On Wednesday 29 December 2004 17:07, James M. Patton wrote:
But when dealing with script kiddies, any delay or difficulties you can cause very well may make the difference. In general, anything that one can do to increase the security of an information system under their control is a good thing. And any tools the vendors can provide us only helps to increase the security posture of our systems.
Exactly. And doubting the use of such tools would be like saying "why using a seatbelt, at 150 km/h it doesn't save me anyway"...
Downgrading a local / remote compromise (or code execution exploit) to a denial of service is a great step forward. It could mean the difference of joe hacker crashing your system or having your shadow file - which would you prefer? I personally would prefer that my system be crashed than having to deal with a security incident.
ACK. It's nice to see they're working on at according to Thomas.