Security Excuse Bing

Comments

# Chris Quirke said on 12 August, 2007 02:14 AM

"But it was from someone I know!"

"We can't have a virus, we use NORTON"

"I don't know what it was, we always just wipe and rebuild"

# Alun Jones said on 14 August, 2007 11:12 AM

I've heard that last - "I don't know what it was, we always just wipe and rebuild" - a number of times, and sometimes the perpetrator of the remark points to Jesper's article on "Help: I Got Hacked. Now What Do I Do?" as justification.

The answer, of course, is that this article tells you how to clean the system (by flattening and repaving) - but if you do this, and you clean the system back to the state it was in before it got infected, all you've done is restored the system back to the state that allowed it to get infected.

You'll get infected again, for sure, that way (with the updated version of the same attack - and maybe the updated version is harder to detect).

That's why you can't get away with reading and parroting security articles, no matter how good they might be. You actually have to think about their implications, or your reading is useless.

Leave a Comment

Title (required) 

Name: (required) 

Website: (optional)

Comments (required) 

Remember Me?

Search

This Blog

• Home

Tags

Community

Archives

Links

• My Microsoft Blog
• Steve's Blog
• Susan's SBS blog
• Alun Jones is a great guy, with great insight
• Jen's blog
• Aaron Margosis' blog

Syndication

• RSS for Posts
• Atom
• RSS for Comments
• Email Notifications
  Go

News

• The Windows Server 2008 Security Resource Kit is available!
  . You can also order it as part of the whole Windows Server 2008 Resource Kit and save some money.
  Or, if you need to know about Vista instead, there is:
   
  
  If you need a more general approach to help you Protect Your Windows Network, there is a book for that too
  

  There is now a mobile version of the blog.