Return-Path: <sentto-279987-1475-996067928-fc=all.net@returns.onelist.com> Delivered-To: fc@all.net Received: from 204.181.12.215 by localhost with POP3 (fetchmail-5.1.0) for fc@localhost (single-drop); Wed, 25 Jul 2001 06:33:07 -0700 (PDT) Received: (qmail 16786 invoked by uid 510); 25 Jul 2001 12:34:43 -0000 Received: from n9.groups.yahoo.com (216.115.96.59) by 204.181.12.215 with SMTP; 25 Jul 2001 12:34:43 -0000 X-eGroups-Return: sentto-279987-1475-996067928-fc=all.net@returns.onelist.com Received: from [10.1.4.52] by fl.egroups.com with NNFMP; 25 Jul 2001 13:32:08 -0000 X-Sender: Ross.Leo@csoconline.com X-Apparently-To: iwar@yahoogroups.com Received: (EGP: mail-7_2_0); 25 Jul 2001 13:32:08 -0000 Received: (qmail 10631 invoked from network); 25 Jul 2001 13:30:47 -0000 Received: from unknown (10.1.10.26) by m8.onelist.org with QMQP; 25 Jul 2001 13:30:47 -0000 Received: from unknown (HELO fapp05.csoconline.com) (140.169.36.3) by mta1 with SMTP; 25 Jul 2001 13:30:46 -0000 Received: from csoc-mail-msfc.csoconline.com by fapp05.csoconline.com via smtpd (for mta1.onelist.com [208.48.218.7]) with SMTP; 25 Jul 2001 13:28:06 UT Received: by csoc-mail-msfc.csoconline.com with Internet Mail Service (5.5.2653.19) id <PP98MDVV>; Wed, 25 Jul 2001 08:30:43 -0500 Message-ID: <72222DC86846D411ABD300A0C9EB08A156FCD1@csoc-mail-box.csoconline.com> To: "'iwar@yahoogroups.com'" <iwar@yahoogroups.com> X-Mailer: Internet Mail Service (5.5.2653.19) From: "Leo, Ross" <Ross.Leo@csoconline.com> Mailing-List: list iwar@yahoogroups.com; contact iwar-owner@yahoogroups.com Delivered-To: mailing list iwar@yahoogroups.com Precedence: bulk List-Unsubscribe: <mailto:iwar-unsubscribe@yahoogroups.com> Date: Wed, 25 Jul 2001 08:30:43 -0500 Reply-To: iwar@yahoogroups.com Subject: RE: [iwar] Chinese IW Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Frankly, I have never wondered where the Chinese (or anyone else we consider a "bad guy") get their technology, virus or otherwise. In 1998, the firm I worked for (global trader of various commodities) kept getting a virus through on-line documents from a Chinese trading partner. After several occurrences, I phoned the partner to tell them to check out their systems and clean them. They apologized profusely for the inconvenience - they discovered that the licenses to their Norton AV and their McAfee had expired, and the *.DAT updates were no longer being added! A little further questioning (under the guise of trying to help them figure out the problem) revealed that the products had been acquired on a trip to Singapore since they could not be purchased (then) in the PRC. The products were however in their most current international form at the time they were acquired (by whatever means). Folks may like to think that these potentially hostile parties have stolen all the technology they currently possess. This may be true to some extent, but what is more often the case is they simply buy it like everyone else. They may pirate it, copy it, reverse engineer it, etc, after they obtain a few legit copies, but that is no more than goes on in the US daily. This is just another business case of "if you can't beat 'em, join 'em." Only this time its "if you can't keep 'em from stealing it, offer to sell it to them before they steal it anyway". IMHO: The fact that the companies that do this facilitate potentially hostile parties ultimately learning how to compromise the systems we are trying to protect is of no particular or apparent consequence to them, not realizing that they themselves become as big a target as our labs and DoD might be. When I bring this to their attention, the salesmen magnanimously suggest I look at it as "job security" for security types (We are a "type" now"?). The difference today versus during the Cold War is now it is about dollars, not dogma (no great surprise). Ross Leo -----Original Message----- From: Fred Cohen [ mailto:fc@all.net <mailto:fc@all.net> ] Sent: Tuesday, July 24, 2001 15:47 To: iwar@yahoogroups.com Subject: Re: [iwar] Chinese IW Per the message sent by JunkMail Rosenberger: > Do you wonder where China gets all its virus technology? Wonder no more! > They obtain it directly from U.S. antivirus firms. Ironically, those same > U.S. antivirus firms *refuse* to supply Washington with virus technology -- > because they don't trust the feds. Go figure. Read > http://Vmyths.com/resource.cfm?id=49 <http://Vmyths.com/resource.cfm?id=49&page=1> &page=1 for details. > Rob Ah yes - the famous provision of details to the Chinese while keeping the US in the dark. Money is the difference - of course. Business is more powerful than government. Ever see "Rollerball"? FC [Non-text portions of this message have been removed] ------------------------ Yahoo! Groups Sponsor ---------------------~--> Secure your servers with 128-bit SSL encryption! Grab your copy of VeriSign's FREE Guide "Securing Your Web Site for Business." Get it now! http://www.verisign.com/cgi-bin/go.cgi?a=n094442340008000 http://us.click.yahoo.com/6lIgYB/IWxCAA/yigFAA/kgFolB/TM ---------------------------------------------------------------------~-> ------------------ http://all.net/ Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/
This archive was generated by hypermail 2.1.2 : 2001-09-29 21:08:38 PDT