ee_lcpaa
asked on
Application whitelisting vs executable change
Just want to confirm the correct definition of application whitelisting.
Is Application whitelisting just for checking if the bat/executable to be executed is authorized or not?
Any update in executable on a host is not in the scope of application whitelisting?
If I would like to detect file changes, I would need a tool like HIDS/NIDS. Is my understanding correct?
Is Application whitelisting just for checking if the bat/executable to be executed is authorized or not?
Any update in executable on a host is not in the scope of application whitelisting?
If I would like to detect file changes, I would need a tool like HIDS/NIDS. Is my understanding correct?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
That article somehow does not consider python and java developers...