Re: Personal Firewall Day?

[Paul Robertson <proberts () patriot net>]

On Sat, 4 Oct 2003, Charles Miller wrote:

> Interesting timing:

But completely not related.

> 'To combat the problems with patch management, however, the company 
> [Microsoft] is moving to a "securing the perimeter" strategy where it 

My initial reaction was "ISA isn't selling well enough, what can we do?"

But then I realized they really just don't get it.  Trustworthy Computing 
Initiative and all.

Most of the virus activity could be handled in the newer OS' by removing 
the execute bit from attachments when they're saved, and not allowing the 
autolaunch of half a bazillion different file matchings from whatever 
directory mail saves to.  It wouldn't even take them a week to code and 
test the fixes.  Heck, they could put Explorer (the local one, not the 
Internet one) on a list of execptions and be done for 99% of users.

Worms are another matter.  I think that the work the OpenBSD folks have 
been doing is interesting, and I think that exec-shield for Linux will 
pretty much make the Linux worm a thing of the past.  Microsoft, however 
has the problem that they really want to own the world, and therefore 
Palladium is their only answer to all things security.

Paul
-----------------------------------------------------------------------------
Paul D. Robertson      "My statements in this message are personal opinions
proberts () patriot net      which may have no basis whatsoever in fact."
probertson () trusecure com Director of Risk Assessment TruSecure Corporation

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards