Re: How to prevent zero day attacks

[synja () synfulvisions com]

A layered security model. 

If browsers are run as limited users, and you set ACLs on the temp folders to deny execute permission, etc... You've 
just prevented most 0day malware.

Compartmentalization of services limits the scope of compromise. You can limit the priveleges of older software by 
running their services as NetworkService or LocalService instead of LocalSystem.

There are thousands of ways, but you need to define a scope and environment.

Rob
------Original Message------
From: amishra.jsr () gmail com
Sender: listbounce () securityfocus com
To: security-basics () securityfocus com
Subject: How to prevent zero day attacks
Sent: May 22, 2012 02:04

Hello, 
     Traditionally all the anitvirus, IPS works using signature based technique. This doesn't help in zero day attack. 
Therefore, what can be done to prevent zero-day attacks?

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


Sent on the Sprint® Now Network from my BlackBerry®