Nemeski@lemm.ee to Cybersecurity@sh.itjust.worksEnglish · 2 years agoAfter cybersecurity lab wouldn’t use AV software, US accuses Georgia Tech of fraudarstechnica.comexternal-linkmessage-square13linkfedilinkarrow-up156arrow-down10
arrow-up156arrow-down1external-linkAfter cybersecurity lab wouldn’t use AV software, US accuses Georgia Tech of fraudarstechnica.comNemeski@lemm.ee to Cybersecurity@sh.itjust.worksEnglish · 2 years agomessage-square13linkfedilink
minus-squarejet@hackertalks.comlinkfedilinkEnglisharrow-up13arrow-down1·2 years agoI think the security researcher has a valid point. In a secure environment you don’t want random things running in memory, sending samples to third parties. Would a static virus scanner run periodically on the volume itself been sufficient? If yes, then the researcher was being unreasonable.
minus-squarecorsicanguppy@lemmy.caBannedlinkfedilinkEnglisharrow-up10·edit-22 years agoRemoved by mod
minus-squarejet@hackertalks.comlinkfedilinkEnglisharrow-up3·2 years agoThat’s a real roller coaster ride of a journey. Thanks for sharing it. Glad you got some bonus hardware out of it.
minus-squareflying_sheep@lemmy.mllinkfedilinkEnglisharrow-up4·2 years agoTotally reasonable to not do a dumb thing if you have no contractual obligation to do the dumb thing. Sadly they had that obligation, so they have to weigh the cost of doing the dumb thing with the cost of breaching contract.
I think the security researcher has a valid point.
In a secure environment you don’t want random things running in memory, sending samples to third parties.
Would a static virus scanner run periodically on the volume itself been sufficient? If yes, then the researcher was being unreasonable.
Removed by mod
That’s a real roller coaster ride of a journey. Thanks for sharing it. Glad you got some bonus hardware out of it.
Removed by mod
Totally reasonable to not do a dumb thing if you have no contractual obligation to do the dumb thing.
Sadly they had that obligation, so they have to weigh the cost of doing the dumb thing with the cost of breaching contract.