Comments on: Incredible statement http://www.deadbeefcafe.org/archives/56 Computer Security, Geek Stuff, and Food Fri, 21 Nov 2008 23:58:08 +0000 http://wordpress.org/?v=2.6.3 By: decaf http://www.deadbeefcafe.org/archives/56#comment-2237 decaf Sat, 14 Jul 2007 05:18:09 +0000 http://www.deadbeefcafe.org/archives/56#comment-2237 2007-07-13 21:39:40 Bob, Anyone that both terms themselves a ’security expert’ and suggests virtualization as a panacea for solving system security issues has definitely oversold their skillset. Of the security professionals I know, each and everyone of them understand that virtualization _may_ abstract some problems, but you still have a system running that someone can break into, and is likely trying to break into right now. (Okay, I’m a little more paranoid than most people, I admit it.) However, in this particular case, virtualization wasn’t even the suggested solution to the security problem. But this does remind me of two things I was thinking of blathering about, a Reasonable Paranoia, and why security people like virtualization (and it’s not because it increases security). 2007-07-13 21:39:40

Bob,

Anyone that both terms themselves a ’security expert’ and suggests virtualization as a panacea for solving system security issues has definitely oversold their skillset. Of the security professionals I know, each and everyone of them understand that virtualization _may_ abstract some problems, but you still have a system running that someone can break into, and is likely trying to break into right now. (Okay, I’m a little more paranoid than most people, I admit it.)

However, in this particular case, virtualization wasn’t even the suggested solution to the security problem.

But this does remind me of two things I was thinking of blathering about, a Reasonable Paranoia, and why security people like virtualization (and it’s not because it increases security).

]]> By: Bob Matsuoka http://www.deadbeefcafe.org/archives/56#comment-2086 Bob Matsuoka Wed, 06 Jun 2007 17:52:33 +0000 http://www.deadbeefcafe.org/archives/56#comment-2086 I agree that using Minis to run Windows is bad idea. But this person has (probably inadvertently) suggested something that many security experts think is a _very good_ idea -- to run Windows more securely by using virtualization. The host OS could as easily be Windows or Linux as a Mac. There is also no evidence for your explanation of the security of OS X -- The use of Intel Macs, and Macs overall, has increased substantially over the past few years, and yet there are still no successful OS-level exploits in the wild. I agree that using Minis to run Windows is bad idea. But this person has (probably inadvertently) suggested something that many security experts think is a _very good_ idea — to run Windows more securely by using virtualization. The host OS could as easily be Windows or Linux as a Mac.

There is also no evidence for your explanation of the security of OS X — The use of Intel Macs, and Macs overall, has increased substantially over the past few years, and yet there are still no successful OS-level exploits in the wild.

]]> By: rahrens http://www.deadbeefcafe.org/archives/56#comment-540 rahrens Thu, 26 Oct 2006 12:26:22 +0000 http://www.deadbeefcafe.org/archives/56#comment-540 Man, I thought I'd heard everything before, but this one takes the cake! I've been in the tech support field with the Feds for ten years, and I've used and fixed Macs for longer than that. So I've heard and seen a lot of crap over the years, on both sides of the platform divide. But to hear of a sysadmin that can actually take that position...methinks he'd be better off in another line of work. Certainly his employer would! Man, I thought I’d heard everything before, but this one takes the cake! I’ve been in the tech support field with the Feds for ten years, and I’ve used and fixed Macs for longer than that. So I’ve heard and seen a lot of crap over the years, on both sides of the platform divide.

But to hear of a sysadmin that can actually take that position…methinks he’d be better off in another line of work. Certainly his employer would!

]]> By: This is not the Mac security you’re looking for. | securosis.com http://www.deadbeefcafe.org/archives/56#comment-532 This is not the Mac security you’re looking for. | securosis.com Mon, 23 Oct 2006 22:38:03 +0000 http://www.deadbeefcafe.org/archives/56#comment-532 [...] (updated: direct link to the original story at deadbeat cafe) [...] [...] (updated: direct link to the original story at deadbeat cafe) [...]

]]>