There is no such thing as 100% Security

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
"What we want to show is there is no 100-percent security," he told Ars
moments after unleashing code that remotely caused a high-end Asus laptop
to open a calculator program. "So even if you have a fully updated system,
you can still get your system compromised. "

The overall message? Security is an arms race being fought between
attackers out to plant the kinds of sophisticated espionage malware used to
spy on Google and dozens of other companies and the software companies
trying to prevent such exploits. While defenses such as sandboxing, data
execution (DEP), and address space layout randomization (ASLR)
significantly raise the bar for such attacks, hackers inevitably find ways
to work around them."

http://arstechnica.com/business/news/2012/03/ie-9-on-latest-windows-gets -
stomped-at-hacker-contest.ars?clicked=related_right

http://goo.gl/M5btE +

Bear repeats:
The only security you can have is what you do not do or reveal, how well
you encrypt sensitive data, and how good your recovery plan is. I rest my
case.

--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-mail

Re: There is no such thing as 100% Security


Quoted text here. Click to load it

I'd like to see specific details of this. Something was amiss if remote
code was allowed to execute with enough rights to call out to a program on
the local machine.

This reaks of a specifically targetted attack vector.
 
Quoted text here. Click to load it

Hmm.. This is more into the realm of secure comms and/or crypto than it is
trying to make something hack proof.
 
Quoted text here. Click to load it

Security by obsecurity has been proven time and time again not to actually
work well.

Quoted text here. Click to load it

The recovery plan is really a cut/paste job from various sources
paraphrased with you as the sole author. Aside from that, it has
limitations in usage. It's primarily for hardware failure/theft data
recovery. It's still, despite what you want to think, unsuitable for
disinfecting a machine in most cases. It's overkill, excessive and a
shotgun approach for what could turn out being a relatively minor problem.

It's staggering to me that you freely declare you are *not* an expert in
such matters yet in practically the same post, infer that you are with
these plans of yours.

On a more serious note, You preach that such and such av/am app is better
than such and such other app, but you provide NOTHING substantial to
support the claims. You've mentioned you test the products yourself and
some of your comments are no doubt based on the results. However, when
asked about your testing methodology you won't divuldge it or share
samples via non public secure means with people (like me. lol). Who,
incidentally, actually are experts in malware amongst other subtopics
related to IT and IT security. You tried to use the absurd excuse the
samples you have are not for redistribution, but uhh, that is infact the
primary function of the programs--Assuming they are actually malicious in
nature. We have no way of knowing as you aren't willing to allow others to
safely examine them.

It's highly unlikely in reality that you have a source for malware that
the rest of us have no way of gaining the same family (maybe not identical
bins due to possible server side polymorphism) as you claim to have. That
couldn't be further from the truth. Researchers do share samples via
secure channels. You have no reason to need to protect us from possible
harm due to the samples you have, We aren't children here.
 
Several of us have either authored our own tools or supported those who
did directly in technical roles. Some have done both and still continue to
do so today.

It's my opinion that you likely know as much about malware executables or
the structure of a win32/64 PE about as well as you understand that system
images are not really intended for recovering from malware. They can
certainly be used for it, and in rare cases, behind a hardware firewall
while it's being blown back on (restored), but to tout them as a cure for
a virus or browser hijacker just reaks of amateur.





--
Character is doing the right thing when nobody's looking. There are too
many people who think that the only thing that's right is to get by, and
the only thing that's wrong is to get caught. - J.C. Watts

Re: There is no such thing as 100% Security

On 3/9/2012 10:35 AM, Dustin wrote:
Quoted text here. Click to load it

No it isn't and no it doesn't and no it isn't. It isn't suitable for
disinfecting a machine at all as it cannot do so silly. Reimaging is not
overkill, it takes 15 minutes for 50GB to restore a clean image. As for
what /could/ be a relatively minor problem as far as the user can tell,
could also not be. Why waste the time! If you like to waste your time
checking every file on your known to be vulnerable machine and think
only an easy fix will do it, without thoroughly checking deeper...you
will be in for a surprise one day. Such is a waste of time. Fix it and
don't do the same thing again...if possible.
Quoted text here. Click to load it

I am not a malware expert regarding the specifics of function. I don't
need or want to be. I am an expert in many other categories which
includes managing and developing strategies to enable always using a
clean fast machine and protecting data...which my friend is what
everyone wants. No one wants to decompile malware but for a few
vocationally interested people...they want to free themselves of it. You
want to disinfect...then disinfect, I want a known clean machine to use
with as little effort in attaining such as possible.


--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-mail

Re: There is no such thing as 100% Security


Quoted text here. Click to load it

Follow up: Why is it virtually every post from you revolves around "I AM
AN EXPERT...YOU AREN'T"? Dustin...you have coding skills. That doesn't
make you Allah. Plenty of people, including myself, have valuable
experience and knowledge resulting in informative instruction. Get over
it.

