funsec mailing list archives

Re: funsec Digest, Vol 50, Issue 16

From: Rich Kulawiec <rsk () gsp org>
Date: Fri, 16 Oct 2009 08:07:06 -0400

On Sun, Oct 11, 2009 at 12:36:21PM -0500, RandallM wrote:

Common folks. No one is addressing yet how mom, pop, uncle, auntie and
the click everything teenagers are going to "GET" them clean. How is
this going to be proposed?


Yep.  It's hand-waving: "run anti-virus and all will be better".  No
acknowledgment that running AV on a known-infected system *which is
therefore owned by the enemy* is unlikely to result in the desired outcome.
No requirement that known-clean boot media be used.  No requirement that
all applications be reinstalled from scratch.  No requirement that all
user data be screened and carefully put back in place.  No requirement
that root cause analysis be conducted to find out why the compromise
happened (e.g., insecure app? user error? infected media?) so that
maaaaaaaybe it won't happen again the next day.

---Rsk
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Re: funsec Digest, Vol 50, Issue 16 RandallM (Oct 11)
- Re: funsec Digest, Vol 50, Issue 16 Rich Kulawiec (Oct 16)