funsec mailing list archives
Re: funsec Digest, Vol 50, Issue 16
From: Rich Kulawiec <rsk () gsp org>
Date: Fri, 16 Oct 2009 08:07:06 -0400
On Sun, Oct 11, 2009 at 12:36:21PM -0500, RandallM wrote:
Common folks. No one is addressing yet how mom, pop, uncle, auntie and the click everything teenagers are going to "GET" them clean. How is this going to be proposed?
Yep. It's hand-waving: "run anti-virus and all will be better". No acknowledgment that running AV on a known-infected system *which is therefore owned by the enemy* is unlikely to result in the desired outcome. No requirement that known-clean boot media be used. No requirement that all applications be reinstalled from scratch. No requirement that all user data be screened and carefully put back in place. No requirement that root cause analysis be conducted to find out why the compromise happened (e.g., insecure app? user error? infected media?) so that maaaaaaaybe it won't happen again the next day. ---Rsk _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Re: funsec Digest, Vol 50, Issue 16 RandallM (Oct 11)
- Re: funsec Digest, Vol 50, Issue 16 Rich Kulawiec (Oct 16)