undefined | Better HN

0 pointsrudedogg4y ago0 comments

This mentality of "there will always be new exploits" bothers me. Yes, there will always be exploits, but we can do a hell of a lot better at preventing them than we are. We know how to design systems that are really hard to get into – we just don't do that. Blaming a lack of IT funding is misguided in my opinion too.

0 comments

viraptor4y ago

Sure, there are ways that would pretty much nuke most of the ransomware business. For example application whitelisting. I wish it was more popular.

dopidopHN4y ago

But then who whitelist the whitelister?

Solarwind was fun for that. They provide safe update of signed binaries . But their build system is corrupt, builds tampered stuffs and sign them.

I’m a just a user of those things: it seams that cryptography is not what is breaking the chain of trust. It’s the usage? But go fix phishing.

Maybe gov agencies should opt in for some tightly manage environments?

viraptor4y ago

Windows application whitelisting in this context means your own list based on either paths or hashes of executables. https://www.bleepingcomputer.com/tutorials/create-an-applica...

But you're right that it wouldn't help with the solarwind situation. Once installed and given privileges, a trusted app can do whatever it wants.

j / k navigate · click thread line to collapse

0 pointsrudedogg4y ago0 comments

0 comments

viraptor4y ago

Sure, there are ways that would pretty much nuke most of the ransomware business. For example application whitelisting. I wish it was more popular.

dopidopHN4y ago

But then who whitelist the whitelister?

Solarwind was fun for that. They provide safe update of signed binaries . But their build system is corrupt, builds tampered stuffs and sign them.

I’m a just a user of those things: it seams that cryptography is not what is breaking the chain of trust. It’s the usage? But go fix phishing.

Maybe gov agencies should opt in for some tightly manage environments?

viraptor4y ago

Windows application whitelisting in this context means your own list based on either paths or hashes of executables. https://www.bleepingcomputer.com/tutorials/create-an-applica...

But you're right that it wouldn't help with the solarwind situation. Once installed and given privileges, a trusted app can do whatever it wants.

j / k navigate · click thread line to collapse