funsec mailing list archives

RE: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!]

From: Gadi Evron <ge () linuxbox org>
Date: Wed, 28 Dec 2005 18:12:52 -0600 (CST)

Fine, but that doesn't prove that offering every blackhat in the world a
centralized repository is a good thing. Why not just have all of the AV
companies post each sample on their web site? I doubt that most of the
people you want to protect would appreciate that.


They already have as good as. Several times over. They don't need us.

In theory, MALWARE IS WRONG PERIOD. In practicality, it's 
good if you study it to combat it.


No, the malware is not good. Doing something to combat it is good, but the
malware is still bad and posting it publicly is unlikely to help. To add to
that there has been absolutely zero discussion about even trying to measure
the impact. In other words the argument is to put it out there in order to
help in a manner known to cause problems without any hope of proving that it
does any more good than harm. A completely unscientific exercise in erring
on the side on recklessness.

Today's enviroment made it impossible for the good guys to 
get help or help themselves, while the bad guys rule the world.


Yeah, damn it I hate having to ask permission to go to sleep. Ever since the
bad guys started ruling the world I've had to raise my hand to go potty....
Bravo, nice melodramatics.


No, nice facts.

Hint.. Good guys often get code from the same places bad guys do. That
doesn't mean good guys have to post to places that bad guys can access.



Right, they don't, but other can.

So yeah, I'll say run an open VX, and let everybody use it 0 
0 but make sure researchers can reach it as well as just the 
bad guys with their resources.


That's an idea that's been around for ages. Why do we need another one of
those?


Because researchers today find it HARD to get samples, while bad guys find
it easy as pie, and easier every eyar.

That is a problem that needs solving. Let;s discuss other solutions than?
:)

        Gadi.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Re: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!], (continued)
- - - Re: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Nick FitzGerald (Dec 30)
    - summary of the "sharing samples" thread from my view-point Gadi Evron (Dec 30)
    - Re: summary of the "sharing samples" thread from my view-point Nick FitzGerald (Dec 31)
    - Re: Re: summary of the "sharing samples" thread from my view-point Drsolly (Dec 31)
    - Re: Re: summary of the "sharing samples" thread from my view-point dudevanwinkle () gmail com (Dec 31)
    - Re: Re: summary of the "sharing samples" thread from my view-point Drsolly (Dec 31)
    - Re: Re: summary of the "sharing samples" thread from my view-point Gadi Evron (Dec 31)
    - Re: Re: summary of the "sharing samples" thread from my view-point Pierre Vandevenne (Dec 31)
    - Re: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Paul Vixie (Dec 30)
    - RE: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Randy Abrams (Dec 28)
    - RE: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Gadi Evron (Dec 28)
    - RE: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Randy Abrams (Dec 28)
    - Re: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] val smith (Dec 28)
    - Re: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Drsolly (Dec 28)
    - Re: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] val smith (Dec 28)
    - Re: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Drsolly (Dec 28)
    - where are all the researchers here? speak up! [WAS: Malware sharing? People are full of shit] Gadi Evron (Dec 29)
    - Re: where are all the researchers here? speak up! [WAS: Malware sharing? People are full of shit] Dude VanWinkle (Dec 29)
    - RE: where are all the researchers here? speak up! [WAS:Malware sharing? People are full of shit] Randy Abrams (Dec 29)
    - Re[2]: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Pierre Vandevenne (Dec 28)
    - Re: Re: Malware sharing? People are full of shit [was: Getyour computer viruses here!] Gadi Evron (Dec 29)

(Thread continues...)