December 17, 2008
With some “experts” suggesting you switch browsers to hide away from bad vulnerabilities in IE, you have to wonder what some of these people are thinking. It continues to highlight the IT industry’s obsession with band-aid solutions – rarely looking at, nor attacking, the root cause of the problems we face with insecure software.
David Rice in his latest post here at the Geekonomics website covers it well.
http://www.zdnet.com.au/blogs/securifythis/soa/Blog-IE-zero-day-Money-v-tubes-Choose-one/0,139033343,339293856,00.htm#talkback
Those scary 0days. Lucky we know about them all.
There’s still supposed experts out there talking about how this could be a good thing. Usually US based and always ready with those work-around solutions. Probably vendors responding as usual. Lets get a WAF. That will save you! You need a WAF because you have 1 million servers and there is no way you can protect yourself. I enjoyed reading again Securus thoughts on adding more appliances through Mathew Strahan’s interview and the additional security risks they add. Have those same ‘experts’ tested the devices they promote?
What is China using for their ‘great wall’ filtering? Will the local ISPs who are reluctantly doing it let Securus Global try to break it? Have you asked? Now that would be good guys!