- If a bad guy can persuade you to run his program on your computer, it’s not your computer anymore
- If a bad guy can alter the operating system on your computer, it’s not your computer anymore
- If a bad guy has unrestricted physical access to your computer, it’s not your computer anymore
- If you allow a bad guy to upload programs to your website, it’s not your website any more
- Weak passwords trump strong security
- A computer is only as secure as the administrator is trustworthy
- Encrypted data is only as secure as the decryption key
- An out of date virus scanner is only marginally better than no virus scanner at all
- Absolute anonymity isn’t practical, in real life or on the Web
- Technology is not a panacea
Fonte: Microsoft Technet