From owner-freebsd-questions@FreeBSD.ORG  Sat Jul 28 15:35:40 2012
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 98BA4106564A;
	Sat, 28 Jul 2012 15:35:40 +0000 (UTC)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Received: from wojtek.tensor.gdynia.pl (wojtek.tensor.gdynia.pl [89.206.35.99])
	by mx1.freebsd.org (Postfix) with ESMTP id D9D8A8FC15;
	Sat, 28 Jul 2012 15:35:39 +0000 (UTC)
Received: from wojtek.tensor.gdynia.pl (localhost [127.0.0.1])
	by wojtek.tensor.gdynia.pl (8.14.5/8.14.5) with ESMTP id q6SFZcCP008568;
	Sat, 28 Jul 2012 17:35:38 +0200 (CEST)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Received: from localhost (wojtek@localhost)
	by wojtek.tensor.gdynia.pl (8.14.5/8.14.5/Submit) with ESMTP id
	q6SFZcxn008565; Sat, 28 Jul 2012 17:35:38 +0200 (CEST)
	(envelope-from wojtek@wojtek.tensor.gdynia.pl)
Date: Sat, 28 Jul 2012 17:35:38 +0200 (CEST)
From: Wojciech Puchar <wojtek@wojtek.tensor.gdynia.pl>
To: Matthew Seaman <matthew@freebsd.org>
In-Reply-To: <5013F66C.5010806@FreeBSD.org>
Message-ID: <alpine.BSF.2.00.1207281728560.8535@wojtek.tensor.gdynia.pl>
References: <20120727104308.GA4834@catflap.slightlystrange.org>
	<op.wh393aps34t2sn@tech304>
	<20120727204732.c143bc3d.freebsd@edvax.de>
	<alpine.BSF.2.00.1207281232010.6801@wojtek.tensor.gdynia.pl>
	<5013F66C.5010806@FreeBSD.org>
User-Agent: Alpine 2.00 (BSF 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.2.7
	(wojtek.tensor.gdynia.pl [127.0.0.1]);
	Sat, 28 Jul 2012 17:35:38 +0200 (CEST)
Cc: freebsd-questions@freebsd.org
Subject: Re: On-access AV scanning
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 28 Jul 2012 15:35:40 -0000

>
>> the only cure for such case is changing a job.
>
> A little drastic perhaps?  Company policies can be changed[*].

depends on the company. But i assumed attempt to point out nonsense of 
such policy were already done.

> [*] It's important that the workers believe this.  It helps keep them in
> line.
true and proven.


but my point was that if policy is just nonsense (requirement of virus 
protection in spite of using virus-incapable OS) and still enforced in 
spite of this then....


No matter if it is 5 users of 80 users (largest i have to control in one 
place) then the policy should be "think what you are doing", and "do your 
work at work, not your toys".

Believe me that having 2-3 virus problems per year, with no spreading, 
WITH WINDOWS USERS, and windows workstations running few years without 
touching is possible.

It's simple, but off topic to explain in details.


PS make in every shared (used by many people) samba share a directory 
"Autorun.inf", owned by root with access rights of 700.