[There's a reason that Yoda is the unofficial mascot of SBS. Size indeed matters not.] Fully patched is in the eye of the beholder - THE OFFICIAL BLOG OF THE SBS DIVA
Fri, Jul 30 2010 18:51 bradley

Fully patched is in the eye of the beholder

At Blackhat you can read between the lines that "fully patched" doesn't mean you are fully secure.  At any point in time there are any number of updates that vendors are working on.  Some of them are being worked on with a security researcher, some are being worked on because someone found a vuln and it's popping up in the wild.

These days the bad stuff isn't just IE.  Isn't just active X, isn't just adobe, isn't just quicktime, isn't just flash, isn't just rogue a/v coming in through bad links in google. 

These days I'm using stuff like opendns and blocking urls.  I'm making sure we're not running as admin. 

But if you say on any given day that "Hey I'm fully patched, I'm secure".... guess again...

Filed under:

# re: Fully patched is in the eye of the beholder

Saturday, July 31, 2010 11:41 PM by Dean

If you want to be 100% safe enter this for your URL block

*.*.*

# @Dean

Monday, August 02, 2010 10:39 AM by Joe Raby

....or just unplug.

# re: Fully patched is in the eye of the beholder

Sunday, August 08, 2010 12:52 PM by Dean

There is a very good article from June 2008 on The Register that talks about Web browsers not being able to protect us that is still relevent today.

www.theregister.co.uk/.../marginal_browser_security_protections