Proactive desktop protection (need beta testers)
From: Bill Stout (bill.stout_at_GREENBORDER.COM)
Date: 10/18/04
- Previous message: Cybertrion Systems: "3D-FTP vulnerable to DoS Attack"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 18 Oct 2004 09:20:53 -0700 To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Hello All,
I've lurked on the list since about 1996, so it's about time I post a
comment.
Nearly every thread I've read here regard threats from Internet content.
The odd thing is, we ourselves give content our full privilege to local
resources by simply viewing it. Frequently, content even runs with our
local admin rights. Our reaction is to lobotomize our browsers and
email, disable scripting, load AV and spyware detection software, and
apply patches and signature files faster than we're hit.
Worst case is that content activity modifies local resources. However,
if Internet content (both pages and attachments) could read but not
modify local resources, we could safely run useful or infected content
or attachments which contain Active-X, Javascript, Macros, buffer
overflows, Viruses, Trojans, etc.
I'm looking for willing beta testers for a managed desktop Agent
product. I have a few small companies beta testing this, and one
founding member of AVIEN who will beta test this in an .edu setup, and
who also supports the fundamental concept. I need companies (who are
not potential compeditors) who are willing to sign an NDA (the product
is not GA/for sale until January).
A full beta test can be done if you're a local company, or large
company. This would involve a site visit, and needs SQLserver for the
server side.
A standalone client beta test (limited test) is available which runs on
W2000Pro, or XP Pro. This is a 7MB zip that can be emailed (still needs
NDA). My favorite demo (with the Agent running) is to run as
administrator, set IE settings for the Internet to low, and hit exploit
sites, and warez/cdkey/other sites. I'll run Ad-Aware or an AV scanner
after the Agent flushes, and no objects are found. Perfect for home
computers, but since it's managed; it's targeted for departmental and
corporate environments.
Note this is a beta product which needs additional features and support.
It doesn't solve everything (please ignore our stale and lame website).
It is meant to compliment existing protections. I need feedback from
you on what it needs to support and if you can find a way to break it.
Please email me directly if you're willing to beta test the product.
Thanks,
Bill Stout
Sr. Sales Engineer
Cell: 408-966-9804
This electronic transmission (and any attached documents) is for the sole use of the individual or entity to whom it is addressed. It is confidential and may be privileged. Any further distribution or copying of this message is strictly prohibited. If you received this message in error, please notify GreenBorder immediately by telephone at (650) 625.0601 and destroy the message (and all attached documents), immediately.
- Previous message: Cybertrion Systems: "3D-FTP vulnerable to DoS Attack"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
