[Dailydave] How do I defend against 0day?
Lurene Grenier
pusscat at metasploit.com
Tue Apr 21 09:27:00 EDT 2009
> 1) Switch to an open-source operating system and open-source
> applications. Create custom forks of each of my applications' source
> trees, and patch my forks against the 0day vulnerabilities I
> purchased. Don't share my patches with the outside world.
Why is an open source operating system necessary for the creation of patches?
Maybe Dave is suggesting you take classes and look at canvas so that
you gain an understanding of 0-day attacks, both in how to create
them, and thus how to defend against them by learning what makes them
feasible in the real world (through classes), and also by learning the
state of the art of exploitation of modern operating systems (through
canvas)
Then with that understanding, and with the knowledge of what is cost
effective to your enterprise (functionality vs. sensitivity of data)
you can take reasonable steps to protect that enterprise.
Without this knowledge though, you're effed.
--
~ Lurene
More information about the Dailydave
mailing list