[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Is Marty Lying?

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Is Marty Lying?
From: Paul Schmehl <pauls@xxxxxxxxxxxx>
Date: Mon, 22 Sep 2003 20:46:21 -0500

--On Monday, September 22, 2003 2:13 PM -0700 security snot <booger@xxxxxxxxxxxx> wrote:

"Detect intrusions" - if you can set an IDS signature for something, then
you shouldn't be vulnerable to it.  So the functionality of IDS is to tell
you when you've been compromised by six-month old public vulnerabilities
that dvdman has finally gotten his hands on an exploit for, that you never
bothered to patch for?

Useless.

You bring new meaning to the word "idiot".

Paul Schmehl (pauls@xxxxxxxxxxxx)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] Is Marty Lying?
  - From: security snot
- Re: [Full-Disclosure] Is Marty Lying?
  - From: daniel uriah clemens
- Re: [Full-Disclosure] Is Marty Lying?
  - From: Peter Busser
- Re: [Full-Disclosure] Is Marty Lying?
  - From: Gregory A. Gilliss
- Re: [Full-Disclosure] Is Marty Lying?
  - From: security snot

Prev by Date: Re: [Full-Disclosure] VeriSign's fake SMTP server for SiteFinder
Next by Date: Re: [Full-Disclosure] Verisign "responds"
Previous by thread: Re: [Full-Disclosure] Is Marty Lying?
Next by thread: Re: [Full-Disclosure] Is Marty Lying?
Index(es):
- Date
- Thread