[Dailydave] Defeating what's next
security curmudgeon
jericho at attrition.org
Wed Jun 12 12:23:39 EDT 2013
On Wed, 12 Jun 2013, John Strand wrote:
: Why does it seem we are moving from blacklists to "new and improved"
: blacklists?
:
: It seems like the industry is caught between choosing between things
: that dont work (i.e. blacklists, "better" firewalls) and things which
: are hard to implement (i.e. whitelists, better internal network
: segmentation, baseline monitoring, etc.)
Because we are. You can sell "new signatures" as a subscription model for
great profit.
Cheaper to treat the symptoms than cure the problem blah blah.
More information about the Dailydave
mailing list