funsec mailing list archives
Re: No solution on the market today can prevent the infinite number of AETs!
From: Robert Graham <robert_david_graham () yahoo com>
Date: Sat, 4 Dec 2010 14:54:20 -0800 (PST)
It's a magic trick. Stonesoft is one of the worst IPS on the market for evasions. However, they point out a problem with every other product and say "look, we are all equally bad". They then create a website and an initiative in order to appear the "thought leader". Customers are too stupid and easily fall for such tricks. As say this because I am a thought leader. I invited many of the evasions on Stonesoft's lists. BlackICE (now Proventia) did SMB Name Pipe and DCE-RPC bi-endian reassembly back in the year 2000, for example. ________________________________ From: David M Chess <chess () us ibm com> To: funsec () linuxbox org Sent: Fri, December 3, 2010 12:22:42 PM Subject: [funsec] No solution on the market today can prevent the infinite number of AETs! Is there anyone legitmate behind www.antievasion.com, or is it just the usual amusing "everyone previous to us was stupid, but now we have discovered that it's possible to create new attacks that won't be detected right away, maybe!" sort of hype? DC
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- No solution on the market today can prevent the infinite number of AETs! David M Chess (Dec 03)
- Re: No solution on the market today can prevent the infinite number of AETs! Dan Kaminsky (Dec 03)
- Re: No solution on the market today can prevent the infinite number of AETs! Robert Graham (Dec 04)