[40534] in bugtraq
Re: PocketPC exploitation
daemon@ATHENA.MIT.EDU (Denis Jedig)
Fri Sep 30 13:34:17 2005
Message-ID: <433D39CD.6040301@syneticon.de>
Date: Fri, 30 Sep 2005 15:12:45 +0200
From: Denis Jedig <seclists@syneticon.de>
MIME-Version: 1.0
To: jose@onestopearth.com
Cc: vuln-dev@securityfocus.com, bugtraq@securityfocus.com
In-Reply-To: <BAY105-F536A027DDDAA77B94D98AE88D0@phx.gbl>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Jose Morales wrote:
> proactive defense is better than reactive defense that is the best real
> life experience we have learned from the past to help prepare for the
> future.
Although it is a Good Idea (tm) to uncover design deficiencies in
current AV products, we never should forget that "antivirus" is *by
definition* a reactive thing and thus cannot protect from unknown
threats. If we wanted to have a *really* proactive approach, we would
have to either ask for OS capabilities to efficiently compart
(malicious) code or for the software manufacturers to take damn care
when using low-level languages and introduce efficient patching
mechanisms at last.
Regards,
Denis Jedig
syneticon networks GbR
