On Tuesday, August 31, 2004 9:43 AM, Reg Quinton wrote >> ..... a system that catches a vulnerability the moment or as soon as >> it is manifested. > > That's impossible. Consider any security patch. There is a > vulnerability long before someone finds it, long before a patch is > posted, long before a tool to detect the vulnerability is found.... > > That's why prudent folks harden off services they don't need ... as > every service will have a vulnerability sooner or later. > >
Some companies beg to differ. ISS, McAfee, and Cisco are all selling or are about to start selling products with "buffer overflow protection". These tools are supposed to detect unknown exploits by looking for the type of activity that exploits must do like overwriting memory space, creating or copying files, opening ports, etc. I haven't tested any of them out yet, but I'll have the McAfee and ISS programs "soon". -Jason PS - I apologize in advance for the legal disclaimer at the bottom of my email message. This is tacked on by our SMTP gateway and I have no control over it. -- ------------------------------------------------------------------------------ Confidentiality notice: This e-mail message, including any attachments, may contain legally privileged and/or confidential information. If you are not the intended recipient(s), or the employee or agent responsible for delivery of this message to the intended recipient(s), you are hereby notified that any dissemination, distribution, or copying of this e-mail message is strictly prohibited. If you have received this message in error, please immediately notify the sender and delete this e-mail message from your computer. ============================================================================== _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
