[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Is Marty Lying?

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Is Marty Lying?
From: Florin Andrei <florin@xxxxxxx>
Date: 22 Sep 2003 16:25:32 -0700

On Mon, 2003-09-22 at 14:13, security snot wrote:
> "Detect intrusions" - if you can set an IDS signature for something, then
> you shouldn't be vulnerable to it.  So the functionality of IDS is to tell
> you when you've been compromised by six-month old public vulnerabilities
> that dvdman has finally gotten his hands on an exploit for, that you never
> bothered to patch for?

True, in an ideal world.
However, in the _real_ one, things are slightly different. Especially on
large networks (> thousands of systems), funny things start to happen.

Your p.o.v. is typical for someone who only has the experience of a
mom'n'pop type of network.

-- 
Florin Andrei

http://florin.myip.org/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Is Marty Lying?
  - From: Justin

References:
- [Full-Disclosure] Is Marty Lying?
  - From: security snot
- Re: [Full-Disclosure] Is Marty Lying?
  - From: daniel uriah clemens
- Re: [Full-Disclosure] Is Marty Lying?
  - From: Peter Busser
- Re: [Full-Disclosure] Is Marty Lying?
  - From: Gregory A. Gilliss
- Re: [Full-Disclosure] Is Marty Lying?
  - From: security snot

Prev by Date: Re: [Full-Disclosure] VeriSign's fake SMTP server for SiteFinder
Next by Date: Re: [Full-Disclosure] VeriSign's fake SMTP server for SiteFinder
Previous by thread: Re: [Full-Disclosure] Is Marty Lying?
Next by thread: Re: [Full-Disclosure] Is Marty Lying?
Index(es):
- Date
- Thread