Re: Viruses on web sites

From: josh (gunsmoke@eml.cc)
Date: 10/04/02 

From: "josh" <gunsmoke@eml.cc>
Date: Fri, 4 Oct 2002 04:27:51 -0700

You can get viruses simply from visiting a website.
NAV isnt so good at detecting those that are on a html
page. Yes they are good at detecting malicious Applets and
ActiveX - these all include external files, however, you
can get EMBEDDED viruses in a single HTML file. It will
turn up as mumbo jumbo text in javascript tags. So
technically, a javascript virus/worm/malicious
script/whatever you want.

How can you protect against this? Don't ever really
heavily on anti virus products. never do. My experience is
to avoid 'dodgy' websites - sites offering free stuff that
just sounds too incredible or anything suspicious. And if
you're unsure, but suspicious, you could download the
suspected html file and scan it, and that might show up,
or simply submit it to your anti-virus brand that you're
using and let them know about it.

>-----Original Message-----
>Both Morpheus Na KaZaA have lots of files which contain
viruses, despite
>their claims to screen all files. I downloaded two files
from KaZaA just
>today, and both had the trojan horse virus. My advice to
you: download all
>files to a separate directory, or better yet a separate
drive (floppy, zip
>drive, whatever) and do not open the files until each has
been scanned.
>
>I know of no instance where you can acquire a virus from
simply visiting a
>website; the virus people would love to be able to do
that!
>
>
>.
>