funsec mailing list archives
Re: No AV? Shock, horror!
From: Dan Kaminsky <dan () doxpara com>
Date: Wed, 30 Sep 2009 05:43:36 +0200
I actually put FW in a separate category than AV and IDS. It establishes clear boundaries (modulo HTTP, the universal tunneling protocol) whereas the others are best effort. On Wed, Sep 30, 2009 at 4:39 AM, Michael Collins <mcollins () aleae com> wrote:
I'm torn on active netsec (AV, FW, IDS) because I'm pretty sure that it's the least cost-effective place to work on security. At the same time, from a management perspective you can buy it as a separate component (am I secure? Well, I've checked off that "I bought a firewall" box, so I *must* be scure), and because it does give developers a way out. On Sep 29, 2009, at 12:33 PM, Kenneth L. Bechtel, II wrote:On Tuesday 29 September 2009 11:48:51 am Blanchard_Michael () emc com wrote:Yah, too bad many corporations turn off the built in FW in SP2 via GPO ;-( But the additions in SP2 were a GodSend for home users, agreed.Let's face it, in reality the new "features" in OS' have been the biggest advances we've had in combating malware. Win95 deployments helped wipe out the Bootsector infecter, while WinNT/ Win2000 was the nail in that box for a long time. As pointed out XP SP2 really nailed down worms, but that was also assisted with "Desktop Firewalls". Anti-Virus and other security Software are only bandages, and do a great job of slowing/ stopping the hemorrhage. but they are specific tools looking for specific cuts, and we ARE fighting the death of 1000 cuts. -- Kenneth L. Bechtel, II Team Anti-Virus Phone - 717-579-9083 | WildList Reporter P.O. Box 635, Palmyra, PA 17078 | Founding member AVIEN E-mail - kbechtel () teamanti-virus org | Member AVAR PGP Footprint: 969E 2A27 3042 EE52 AEFB 6FF0 2711 9467 D38C 5C0F _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list._______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- McAfee really DOES write new Malware! Wholey Moley!, (continued)
- McAfee really DOES write new Malware! Wholey Moley! Blanchard_Michael (Sep 29)
- Re: McAfee really DOES write new Malware! Wholey Moley! Rich Kulawiec (Sep 29)
- Re: McAfee really DOES write new Malware! Wholey Moley! chris (Sep 29)
- Re: McAfee really DOES write new Malware! Wholey Moley! Blanchard_Michael (Sep 30)
- Re: McAfee really DOES write new Malware! Wholey Moley! Rich Kulawiec (Sep 30)
- Re: No AV? Shock, horror! Dan Kaminsky (Sep 29)
- Re: No AV? Shock, horror! Blanchard_Michael (Sep 29)
- Re: No AV? Shock, horror! Kenneth L. Bechtel, II (Sep 29)
- Re: No AV? Shock, horror! Blanchard_Michael (Sep 29)
- Re: No AV? Shock, horror! Michael Collins (Sep 29)
- Re: No AV? Shock, horror! Dan Kaminsky (Sep 29)
- Re: No AV? Shock, horror! Rich Kulawiec (Sep 30)
- Re: No AV? Shock, horror! Michael Collins (Sep 29)
- Re: No AV? Shock, horror! Toralv_Dirro (Sep 28)
- Re: No AV? Shock, horror! Dan Kaminsky (Sep 28)
- Re: No AV? Shock, horror! Charles Miller (Sep 28)
- Re: No AV? Shock, horror! Nick FitzGerald (Sep 28)
- Re: No AV? Shock, horror! Nick FitzGerald (Sep 28)
- Re: No AV? Shock, horror! Rich Kulawiec (Sep 28)
- Re: No AV? Shock, horror! Paul Ferguson (Sep 28)
- Re: No AV? Shock, horror! Dan Kaminsky (Sep 29)