--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-
mail

Re: There is no such thing as 100% Security


Quoted text here. Click to load it

I didn't mention my own expertise in the post Bear. I critized you but
didn't bring that aspect up. This is simply nonsense. You're out of your
league and as long as you continue to post bullshit, I might! comment on
it. You can put words in my mouth if you want too, but I tend to read
usenet as threaded subject posts. Some others do as well, they can read
for themselves. I'm not touting the "I know more than you know." like some
kiddo, like your accusing me of doing.

I think you just don't like stepping into a pile of poo and having someone
question you about it.
 



--
Character is doing the right thing when nobody's looking. There are too
many people who think that the only thing that's right is to get by, and
the only thing that's wrong is to get caught. - J.C. Watts

Re: There is no such thing as 100% Security


Quoted text here. Click to load it

You create your own poo...I avoid it :)

--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-mail

Re: There is no such thing as 100% Security


Quoted text here. Click to load it

Ahh.. Well, this machine is a dual p3/800mhz coppermine pair SMP mode.
:) she doesn't do 50gigs of anything in 15minutes. lol
 
Quoted text here. Click to load it

It's limited. Can't adjust partition sizes, as macrium says in the
wizard.
 
Quoted text here. Click to load it

Uhh, I didn't try this with a laptop, I tried it on my tower I'm using
right now. Yes, it's old as hell, but still..



Quoted text here. Click to load it

I don't. I just think (rightly or wrongly so) that people should take a
slightly greater interest in that lightbox in front of them. :)

Quoted text here. Click to load it

I didn't lie about anything. Where should truely sensitive data be then
for safe keeping in a digital world?

Funny story. I know of a local bank thats entirely windows PC powered.
It has alot of sensitive data on systems. They don't secure wipe them
every night.

Quoted text here. Click to load it

No.. I disagree with your statements on the experience and enough time.
Yes, you do talk shit, but no you don't have the experience. That's why
you talk shit so often.
 
Quoted text here. Click to load it

Wrong again. I have no desire nor ill will towards you. You're one of
many people I converse with in a day. I just don't agree with much of
what you write and I respond as such. Nothing to do with self
importance. Bad advice is bad advice, no matter who provides it.

You're bad about providing unsound bad advice.

Quoted text here. Click to load it

I don't demand respect. I really don't care if you or anyone else
respects me or not. It's not a popularity contest. Never has been for
me. I made no effort to belittle anyone in my quoted comment; What I
said is true. Disassembly and decompile are two different animals. An
"expert" who doesn't know this is NOT an expert.

Quoted text here. Click to load it

By your stupid statement, so is
emisoft,malwarebytes,sas,norton,mcafee,avast,avira *insert more*.

When I think of n idiot savant, I have a mental picture of a big dumb
clumsy blackbear.


--
Character is doing the right thing when nobody's looking. There are too
many people who think that the only thing that's right is to get by,
and the only thing that's wrong is to get caught. - J.C. Watts

Re: There is no such thing as 100% Security

Quoted text here. Click to load it

What exactly do you do at your "major world wide corporation".  Do you
work on computers or are you in admin?  I mean, is your work relevant
to computing.


--
J.T.



Re: There is no such thing as 100% Security

Quoted text here. Click to load it

What exactly do you do at your "major world wide corporation".  Do you
work on computers or are you in admin?  I mean, is your work relevant
to computing.


--
J.T.



Re: There is no such thing as 100% Security

@reece.net.au:

Quoted text here. Click to load it

Yes.

--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-mail

Re: There is no such thing as 100% Security

@reece.net.au:

Quoted text here. Click to load it

You first :0

--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-mail

Re: There is no such thing as 100% Security

On Sat, 10 Mar 2012 17:40:59 +0000, Jack wrote:

Quoted text here. Click to load it

http://prorev.com/bottoms.htm

Regards
Gordon

Re: There is no such thing as 100% Security


Quoted text here. Click to load it

That guy sounds a hoot if it were only true.

--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-mail

Re: There is no such thing as 100% Security


Quoted text here. Click to load it

I'm not a security specialist. I'm an application programmer with 7
years experience at a medium sized software house assigned to a freight
distribution system. It's a big project. What about you?


--
J.T.



Re: There is no such thing as 100% Security


Quoted text here. Click to load it

Too many specialties to go into here, but more relevant is 25+ years as
Owner & CEO of a computer business with a variety of departments. My
most endeared roll in that is repairing PC's from the community and
teaching them how to fish. My additional current roll with the major
International company will not be discussed here.

--
Bear
http://bearware.info
The real Bear's header path is:
news.sunsite.dk!dotsrc.org!filter.dotsrc.org!news.dotsrc.org!not-for-
mail

Re: There is no such thing as 100% Security


Quoted text here. Click to load it

What sort of computer business? Video production, kinkos, office max,
best buy could all count as a computer business...

too many specialities? So... jack of all trades, master of none?

explain this repairing PCs. Surely theres more to repairs that blowing
an image back onto one?


--
Character is doing the right thing when nobody's looking. There are too
many people who think that the only thing that's right is to get by,
and the only thing that's wrong is to get caught. - J.C. Watts

Site Timeline