Re: Antivirus engine check utility
From: Michel Gallant (MVP) (neutron@istar.ca)
Date: 11/02/02
- Next message: Karl Levinson [x y] mvp: "Re: Huh? "Login failure: the user has not been granted the requested logon type at this computer""
- Previous message: Karl Levinson [x y] mvp: "Re: need an expert"
- In reply to: Ned Flanders: "Re: Antivirus engine check utility"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 02 Nov 2002 08:55:47 -0500 From: "Michel Gallant (MVP)" <neutron@istar.ca>
hey, hey ....
that batch file is only 18 bytes:
cmd /K net share
and could have been removed, but it is handy as a quick launch of
the net share command ;-) I can remove it, if enough folks don't
like it. You get to see what is actually happening this way. But, if
enough folks comment, I can easily clean it up.
BTW, the reason I use that batch file (instead of simply invoking the
"net share" command directly via a process thread in Java) is that for
some reason, on Win2000, that command can not be invoked directly,
but it does work via an intermediate batch file write/start approach.
Regarding TEMP, there are a number of approaches:
- get handle to any Win environment variable and use that to build path
- get any Java system property and use that to build preferred path for temp batch.
Thanks,
- Mitch
Ned Flanders wrote:
> Works like a champ on Win2K SP3 and WinNT4 SP6a, except for the littering up
> of my desktop with the batch file ;-) One thing I noticed is on my machine
> that has 40-odd shares the NET SHARE command doesn't wait after a screenful
> so some just scroll off the screen. Also - I'm completely unfamiliar with
> Java, but isn't there a way to make the applet aim at %TEMP% instead of the
> desktop? That way I won't care if there's an extra file on the system, and
> my nightly %TEMP% cleanup will get it anyway. I'm *quite* anal retentive
> about keeping my desktop tidy :-)
>
> Alternatively, make it a self-destructing batch file like so:
>
> @echo off
> net share | more
> pause
> del %0 <EOF goes on THIS line to avoid "batch file missing" messages>
>
> That's the only nits I have to pick, and they're pretty small ones.
>
> "Michel Gallant (MVP)" <neutron@istar.ca> wrote in message
> news:3DC2C400.13427A07@istar.ca...
> > I have developed a utility to proactively check if your antivirus engine
> > is actually working and that it is configured properly to scan all file
> types.
> > Don't rely on that icon-tray .... make SURE it actually is working!
> >
> > Originally targetted at NAV, I have reduced the functionality to implement
> > an AV engine check from a digitally-signed web page to:
> >
> > - attempt to write the standard EICAR virus string, as a text file, to
> the
> > local client and detect the AV engine response (the EICAR string is
> byte-wise
> > embedded in the signed Java applet)
> >
> > - invoking the "cmd /K net share" command on NT, 2000 or
> "netwatch.exe" for Win9x
> > to easily allow any user to see their network shares (again for
> non-savy users)
> >
> > Might be interesting to see if any firewalls/gateways are intelligent
> enough to pick up
> > the eicar string embedded this way :-)
> >
> > Anyone wishing to try the utility, email me for the link.
> >
> > - Michel Gallant
> > MVP Security
> > http://home.istar.ca/~neutron
> >
> >
- Next message: Karl Levinson [x y] mvp: "Re: Huh? "Login failure: the user has not been granted the requested logon type at this computer""
- Previous message: Karl Levinson [x y] mvp: "Re: need an expert"
- In reply to: Ned Flanders: "Re: Antivirus engine check utility"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
