Comments for Lost in Reception

Comment on Sendmail names LogiQ “App of the Month” by Sendmail names LogiQ “App of the Month” « Raz’s Blog

Sendmail names LogiQ “App of the Month” « Raz’s Blog — Tue, 15 Feb 2011 06:13:58 +0000

[...] (Originally posted here) [...]

Comment on McAfee’s “DAT 5664″ reborn as ClamAV’s “Exploit.PDF-9669″ by McAfee’s “DAT 5664″ and ClamAV’s “Exploit.PDF-9669″ reborn as BitDefender’s “Trojan.FakeAlert.5″ « Lost in Reception

Mon, 22 Mar 2010 03:25:23 +0000

[...] months ago I wrote about McAfee’s blunder, and then two months ago about Sourcefire doing the much the same; now BitDefender has joined the fun. (also, [...]

Comment on Lessons from McAfee’s “DAT 5664″ by McAfee’s “DAT 5664″ and ClamAV’s “Exploit.PDF-9669″ reborn as BitDefender’s “Trojan.FakeAlert.5″ « Lost in Reception

Mon, 22 Mar 2010 03:25:20 +0000

[...] months ago I wrote about McAfee’s blunder, and then two months ago about Sourcefire doing the much the same; now BitDefender has joined the [...]

Comment on McAfee’s “DAT 5664″ reborn as ClamAV’s “Exploit.PDF-9669″ by Roland Turner

Roland Turner — Mon, 11 Jan 2010 09:08:54 +0000

No, an obscure comment on a forum somewhere about an empty string prompted me to check the possibility. Somewhere else I did see a blog posting by someone claiming to have actually recognised the hash itself.

My mental store of useless information doesn’t yet reach these heights.

Comment on McAfee’s “DAT 5664″ reborn as ClamAV’s “Exploit.PDF-9669″ by Christian Kent

Christian Kent — Mon, 11 Jan 2010 04:38:14 +0000

How did you find that MD5 chestnut? Just a familiar pattern floating around your head?

Comment on Lessons from McAfee’s “DAT 5664″ by McAfee’s “DAT 5664″ reborn as ClamAV’s “Exploit.PDF-9669″ « Lost in Reception

Mon, 11 Jan 2010 04:11:02 +0000

[...] I commented on the problems that arose when older versions of McAfee’s VirusScan accepted signature updates that required a newer engine version to operate correctly. In addition to pointing out that what happened was not specific to McAfee, I wrote: Fail safe! Deal with version skew. Bricking a device because its software was out of date is not a reasonable failure mode. [...]

Comment on Lessons from McAfee’s “DAT 5664″ by Meng Weng Wong

Meng Weng Wong — Tue, 07 Jul 2009 08:36:05 +0000

Taking this scenario to its logical extreme … the “Core Wars” future can only be avoided by the thin client model of computing, and is in fact identical to it.

Comment on Lessons from McAfee’s “DAT 5664″ by Roland Turner

Roland Turner — Mon, 06 Jul 2009 10:31:24 +0000

My friend and former colleague, Leon Ward, has produced a tool for Snort rulesets http://leonward.wordpress.com/dumbpig/ which doesn’t tackle exactly the “engine version dependency problem” but is a step in this direction; that engines should have attached to them tools for sanity checking rules that are about to be deployed.

Comment on Lessons from McAfee’s “DAT 5664″ by New Lost In Reception blog post: Lessons from McAfee’s “DAT 5664″ « Raz’s Blog

Mon, 06 Jul 2009 06:40:31 +0000

[...] New Lost In Reception blog post: Lessons from McAfee’s “DAT 5664″ By Roland Turner Here. [...]

Comment on Message Loss Enters the Real World by Obfuscated code and false positive risks in anti-malware systems « Lost in Reception

Mon, 15 Jun 2009 07:15:33 +0000

[...] to the false-positive risks in email that interest me generally and the real-world analogies that I noted a couple of months back, it appears that some behaviour by legitimate software developers is [...]