Re: No AV? Shock, horror!

[Paul Ferguson <fergdawgster () gmail com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, Sep 28, 2009 at 4:15 PM, Rich Kulawiec <rsk () gsp org> wrote:

> On Tue, Sep 29, 2009 at 09:37:36AM +1300, Nick FitzGerald wrote:
> > Given recent trends in malware development, the infection rate of AV-
> > running systems will be far from zero.
>
> Strongly agreed.  As I've pointed out elsewhere, all signature-based
> methods (whether anti-virus, anti-spam, anti-intrusion, or otherwise)
> are guaranteed to fail: it's only a question of when and what the
> consequences will be.  This is not to say that they have zero value:
> they clearly have *some* value.  But it is to say that
> sufficiently-clever adversaries can engineer around them, and are doing
> so.

We would agree:

http://countermeasures.trendmicro.eu/in-security-reputation-is-key/

- - ferg


-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.5.3 (Build 5003)

wj8DBQFKwVHsq1pz9mNUZTMRAivWAKCtEFYiCl6xcD5YvyhKFLodLtBAqgCfSn3p
zwTMCcY4wsleMn0VjVNEpCU=
=wvld
-----END PGP SIGNATURE-----


-- 
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawgster(at)gmail.com
 ferg's tech blog: http://fergdawg.blogspot.com/
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.