I actually put FW in a separate category than AV and IDS. It establishes clear boundaries (modulo HTTP, the universal tunneling protocol) whereas the others are best effort.
On Wed, Sep 30, 2009 at 4:39 AM, Michael Collins <[email protected]> wrote: > I'm torn on active netsec (AV, FW, IDS) because I'm pretty sure that > it's the least cost-effective place to work on security. At the same > time, from a management perspective you can buy it as a separate > component (am I secure? Well, I've checked off that "I bought a > firewall" box, so I *must* be scure), and because it does give > developers a way out. > > > On Sep 29, 2009, at 12:33 PM, Kenneth L. Bechtel, II wrote: > >> On Tuesday 29 September 2009 11:48:51 am [email protected] >> wrote: >>> Yah, too bad many corporations turn off the built in FW in SP2 via >>> GPO ;-( >>> But the additions in SP2 were a GodSend for home users, agreed. >> >> >> Let's face it, in reality the new "features" in OS' have been the >> biggest >> advances we've had in combating malware. Win95 deployments helped >> wipe out >> the Bootsector infecter, while WinNT/ Win2000 was the nail in that >> box for a >> long time. As pointed out XP SP2 really nailed down worms, but that >> was also >> assisted with "Desktop Firewalls". Anti-Virus and other security >> Software are >> only bandages, and do a great job of slowing/ stopping the >> hemorrhage. but >> they are specific tools looking for specific cuts, and we ARE >> fighting the death >> of 1000 cuts. >> >> -- >> Kenneth L. Bechtel, II >> Team Anti-Virus >> Phone - 717-579-9083 | WildList Reporter >> P.O. Box 635, Palmyra, PA 17078 | Founding member AVIEN >> E-mail - [email protected] | Member AVAR >> PGP Footprint: 969E 2A27 3042 EE52 AEFB 6FF0 2711 9467 D38C 5C0F >> _______________________________________________ >> Fun and Misc security discussion for OT posts. >> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec >> Note: funsec is a public and open mailing list. > > _______________________________________________ > Fun and Misc security discussion for OT posts. > https://linuxbox.org/cgi-bin/mailman/listinfo/funsec > Note: funsec is a public and open mailing list. > _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
