Dailydave mailing list archives

Re: Defeating what's next

From: "Brad Andrews" <andrews () rbacomm com>
Date: Wed, 12 Jun 2013 11:54:27 -0500

Perhaps everything basically boils down into that, at one form or another.  How many new things are really under the 
sun?

From: John Strand 
Sent: Wednesday, June 12, 2013 9:31 AM
To: Dave Aitel 
Cc: dailydave () lists immunityinc com 
Subject: Re: [Dailydave] Defeating what's next

Why does it seem we are moving from blacklists to "new and improved" blacklists? 

It seems like the industry is caught between choosing between things that dont work (i.e. blacklists, "better" 
firewalls) and things which are hard to implement (i.e. whitelists, better internal network segmentation, baseline 
monitoring, etc.)  

I think Paul said, "Every time you hit the easy button, God deploys another trojan on your network."

--------------------------------

R. Bradley Andrews
andrews () rbacomm com
CISSP, CSSLP, CISM

_______________________________________________
Dailydave mailing list
Dailydave () lists immunityinc com
https://lists.immunityinc.com/mailman/listinfo/dailydave

Current thread:

Defeating what's next Dave Aitel (Jun 12)
- Re: Defeating what's next John Strand (Jun 12)
  - Re: Defeating what's next Justin Seitz (Jun 12)
    - Re: Defeating what's next Arrigo Triulzi (Jun 12)
    - Re: Defeating what's next Nick Selby (Jun 12)
  - Re: Defeating what's next security curmudgeon (Jun 12)
  - Re: Defeating what's next Brad Andrews (Jun 12)
  - Re: Defeating what's next Kristian Erik Hermansen (Jun 12)
- Re: Defeating what's next Vitaly Osipov (Jun 13)
- Re: Defeating what's next Moses (Jun 14)
  - Re: Defeating what's next Val Smith (Jun 17)
- Re: Defeating what's next toby (Jun 17)
- <Possible follow-ups>
- Re: Defeating what's next Halvar Flake (Jun 12)
  - Re: Defeating what's next Ben Miller (Jun 13)