Sure, perhaps weekly maybe daily at a stretch, isn't being compromised that long bad enough? I know I wouldn't feel much better if you told me an attacker had kernel code exec, but only for a few days!
Right, it sounds like we agree on that. How about this - don't you think we can do better than randomly interrupting persistent attacks, if we're choosing security boundaries to get supported?
-
-
If we can today implement perfect security boundaries such that persistence is no longer of any value, then great, we should do that. But I don't believe that's the current reality, and until then, I'm a proponent of defense-in-depth of which non-persistence is a part.
-
It *is* the reality that we have to choose which mitigations and security boundaries we want to support. The benefit of non-persistence is negligible, and only applies in very contrived scenarios.... Is that really "defense-in-depth"? The term has lost all meaning lol.
- 16 more replies
New conversation -
-
-
This Tweet is unavailable.
-
This Tweet is unavailable.
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.