Re: OpenDNS safer or not?

In article <5ebj4uF387t8pU1@xxxxxxxxxxxxx>,
"Sebastian G." <seppi@xxxxxxxxx> wrote:

Barry Margolin wrote:

In article <5ebffkF38ks34U1@xxxxxxxxxxxxx>,
"Sebastian G." <seppi@xxxxxxxxx> wrote:

Well, if you don't want to proclaim that virus scanners could provide
reliable protection against viruses (which they can't, by design), then
your
point is obviously moot. And if you want that, then should better
reconsider
the definition of security.

Security is not an absolute, it's a continuum.


Security also has various properties, one of the is *reliability*. Something
that virus scanners are lacking, by design.

Now, just write a virus. It will infect systems until someone detects it,
submits it to an AV vendor, who then creates and delivers a signature. In
the meantime, you're hosed.

Without the AV software, you're hosed forever. Which is better?


Oh, and then write one that constantly modifies itself by reordering its
instructions based on a keyed CSPRNG. Trivially this will bypass any
signatures and behaviour detection.

Well, do I have to mention that the real solution against viruses is a
no-exec policy, thus only running applications from a whitelist? Trivial,
practicable, reliable, secure.

But since the OS doesn't do that, you need other protection. As an end
user you can't change the OS policy, you're stuck with it. You need a
solution that works within its limits.

Should we stop trying to develop cures and vaccines for STDs because the
real solution is to not have sex with people with STDs? Sometimes you
have to live with the fact that the "real solution" isn't going to
happen, and you make do with a "good enough" solution.

And the "no-exec" policy will only protect you from malware based on
executing applications. It does nothing to protect you from phishing
sites. And a whitelist only works if you know what programs to allow.
What about a trojan that looks like a desirable program? If it's
masquerading as a game you want to play, you'll put it on the whitelist
(that's the very definition of a Trojan Horse).

--
Barry Margolin, barmar@xxxxxxxxxxxx
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
*** PLEASE don't copy me on replies, I'll read them in the group ***
.

Relevant Pages

  • Re: Language improvement: Add scope to class member fields
    ... every small subset of functionality into seperate classes. ... MyMethodwould check this flag first within a lock and only run the method ... currently stands there is no protection. ... Allowing classes to become more complex is not a terrific design goal, ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: Meganet strikes back
    ... > I took it that you named Campbell as an 'example'. ... > Note that aids are killing a whole continent (Africa)! ... Of course there is an obvious risk in using a protection ... informed evaluation and verification of the design and ...
    (sci.crypt)
  • Re: Getting rid of copyright and patent protection
    ... undermining our manufacturing industries and putting people out of work. ... The design needs to ... With no protection for ideas, it's suggested that J K Rowling would never ... Patents quite explicitly apply to implementations, not ideas, ...
    (uk.politics.misc)
  • Re: Getting rid of copyright and patent protection
    ... With no protection for ideas, it's suggested that J K Rowling would never have written the Harry Potter books - there would have been no incentive to do so. ... The purpose of patents is to allow other people to see how something is done, and to copy it themselves eventually, in return for a particular period of enforced monopoly for the inventor. ... Copyright is something which is considered to apply to artistic works rather than functional goods, and I'm sure if Dior patented a particular design of handbag, which would require patent offices to be convinced that the design was new and not just a minor variation of any existing designs, that the full force of the law would be used to protect the monopoly. ... Copyright again seems to be a sensible thing, but I can see no useful purpose being served by the monopoly protection of ephemeral industrial products, distinguished from previous products only by relatively minor design changes. ...
    (uk.politics.misc)
  • Re: Interesting coding tidbit
    ... >>buffer overrun attacks, rather than to stop hackers compiling virii? ... Automatic methods integrated in the operating system design are ... >>buffer protection it probably makes writing correct code easier. ...
    (comp.os.vms)