RE: IDS and Spywares

• Previous message: Dhruv Soi: "RE: IDS and Spywares"
• In reply to: Dhruv Soi: "RE: IDS and Spywares"
• Next in thread: Omar A. Herrera: "RE: IDS and Spywares"
• Reply: Omar A. Herrera: "RE: IDS and Spywares"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: dhruv_ymca@yahoo.com
Date: Sat, 15 Oct 2005 03:26:13 -0500

On Sat, 2005-10-15 at 01:12 -0700, Dhruv Soi wrote:
> Frank, don't you believe that a Techie can even harden
> a MS OS to protect it from Virus/Worm attack or from
> some vulnerability exploit attacks...

No, I do, that was my point.

> Same way IDS, HIDS, Antivirus all are protecting the
> networks,hosts at different layers...Leaving the
> Network administrators with least administrative
> work...

Well, it seems that they are all failing then, since spyware, worm, and
viruses are still making their rounds! Airlines still suffer outages
from Internet worms, as do car manufacturers (to name just a few recent
high profile cases).

And it seem we don't trust those added layers either since we're still
nervous on every patch Tuesday with fears of worms to the announced
vulnerabilities.

As for leaving admins with admin work, that doesn't seem to be justified
if they are spending more and more time administrating all those gadgets
that are getting bolted on to protect the rotten cores, including
applying patches to the security products which themselves are
vulnerable to the same issues they are tying to prevent in the first
place.

Yeah, call me a purist and laugh at me for throwing up the caution flag
every chance I get, but someone has to :) If no one raises concerns
about the industry getting out of control, then we might just believe
that all is well and continue blissfully towards our doom.

-Frank

• application/pgp-signature attachment: This is a digitally signed message part

• Previous message: Dhruv Soi: "RE: IDS and Spywares"
• In reply to: Dhruv Soi: "RE: IDS and Spywares"
• Next in thread: Omar A. Herrera: "RE: IDS and Spywares"
• Reply: Omar A. Herrera: "RE: IDS and Spywares"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Knife Crime ... travelling around the bleak fens to visit patients at the time and i ... burglaries by this groups of kids/delinquents/ whatever before and ... time to protect him or do much to save his property. ... vulnerability, a feeling that he was alone and not being adequately ... (rec.sport.rowing) RE: nessus which plugin reports which vulnerability? ... nessus which plug'in reports which vulnerability? ... I use the report function to generate a HTML type ... >Protect your network with the comprehensive security solution that ... Protect your network with the comprehensive security solution that ... (Pen-Test) Re: Disable File Deletion/Hiding Folders ... your task is just infeasible -it is impossible to protect ... > way that Admin cannot find this or that workaround...... ... Anton Bassov has already said: ... There's a fundamental problem with trying to prevent Administrators ... (microsoft.public.win32.programmer.kernel) Re: [fw-wiz] CIsco PIX vulnerable to TCP RST DOS attacks ... are able to protect their entire network from this vulnerability; ... providing additional time and security until other systems and software can ... (Firewall-Wizards) Re: local firewall needed behind hdwr. firewall & LAN ... Trojans and worms are downloaded and installed deliberately (albeit ... Most antivirus applications do not scan for or protect you ... software firewall in place, your only intrusion protection is the ... plugged into the company LAN. ... (microsoft.public.windowsxp.newusers)