Re: how can a firewall box handle virus?
- From: Gerald Vogt <vogt@xxxxxxxxxxx>
- Date: Mon, 12 Nov 2007 15:04:05 -0800
On Nov 13, 6:17 am, "peter" <nos...@xxxxxxxxxx> wrote:
Some new firewall boxes advertised DPI and virus protection (e.g. sonicwall
tz180). Sounds attractive. But how does it work?
Let's say I'm downloading a pop3 email. Does the firewall stores the entire
email and attachment, scan it for virus, then forward it on if it's clean?
No. It just inspects it while it is downloading just like any other
antivirus software does. They start at the beginning and end at the
end. You only need a small buffer for that.
But it also does not work miracles. It does not forward anything "if
it's clean". It only recognizes for what it has signatures. It won't
recognize the newest malware until the signatures have it. It won't
recognize very rare malware. It will also recognize things which are
not bad. It will also recognize malware which is actually not
dangerous on your computer because your computer is not vulnerable.
So basically, it may find a few things but it is still and always you
who has to decide what's clean or not.
Gerald
.
- Follow-Ups:
- Re: how can a firewall box handle virus?
- From: peter
- Re: how can a firewall box handle virus?
- From: Leythos
- Re: how can a firewall box handle virus?
- References:
- how can a firewall box handle virus?
- From: peter
- how can a firewall box handle virus?
- Prev by Date: Re: New proxies
- Next by Date: Re: how can a firewall box handle virus?
- Previous by thread: how can a firewall box handle virus?
- Next by thread: Re: how can a firewall box handle virus?
- Index(es):
Relevant Pages
|
