I'm torn on active netsec (AV, FW, IDS) because I'm pretty sure that it's the least cost-effective place to work on security. At the same time, from a management perspective you can buy it as a separate component (am I secure? Well, I've checked off that "I bought a firewall" box, so I *must* be scure), and because it does give developers a way out.
On Sep 29, 2009, at 12:33 PM, Kenneth L. Bechtel, II wrote: > On Tuesday 29 September 2009 11:48:51 am [email protected] > wrote: >> Yah, too bad many corporations turn off the built in FW in SP2 via >> GPO ;-( >> But the additions in SP2 were a GodSend for home users, agreed. > > > Let's face it, in reality the new "features" in OS' have been the > biggest > advances we've had in combating malware. Win95 deployments helped > wipe out > the Bootsector infecter, while WinNT/ Win2000 was the nail in that > box for a > long time. As pointed out XP SP2 really nailed down worms, but that > was also > assisted with "Desktop Firewalls". Anti-Virus and other security > Software are > only bandages, and do a great job of slowing/ stopping the > hemorrhage. but > they are specific tools looking for specific cuts, and we ARE > fighting the death > of 1000 cuts. > > -- > Kenneth L. Bechtel, II > Team Anti-Virus > Phone - 717-579-9083 | WildList Reporter > P.O. Box 635, Palmyra, PA 17078 | Founding member AVIEN > E-mail - [email protected] | Member AVAR > PGP Footprint: 969E 2A27 3042 EE52 AEFB 6FF0 2711 9467 D38C 5C0F > _______________________________________________ > Fun and Misc security discussion for OT posts. > https://linuxbox.org/cgi-bin/mailman/listinfo/funsec > Note: funsec is a public and open mailing list. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
