comment by Dr.Leos on May 22, 2009 @ 3:23 am
Leave a comment