|
Firewall Wizards
mailing list archives
Re: concerning ~el8 / project mayhem
From: Barney Wolff <barney () tp databus com>
Date: Wed, 21 Aug 2002 11:28:29 -0400
Why on earth even spend time debating whether config reviews or scans
are better? It's equivalent to debating whether structured walkthroughs
or testing work better to find software flaws. Which is more important,
your left leg or your right?
On Wed, Aug 21, 2002 at 11:04:55AM -0400, Paul Robertson wrote:
While I am indeed advocating good design, I'm not against validation, I'm
against vulnerability scanning- that, I think is our point of difference
(or maybe I just didn't articulate it well.) In other words, I'm saying
that configuration validation is better than vulnerability testing for
almost all classes of electronic attack.
--
Barney Wolff
I'm available by contract or FT: http://www.databus.com/bwresume.pdf
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
 By Date 
By Thread
Current thread:
- Re: concerning ~el8 / project mayhem, (continued)
|
Intro
