RE: eWeek: Government-Funded Startup Blasts Rootkits

[Blanchard_Michael () emc com]

Ahhhh....    

  That sparks a memory of a fellow that Nick Fitzgerald and I had a
conversation with at a VB a coupel years ago.  They were from GlassWall,
they said that their technology was a signatureless AV that would be able to
fit on the Ethernet NIC itself....   If memory serves they said that they
had a patent pending and a few deals in the works as well.  That was at
least 3 years ago now, I wonder what happened to them.  I'll have to google
later today if I have time....

  Mike B


Michael P. Blanchard 
Antivirus / Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE
Office of Information Security & Risk Management 
EMC ² Corporation 
4400 Computer Dr. 
Westboro, MA 01580 


-----Original Message-----
From: Drsolly [mailto:drsollyp () drsolly com] 
Sent: Wednesday, April 26, 2006 6:32 PM
To: Blanchard, Michael (InfoSec)
Cc: larry () larryseltzer com; funsec () linuxbox org
Subject: RE: [funsec] eWeek: Government-Funded Startup Blasts Rootkits

It was a hardware antivirus.

On Wed, 26 Apr 2006 Blanchard_Michael () emc com wrote:

>  It Thunderbyte similliar to the Apple II card CopyIIplus?  I remember
years ago there that CopyIIplus card that would copy any program disk to
disk I believe, regardless of copy protection too  :-)
> Michael P. Blanchard 
> Antivirus / Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE
> Office of Information Security & Risk Management 
> EMC ² Corporation 
> 4400 Computer Dr. 
> Westboro, MA 01580 
>  
>
> -----Original Message-----
> From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On
Behalf Of Drsolly
> Sent: Wednesday, April 26, 2006 2:17 PM
> To: Larry Seltzer
> Cc: funsec () linuxbox org
> Subject: RE: [funsec] eWeek: Government-Funded Startup Blasts Rootkits
>
> On Tue, 25 Apr 2006, Larry Seltzer wrote:
>
> > > > PCI card malware dection, I like it!
> >
> > It sounded like there was also a software approach they were taking, but
> > from the information provided it's hard to see how it differs from
solutions
> > by Sysinternals and F-Secure. But the people involved are legit.
> >
> > Someone explain to me how a PCI card is supposed to be able to tell the
> > difference between legitimate and illegitimate access to system files.
>  
> Remember Thunderbyte?
>
> _______________________________________________
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.