RE: IDS and Spywares

• Previous message: Frank Knobbe: "RE: IDS and Spywares"
• In reply to: Frank Knobbe: "RE: IDS and Spywares"
• Next in thread: Dhruv Soi: "RE: IDS and Spywares"
• Reply: Dhruv Soi: "RE: IDS and Spywares"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <focus-ids@securityfocus.com>
Date: Sat, 15 Oct 2005 08:45:51 +0100

> -----Original Message-----
> From: Frank Knobbe [mailto:frank@knobbe.us]
> Sent: Saturday, October 15, 2005 3:06 AM
>
> On Fri, 2005-10-14 at 10:03 +0100, Omar A. Herrera wrote:
> [...]
> > I do agree with you that layered security is always the best option,
> even if
> > there is some redundancy in some of the activities performed by
> different
> > kinds of products.
> [...]
>
>
> What I'm trying to say is:
>
> Stop wasting your time wrapping more band-aids around flaws! Start
> attacking the real problem and solve that! Stop buying into the security
> buzz spun by security vendors promising the all-curing pixie dust, and
> understand and correct the core root causes of the problem yourself!
>
> If we don't look at the real issues anymore, then all hope is lost.
>

Yea right... it is easy to be a purist and just point out at the right
theoretical solution. You are absolutely right, but if making those changes
were just as simple as saying it...

I'm not talking to the technological part of the problem here, but to
administrative problem. You really think it is so simple to just go with
your Boss and say: "Hey Boss, we need to replace all those workstations with
X because of this and this, throwing away and historic dependency of dozens
of versions for thousands of applications, many of which don't exist for X
for several reasons, but we can simply develop them ourselves"?

You better offer me a job in your company (where it seems it is possible to
do this), because if I do this, I'm certainly going to get kicked out of
mine :-)

Understanding and complying with business requirements and restrictions is
also an essential part of our jobs, not just playing the techie, all
powerful, know all wizard.

Regards,

Omar Herrera

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------

• Previous message: Frank Knobbe: "RE: IDS and Spywares"
• In reply to: Frank Knobbe: "RE: IDS and Spywares"
• Next in thread: Dhruv Soi: "RE: IDS and Spywares"
• Reply: Dhruv Soi: "RE: IDS and Spywares"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]