Thanks for sharing I have never thought about using a comparison like this between a good machine and infected machine!

Patterson's presentations are always top notch!

I used to be astonished that Patterson cared so little about knowing, or perhaps his own not knowing, assembler or perhaps even raw machine code. Coming to terms with this error of mine taught me a bit about one of my weaknesses. What Patterson's position represents, very sensibly and profitably, is that not many bad guys actually operate in assembler or close to the metal. A very great deal of stupidity, harm, and even conscious criminality, is carried out in unsophisticated ways. It could be the drunk just picking up something that's not nailed down on the way home after the bars close. It could be the guy (usually) operating at the level of the kid who gets passed up to the next grade with scores of 40 because the teacher says What the hell else are we to do with the poor dope? There are so many of these unsophisticates, causing so much total harm in all their dopey ways, that even the unsophisticated good guy can catch a lot of them, or prevent a lot of harm by taking precautions, or scare a lot of these mopes straight, that simple honesty is worthwhile even without brilliant tools in its hands. My not having understood this is one of the errors of perfectionism, to be charitable, or of absolutism to not be. This is not to say that there is no good role for _some_ perfectionism, or even absolutism, in a good society operating well. We don't mind is a jeweller or a graphic artist is a perfectionist. There must be other examples -- but life is short and the Sun wiould die out before I finished typing. For most of us it is best not to be that perfect jeweller. We'd starve. And the world would be a better place if no young boy spent more than a few months infatuated with Ayn Rand. Damn, but that's something to try to bring about. Most ex-Ayn-Randers are doing a reasonable job on this problem. One of the reasons we survive... Last quick note: I admire you folks a good deal, respect you a whole lot, and Oh, my goodness, but I am grateful for what you do!

On the topic of aggrandizing your adversary, the reality is that we don't strictly *know* our adversaries' capabilities, so assuming the worst case scenario and then working within your business constraints is a solid approach.