Network managers are increasingly ignorant about internet security, according to a leading vendor.

Amir Belkhelladi, head of security practice at Lucent, said: "Stupid network administrators are a bigger problem than smart hackers. There is a real lack of skilled people in internet security. There are few people who truly understand TCP/IP nowadays, and the level of knowledge of IT professionals is going down month by month."

Lucent believes that it is up to systems administrators within companies to educate users. Belkhelladi argued that it can cost £30,000 to install a firewall, but that it costs much less to train employees in internet security.

"Users are the weakest link and hackers will always try the easiest way to get in. Firewalls are there to enforce policies. If a company doesn't have a policy there is only so much you can do. Senior management doesn't take security seriously," he said.

"Internet servers are increasingly complex and are being run by people with less talent," he added.

But Alan McDonald, network services manager at Stirling Council, disagreed. "We've got firewalls coming out of our ears," he said. "Responsible network managers keep abreast of all developments in internet security. We're not professional hackers but we know what's going on in TCP/IP."

He added that senior management might not understand the importance of internet security, but that network managers should inform them.

First published in Network News