Firewall Wizards mailing list archives
Re: The Morris worm to Nimda, how little we've learned or gained
From: "Richard Johnson" <rdump () river com>
Date: Thu, 3 Jan 2002 21:44:46 -0700
At 13:44 -0700 on 1/3/02, Marcus J. Ranum wrote:
I can tell you a few of the indicators that I'm looking for which will indicate that progress is about to be made in security: ... 3) The first time customers place and enforce a puchase ban on a software product notorious for insecurity and unreliability ... Note that not only do I see no sign of the above happening, I see signs in the industry and community that steps are being taken to _prevent_ some of the above. Most notably #5 and possibly #3.
Some organizations have made progress on #3. Outlook and Outlook Express came close to being banned at ucar.edu due to the severe time drain caused by always having to clean up after the latest Outlook-enabled virus. Sadly, the entrenched convenience argument was used in conjunction with the lack of enforceability cop-out to water the ban idea down to a "we disrecommend the use of Outlook and Outlook Express."
I expect to be dead of old age (at a healthy age, mind you!) before major progress in computer security is widespread.
I'm hoping to live long enough to see Outlook banned, or fixed so it doesn't deliberately conflate the user's desire to "open this data so I can look at it" with "execute all the malicious code in this worm message." In the meantime, it's virus scanner time. Sheesh, what an ineffectual cop-out. Richard _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://list.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: The Morris worm to Nimda, how little we've learned or gained Marcus J. Ranum (Jan 03)
- Re: The Morris worm to Nimda, how little we've learned or gained Paul D. Robertson (Jan 04)
- Re: The Morris worm to Nimda, how little we've learned or gained Richard Johnson (Jan 04)
- Re: The Morris worm to Nimda, how little we've learned or gained Ryan Russell (Jan 05)
- Re: The Morris worm to Nimda, how little we've learned or gained Frederick M Avolio (Jan 04)
- Re: The Morris worm to Nimda, how little we've learned or gained Adam Shostack (Jan 04)
- RE: The Morris worm to Nimda, how little we've learned or gained robert_david_graham (Jan 04)
- RE: The Morris worm to Nimda, how little we've learned or gained Ryan Russell (Jan 05)
- OT: Re: The Morris worm to Nimda, how little we've learned or gained Roelof JT Jonkman (Jan 05)
- Re: OT: Re: The Morris worm to Nimda, how little we've learned or gained H. Morrow Long (Jan 06)
- Host Based Packet Filters (was: OT: The Morris worm to Nimda, how little we've learned or gained) Robin S. Socha (Jan 06)
- safety of unidirectional NT trusts hermit921 (Jan 15)
- Re: safety of unidirectional NT trusts Jonas Anden (Jan 16)
(Thread continues...)