Re: DefCon 'Race to Zero'

[Jason Eberly <jason () killerinterviews com>]

Nick Fitzgerald said:
> Of course it can be done.
>
> Trivially.
>
> Endlessly.
>
> In my sleep.
>
> Sheesh...
 
  No disrespect, but perhaps this is precisely the point of it?  Not so much that you personally could show up and 
prove you've got the largest e-Peen by defeating a dozen or so AV vendors between snores, but rather the fact that 6 or 
7 thousand script kiddiots armed with notepad and a command line could probably squeak by too?  Not so much big news 
for people who actually work in IT, but a widely publicized contest in the deep, dark, scary underbelly of the Internet 
- now that's got sex appeal.
 
  If nothing else, it should make for an interesting sound bite or two, maybe even percolate up to the next Senior 
Manglement budget meetings, ala "OMG signatures don't work anymore?!?  We need AV-destructo-magic 2.0 (now with 20% 
more heuristics), stat!"  Your fine point about anyone having a pair of brain cells to rub together notwithstanding, a 
great many pointy-haired bosses really don't know anything about ANYthing until it shows up on a pre-digested cheesy 
Fox News segment...
 
 - J
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.