Full Disclosure mailing list archives

Re: Counter-Attacking hackers? Is this really a good idea?

From: "Exibar" <exibar () thelair com>
Date: Mon, 8 Mar 2004 14:31:48 -0500

I don't think they mean "counter-attack" when they say "counter-measures".
counter'measures could be automatically adjusting a firewall rule or a
router ACL to adjust to the type of attack it discovers.

  But, they do mentioned "fighting fire with fire", so that makes me
question exactly what it is they're doing.

  Exibar


----- Original Message ----- 
From: <technocrat () hush ai>
To: <full-disclosure () lists netsys com>
Sent: Sunday, March 07, 2004 10:22 PM
Subject: [Full-disclosure] Counter-Attacking hackers? Is this really a good
idea?

This company...

http://www.symbiot.com/

Is claiming to have the "first IT security solution that can both repel
hostile attacks on enterprise networks and accurately identify the

malicious

attackers in order to plan and execute appropriate countermeasures -
effectively fighting fire with fire."

Are these guys nuts? I'm not sure if this is a good idea or not. I don't
want to promote them, but on the other hand this seems to be a topic
that should be discussed by information security professionals. If the
community as a whole thinks this is a good idea, then there should be
some type of standard agreed to by the masses of administrators that
will have to put up with the results of such a system.

Again, just thought this should be openly discussed and that we should
all be aware of it.

I even thought about posting thier white papers to my personal site in
an effort to stick to the 'discussion not promotion' agenda I have, but
then I don't want to get 'Couter-Attacked' now do I ;)

-Technocrat



Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
https://www.hushmail.com/services.php?subloc=messenger&l=434

Promote security and make money with the Hushmail Affiliate Program:
https://www.hushmail.com/about.php?subloc=affiliate&l=427

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: Counter-Attacking hackers? Is this really a good idea?, (continued)
- Re: Counter-Attacking hackers? Is this really a good idea? Harlan Carvey (Mar 08)
  - Re: Counter-Attacking hackers? Is this really a good idea? Joe Stewart (Mar 08)
  - RE: Counter-Attacking hackers? Is this really a good idea? Mike Fratto (Mar 08)
- Re: Counter-Attacking hackers? Is this really a good idea? the lumpalaya (Mar 08)
  - Re: Counter-Attacking hackers? Is this really a good idea? the lumpalaya (Mar 08)
- Re: Counter-Attacking hackers? Is this really a good idea? Martijn Lievaart (Mar 08)
- Re: Counter-Attacking hackers? (wtf) phased (Mar 08)
  - Re: Counter-Attacking hackers? (wtf) Cael Abal (Mar 08)
    - Re: Counter-Attacking hackers? (wtf) Valdis . Kletnieks (Mar 08)
- Re: Counter-Attacking hackers? Is this really a good idea? Gregory A. Gilliss (Mar 08)
- Re: Counter-Attacking hackers? Is this really a good idea? Exibar (Mar 08)
- Re: Counter-Attacking hackers? Is this really a good idea? DAN MORRILL (Mar 08)
- Counter-Attacking hackers? Is this really a good idea? harry (Mar 09)