Date: Wed, 23 Mar 2016 12:31:44 -0400 (EDT) From: Daniel Feenberg <feenberg@nber.org> To: Valeri Galtsev <galtsev@kicp.uchicago.edu> Cc: Wayne Sierke <ws@au.dyndns.ws>, Olivier Nicole <olivier.nicole@cs.ait.ac.th>, questions@freebsd.org, krad <kraduk@gmail.com> Subject: Re: [Phishing]Re: Anti-virus for FreeBSD Message-ID: <alpine.LRH.2.20.1603231224140.8892@sas1.nber.org> In-Reply-To: <62985.128.135.52.6.1458748953.squirrel@cosmo.uchicago.edu> References: <wu7vb4fm8ji.fsf@banyan.cs.ait.ac.th> <CALfReyeHNrqZsCd_-3gMb%2B5RDEnW8aK2QfYCDRSBG%2B3bN5tpsQ@mail.gmail.com> <1458712914.1578.37.camel@au.dyndns.ws> <62985.128.135.52.6.1458748953.squirrel@cosmo.uchicago.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 23 Mar 2016, Valeri Galtsev wrote: > > Partly to toss some more fuel into the fire ;-) and partly to discourage > too harsh judgement of "some anti-vurus software not catching some > viruses" (or should I say virii as a plural of Latin word virus?) > > First of all, the whole anti-virus approach is fundamentally flawed. In > fact, you can not enumerate bad (what anti-virus is trying to do). You > only can enumerate good and prohibit everything else. So, don't be too > harsh on those [anti-viruses] that miss some of evil things sometimes: > remember, they are trying to do the task that is fundamentally flawed. > Is there a package out there that would block all email messages with binary executable content? I understand that pdf and word files may contain executable code - the package would have to be able to distinguish such files with executable code and those without. (Is that possible)? For us, that would be a satisfactory substitute for Kaspersky, perhaps even a superior one. daniel feenberg
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.LRH.2.20.1603231224140.8892>