RE: [Full-Disclosure] Show me the Virrii!

• Previous message: debian-security-announce_at_lists.debian.org: "[Full-Disclosure] [SECURITY] [DSA 406-1] New lftp packages fix arbitrary code execution"
• In reply to: Valdis.Kletnieks_at_vt.edu: "Re: [Full-Disclosure] Show me the Virrii!"
• Next in thread: Paul Niranjan: "RE: [Full-Disclosure] Show me the Virrii!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <full-disclosure@lists.netsys.com>
Date: Mon, 5 Jan 2004 19:34:59 +1300

> -----Original Message-----
> From: full-disclosure-admin@lists.netsys.com
> [mailto:full-disclosure-admin@lists.netsys.com] On Behalf Of
> Valdis.Kletnieks@vt.edu
> Sent: Monday, 5 January 2004 4:58 p.m.
> To: Harry Hoffman
> Cc: full-disclosure@lists.netsys.com
> Subject: Re: [Full-Disclosure] Show me the Virrii!
>
> > Not to protect against known virii would be negligent and lazy which is
why most
> > modern OS's provide these "fixes" as patches to eventually become part
of the
> > main OS.
>
> My point was that if the goal is to provide actual protection for the end
user
> rather than something that looks good next to a ruler, you quickly reach a
> point of diminishing returns in trying to include more signatures. At
some

That's why people "invented" in-the-wild list (although it's not 100%
correct always and lagging).
Detection of zoo collections in most cases will get you only better
marketing (our product detects 123240294 viruses).

Cheers,

Bojan

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• Previous message: debian-security-announce_at_lists.debian.org: "[Full-Disclosure] [SECURITY] [DSA 406-1] New lftp packages fix arbitrary code execution"
• In reply to: Valdis.Kletnieks_at_vt.edu: "Re: [Full-Disclosure] Show me the Virrii!"
• Next in thread: Paul Niranjan: "RE: [Full-Disclosure] Show me the Virrii!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]