<html>

  <head>

    <meta content="text/html; charset=ISO-8859-1"

      http-equiv="Content-Type">

  </head>

  <body text="#000000" bgcolor="#FFFFFF">

    <div class="moz-cite-prefix">On 03/21/2013 10:47 PM, John Pilman

      wrote:<br>

    </div>

    <blockquote

cite="mid:CABrv3tTyzKOV=eVaDwtW1QnAsibsugHt=gf0NxsPmeYhvsEVtA@mail.gmail.com"

      type="cite">

      <div dir="ltr"><br>

        <div class="gmail_extra"><br>

          <div class="gmail_quote">On Thu, Mar 21, 2013 at 7:09 PM, Jay

            Lozier <span dir="ltr">&lt;<a moz-do-not-send="true"

                href="mailto:jslozier@gmail.com" target="_blank">jslozier@gmail.com</a>&gt;</span>

            wrote:<br>

            <blockquote class="gmail_quote" style="margin:0 0 0

              .8ex;border-left:1px #ccc solid;padding-left:1ex">

              <div bgcolor="#FFFFFF" text="#000000">

                <div class="im">

                  <div>On 03/21/2013 06:30 PM, Jim Kinney wrote:<br>

                  </div>

                  <blockquote type="cite"><br>

                  </blockquote>

                </div>

                My question is who needs to manage this off site? Most

                sewage and water treatment plants do not need this; the

                control facility should be on site. <br>

                <div class="im">

                  <blockquote type="cite">

                    <div class="gmail_quote">

                      <div><br>

                      </div>

                    </div>

                  </blockquote>

                </div>

              </div>

            </blockquote>

          </div>

        </div>

        <div class="gmail_extra" style="">Maybe in China, but here the

          direction is toward less manpower when feasible. &nbsp;It is

          feasible, just not implemented with enough security in mind.

          Many, many industrial control systems are connected through

          the internet and have been for quite a while. &nbsp;Some security

          come from the fact that older system weren't smart enough to

          support today's exploits. (They don't have CPM, DOS, Windows,

          Linux, BSD, UNIX or OSX OS) (PolyForth, OpenVMS, AmigaOS but I

          digress)</div>

        <div class="gmail_extra" style=""><br>

        </div>

        <div class="gmail_extra" style="">I do think the answers to most

          of these control system connectivity problems are pretty

          simple. &nbsp;The first steps being:</div>

        <div class="gmail_extra" style="">

          1. turn off unused services</div>

        <div class="gmail_extra" style="">2. firewall</div>

        <div class="gmail_extra" style=""><br>

        </div>

        <div class="gmail_extra" style="">With the cost of devices where

          they are now, I don't see why a firewall should be more than

          $50. &nbsp;However, any industrial facility, at least in this

          country, should be able to install a $5000 firewall if that is

          all they can find.&nbsp;</div>

        <div class="gmail_extra" style=""><br>

        </div>

        <div class="gmail_extra" style="">...John</div>

        <br>

      </div>

    </blockquote>

    Most cheap home routers I have seen have a firewall built in and

    they are available at Wal-mart, Amazon, Newegg for under $100.

    Surely, the cost of a firewall is not the problem.<br>

    <pre class="moz-signature" cols="72">-- 

Jay Lozier

<a class="moz-txt-link-abbreviated" href="mailto:jslozier@gmail.com">jslozier@gmail.com</a></pre>

  </body>

</html>