By being vigilant and having the defense in depth that you should, you are covered, and you should then start to worry more about the 0day than the rest of it. If you're in a situation where you can do that, then you're also likely in an environment that *needs* to worry about 0-days, such as banking, defense, or other high-value or highly-regulated industries.
If you don't have the ability to have the defense in depth, because you're told you can't, well, time for the blood pressure meds, because you not only have 0days, you have all the rest of the crap that does with it. Kurt On Tue, Oct 18, 2011 at 12:23, Michael B. Smith <[email protected]> wrote: > I don't get it. Sorry, I don't. > > If (as the article says) only one-tenth of one percent of issues are caused > by zero-days; then that's not even a blip on the radar. > > That doesn't mean "don't be vigilant" and "don't have good processes and > procedures", at least not to me. It means that pursuing a well-rounded > defense in depth strategy is the proper course - as always. > > Regards, > > Michael B. Smith > Consultant and Exchange MVP > http://TheEssentialExchange.com > > > -----Original Message----- > From: Kurt Buff [mailto:[email protected]] > Sent: Tuesday, October 18, 2011 3:19 PM > To: NT System Admin Issues > Subject: Re: Zero-day bugs overrated, Microsoft says > > From the article: > > "We're not saying don't worry about zero-days. But they need to be put > into context," said Jeff Jones, a director of security with > Microsoft's Trustworthy Computing group. "For the person who has > security as a day-to-day job, they need to worry about the things that > are most prevalent and most severe." > > Hmmm.... > > What is a zero-day except the most severe thing - caught, and not > merely with your knickers down, but effectively no knickers at all. > > Yes, patch - first, last and always - but the proliferation of > software diversity makes that very hard. > > Don't Panic? Well, that's only useful advice if you take it to mean > that you shouldn't start a full-bore linear run into whatever obstacle > is in your way. On the other hand, if your blood pressure isn't rising > to dangerous levels because of the situation, you probably don't know > what the hell is going on, or else your IT policy is hated by your end > users because they can't install their favorite malware magnets. > > Kurt > > On Tue, Oct 18, 2011 at 08:18, David Lum <[email protected]> wrote: >> Thoughts? >> http://www.computerworld.com/s/article/9220705/Zero_day_bugs_overrated_Microsoft_says?taxonomyId=85 >> >> David Lum >> Systems Engineer // NWEATM >> Office 503.548.5229 // Cell (voice/text) 503.267.9764 > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
