Dailydave mailing list archives
RE: CISSP quote of the week
From: Des <security () senticom co uk>
Date: Mon, 10 Apr 2006 23:34:40 +0100
Well without wanting to be flamed, speaking to Roger Grimes end of last year, he was quite emphatic about two things from his experience with honeypots, that the greatest amounts of attacks came from automated scanners looking for existing vulnerabilities and that this fact meant that just changing the default ports was enough to protect against these attacks. This may explain the CISSP statement, which given in the context of botnets being driven by organised crime might actually be true. True 0days are never going to be detected by existing signature-based techologies used by the enterprise, but this doesn't mean that the noisy skiddie activity isn't the most prevelant. If it works, why reinvent the wheel? Just as we judge others, let us be judged on our own objectivity.... just `cos it has CISSP tagged onto it doesn't mean it isn't true. :) BTW I ain't no CISSP ;)
Current thread:
- CISSP quote of the week Dave Aitel (Apr 10)
- Re: CISSP quote of the week Paul Wouters (Apr 10)
- Re: CISSP quote of the week listlurker (Apr 11)
- RE: CISSP quote of the week Dave Korn (Apr 11)
- Re: CISSP quote of the week Pusscat (Apr 11)
- <Possible follow-ups>
- RE: CISSP quote of the week Des (Apr 11)
- Re: CISSP quote of the week Robert (Apr 11)
- Re: CISSP quote of the week Paul Wouters (Apr 10)