Re: [sean () donelan com: Symantec detected Slammer worm "hours" before]

[Ron DuFresne <dufresne () winternet com>]

On Thu, 13 Feb 2003 tecky () thedigitalrealities com wrote:

> Ok .... like everyone is saying ... if they "detected it" hours before hand ... why was no Network Admin advised ... 
> no data posted on there sarc page ... until much later in the day / week???
>
> Just some simple food for thought...

Because you don;t pay for their services <smile>  contracts, contracts and
money.  It's the way things are going.  Now the question is, how many of
the different 'providers' of security 'info' and even some of the
application folks <ISC, etc> are shaking hands and trading information
such that the "paying" clients of a number of these companies are advised
of issues in advance, as is claimed in this thread.  thuse removing the
nesscesity of a compay to contract with symantic, CERT, ISS, ISC, etc...
to fully be kept as informed as possible.

Thanks,

Ron DuFresne
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
        ***testing, only testing, and damn good at it too!***

OK, so you're a Ph.D.  Just don't touch anything.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html