Slashdot Mirror
Google Security Engineer Urges Hackers To Focus Less on Anti-Virus and Intrusion Products (theregister.co.uk)
Google senior security engineer Darren Bilby has asked fellow hackers to expend less effort on tools like antivirus and intrusion detection and instead focus on more meaningful defenses such as whitelisting applications. From a report on The Register:The incident responder from Google's Sydney office, who is charged with researching very advanced attacks including the 2009 Operation Aurora campaign, decried many existing tools as ineffective "magic" that engineers are forced to install for the sake of compliance but at the expense of real security. "Please no more magic," he told the Kiwicon hacking conference in Wellington, New Zealand today. "We need to stop investing in those things we have shown do not work. And sure you are going to have to spend some time on things like intrusion detection systems because that's what the industry has decided is the plan, but allocate some time to working on things that actually genuinely help. [...] Antivirus does some useful things, but in reality it is more like a canary in the coal mine. It is worse than that. It's like we are standing around the dead canary saying 'Thank god it inhaled all the poisonous gas'," he said.
Fuck this guy.
Back off. I'm an actual Google Pornography Engineer, and I say when to fuck this guy.
What Google means is "only allow Google Approved" software to run on your locked down device. That is what "whitelisting" means. Meanwhile Android is the biggest malware laden piece of shit on the planet when it gets deployed to real devices and Googles Ad network is a vector for drive by exploits. So fuck you Google.
"unless you don't want to let the users do anything"
All Google wants is for you to consume content so they can get you to view ads. They don't care about empowering users.
I agree...that does look pretty racist. All those lawn jockeys are white. Where is the diversity?