Re: ISP AntiVirus
- From: "R.Daneel Olivaw" <no.spam@me>
- Date: Mon, 14 Aug 2006 12:35:41 +0100
"Jim Howes" <sewoh.mij@xxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:ebpc89$2rr$1$830fa7a5@xxxxxxxxxxxxxxxxxxx
R.Daneel Olivaw wrote:
I have two POP3 email addressed hosted by 123-Reg attached to my domain.
They offer (for an additional charge!) an antiviral and anti spam package
for these two email addresses.
The question is, is their antiviral / antispam stuff better than mine?
No.
There are still other entry points that malware can use.
o Drive-by downloads via Internet Explorer
o Leaks in Java (atleast one vector is currently being investigated
relating to
MS06-040)
o Downloaded files (FTP, http downloads)
o p2p software
o Holes in system software similar to MS-Blaster attacks, most of which do
not
work with SP2 due to stack protection)
o Application software buffer overruns (network support in games may be
exploitable)
o Browser help objects (flash, adobe reader, etc.) may contain
vulnerabilities
o Office applications (When you run windows update, do you run office
update?)
o Magazine cover discs
o Sony-BMG music CD's with malware disguised as copy-protection
(I could go on...)
And of course, if it gets through the anti-virus, it just means that it
isn't a
_known_ virus. Until a virus comes to the attention of AV developers, it
can
run riot. AV software is reactive. Heuristic scanning helps, but is no
substitute for careful users. If you're mad enough to run unknown
binaries that
appear to be clean, you too can join a botnet free of charge.
Good points - all of them - many thanx I will take them on board
.
- References:
- ISP AntiVirus
- From: R.Daneel Olivaw
- Re: ISP AntiVirus
- From: Jim Howes
- ISP AntiVirus
- Prev by Date: Re: OT - Replacement for firewall
- Next by Date: Oh dear!: Tiscali merges with Homechoice
- Previous by thread: Re: ISP AntiVirus
- Next by thread: Oh dear!: Tiscali merges with Homechoice
- Index(es):
Relevant Pages
|
