Re: No solution on the market today can prevent the infinite number of AETs!

[Robert Graham <robert_david_graham () yahoo com>]

It's a magic trick.

Stonesoft is one of the worst IPS on the market for evasions. However, they 
point out a problem with every other product and say "look, we are all equally 
bad". They then create a website and an initiative in order to appear the 
"thought leader". Customers are too stupid and easily fall for such tricks.

As say this because I am a thought leader. I invited many of the evasions on 
Stonesoft's lists. BlackICE (now Proventia) did SMB Name Pipe and DCE-RPC 
bi-endian reassembly back in the year 2000, for example.






________________________________
From: David M Chess <chess () us ibm com>
To: funsec () linuxbox org
Sent: Fri, December 3, 2010 12:22:42 PM
Subject: [funsec] No solution on the market today can prevent the infinite 
number of AETs!


Is there anyone legitmate behind www.antievasion.com, or is it just the usual 
amusing "everyone previous to us was stupid, but now we have discovered that 
it's possible to create new attacks that won't be detected right away, maybe!" 
sort of hype? 


DC 



_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.