Same reason that blacklisting doesn't work for spam prevention either - spammers just find ways around the lists and it turns into a constant battle of trying to quickly blacklist the new terms/addresses only to find that the bad guys change them as fast as you can blacklist them.
Ben M. Schorr Roland Schorr & Tower www.rolandschorr.com | www.officeforlawyers.com | Twitter: @bschorr -----Original Message----- From: Ben Scott [mailto:[email protected]] Sent: Saturday, April 14, 2012 9:07 To: NT System Admin Issues Subject: Re: Whitelisting On Sat, Apr 14, 2012 at 11:10 AM, Alex Eckelberry <[email protected]> wrote: > I'm curious, what's the general feeling about about whitelisting? As a > former AV guy, I tend to prefer blacklisting, but I'm seeing signs things > might be changing. IMNSHO: Tightly controlling what software can be run will always be far more effective than trying to identify every possible bad thing in the world. The hard part is usually doing it. Many orgs don't have good software management. The small ones can't afford it, and the large ones find the problem to hard to coordinate. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
