Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: concerning ~el8 / project mayhem

From: Barney Wolff <barney () tp databus com>
Date: Wed, 21 Aug 2002 11:28:29 -0400
Why on earth even spend time debating whether config reviews or scans
are better?  It's equivalent to debating whether structured walkthroughs
or testing work better to find software flaws.  Which is more important,
your left leg or your right?

On Wed, Aug 21, 2002 at 11:04:55AM -0400, Paul Robertson wrote:


While I am indeed advocating good design, I'm not against validation, I'm 
against vulnerability scanning- that, I think is our point of difference 
(or maybe I just didn't articulate it well.)  In other words, I'm saying 
that configuration validation is better than vulnerability testing for 
almost all classes of electronic attack.


-- 
Barney Wolff
I'm available by contract or FT:  http://www.databus.com/bwresume.pdf
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: