-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -- "Andre Gironda" <andre@operations.net> wrote: [lots of good stuff elided]

It's our fault for not pushing AV on your customers, and it's the AV's fault for not providing audit data to us, and it's the software vendors' fault for causing us to have to recommend AV and for AV to exist. The liability should land on the software vendors.

AV is simply a tool, not a panacea. In fact, what to do about the hundreds of thousands of compromised websites/servers that help facilitate this crime? What about the thousands of malicious rogue DNS servers? There's enough problem-spaces to point fingers all around... $.02, - - ferg -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.6.3 (Build 3017) wj8DBQFHshdFq1pz9mNUZTMRAhxjAJ9H8m2opz5e69X+GLhjtm50OUalyACgpRdd orMVvqPF/bdpdCV6nkn9/3g= =KwZs -----END PGP SIGNATURE----- -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg(at)netzero.net ferg's tech blog: http://fergdawg.blogspot.com/