|
Full Disclosure
mailing list archives
Re: Compliance Is Wasted Money, Study Finds
From: Nick FitzGerald <nick () virus-l demon co uk>
Date: Mon, 26 Apr 2010 08:57:18 +1200
Shaqe Wan wrote:
<<snip>>
Because it shall be nonsense to deal with CC, and not have an Anti-virus for example !!
Well, you see, _that_ is abject nonsense on its face.
Do you have any understanding of one of the most basic of security
issues -- default allow vs. default deny?
There are many more secure ways to run systems _without_ antivirus
software.
Anyone authoritatively stating that antivirus software is a necessary
component of a "reasonably secure" system is a fool.
Anyone authoritatively stating that antivirus software is a necessary
component of a "sufficiently secure" system is one (or more) of; a
fool, a person with an unusually low standard of system security, or a
shill for an antivirus producer.
So _if_, as you and another recent poster strongly imply, the PCI
standards include a specific _requirement_ for antivirus software, then
the standards themselves are total nonsense...
Regards,
Nick FitzGerald
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
 By Date 
By Thread
Current thread:
Re: Compliance Is Wasted Money, Study Finds Shaqe Wan (Apr 25)
Re: Compliance Is Wasted Money, Study Finds Digital X (Apr 26)
Re: Compliance Is Wasted Money, Study Finds Shaqe Wan (Apr 27)
Re: Compliance Is Wasted Money, Study Finds Shaqe Wan (Apr 26)
Re: Compliance Is Wasted Money, Study Finds Shaqe Wan (Apr 26)
(Thread continues...)
|
