LISTSERV - HP3000-L Archives

HP3000-L Archives

October 2008, Week 5

HP3000-L@RAVEN.UTC.EDU

	LISTSERV Archives
	HP3000-L Home
	HP3000-L October 2008, Week 5

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: Eugene Watch: Volokh Conspiracy Slashdotted
From:	Craig Lalley <[log in to unmask]>
Reply To:	[log in to unmask]
Date:	Thu, 30 Oct 2008 08:14:48 -0700
Content-Type:	text/plain
Parts/Attachments:	text/plain (23 lines)

--- On Thu, 10/30/08, Jeff Kell <[log in to unmask]> wrote:

And yes, to argue the point from a security perspective, there is an
organization now (not sure if public or still NDA) that keeps an MD5
registry of all known "malware" - viruses, trojans, botnets,rootkits,
etc.  We're not "all that far" from a reputation score of an
attachment.  The debate here then becomes be what sort of reputation
we're scoring, rather than the scoring itself (or at least the reference
database).

Compiling similar libraries isn't new, NIST has been doing it (NSRL) for
years.  http://www.nsrl.nist.gov/

*********************************************************
How difficult would it be to modify the MD5 value to a benign value... camouflage so to speak.

-Craig



* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

ATOM RSS1 RSS2

RAVEN.UTC.EDU