C
Casey
Is anyone using or had experience with the free open
source ClamWare Anti-Virus program? It looks promising.
http://www.clamwin.com/
Casey
source ClamWare Anti-Virus program? It looks promising.
http://www.clamwin.com/
Casey
Casey said:Is anyone using or had experience with the free open
source ClamWare Anti-Virus program? It looks promising.
http://www.clamwin.com/
Casey
Cyber said:If you read the "about" page, you will notice that it does not
have a real-time scanner in place yet, or a POP3 scanner.
This means that the virus has to be in your machine and be found
using a manual scan. Not good!
You want to stop the virus before it gets into your machine
not remove it after it has infected your machine.
Casey said:Is anyone using or had experience with the free open
source ClamWare Anti-Virus program?
Is anyone using or had experience with the free open
source ClamWare Anti-Virus program? It looks promising.
http://www.clamwin.com/
What AV product can scan a file before it is on your your machine?
Guy said:What AV product can scan a file before it is on your your machine?
Looks like we need to wait until they get it built <G>Is anyone using or had experience with the free open
source ClamWare Anti-Virus program? It looks promising.
http://www.clamwin.com/
Casey
Guy said:What AV product can scan a file before it is on your your machine?
Richard said:Guy wrote
I believe Sophos, Kaspersky, and Panda are able to detect a
potential virus infection as soon as it is in memory
- before it is written to disk and executed.
I have witnessed Sophos picking up viruses on remote machines
while access them through remote procedural calls (a few years
prior to the RPC exploit),
I believe some antivirus actually scan the TCP/IP stack as well.
Criminal said:"Guy" wrote...
Any of the server side AV offerings can do this.
Guy said:Do you not consider memory to be "on your machine"?
Written to disk is not analogous to execution.
Sophos was runing on the client machine or on the File or AV server?
Or what was the senario?
I imagine:
Client makes a "give me access to a file" request of the Fileserver.
Fileserver scans file or gives the file path and request to AVserver.
The result determines whether the client will receives access to
the file or a report.
Packets must be assembled. Do any AV product use atomic signatures?
One can not "scan the ether",that is the domain of NIDS.
Perhaps I'm wrong?
Guy said:I implicate "your machine" includes a mail or antivirus server.
Criminal said:I don't understand that - - "my machine" has a mail client and AV app - - no servers accepting init packets.
I refer to "smtp.yourisp.com" having the server side AV app running and catching malware files before you can
download them. A scanner running "on your machine" must have some part of the malware available "on your machine"
in order to scan it at all, no?
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.