Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 23 Mar 2016 12:31:44 -0400 (EDT)
From:      Daniel Feenberg <feenberg@nber.org>
To:        Valeri Galtsev <galtsev@kicp.uchicago.edu>
Cc:        Wayne Sierke <ws@au.dyndns.ws>, Olivier Nicole <olivier.nicole@cs.ait.ac.th>, questions@freebsd.org, krad <kraduk@gmail.com>
Subject:   Re: [Phishing]Re: Anti-virus for FreeBSD
Message-ID:  <alpine.LRH.2.20.1603231224140.8892@sas1.nber.org>
In-Reply-To: <62985.128.135.52.6.1458748953.squirrel@cosmo.uchicago.edu>
References:  <wu7vb4fm8ji.fsf@banyan.cs.ait.ac.th> <CALfReyeHNrqZsCd_-3gMb+5RDEnW8aK2QfYCDRSBG+3bN5tpsQ@mail.gmail.com> <1458712914.1578.37.camel@au.dyndns.ws> <62985.128.135.52.6.1458748953.squirrel@cosmo.uchicago.edu>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help


On Wed, 23 Mar 2016, Valeri Galtsev wrote:

>
> Partly to toss some more fuel into the fire ;-) and partly to discourage
> too harsh judgement of "some anti-vurus software not catching some
> viruses" (or should I say virii as a plural of Latin word virus?)
>
> First of all, the whole anti-virus approach is fundamentally flawed. In
> fact, you can not enumerate bad (what anti-virus is trying to do). You
> only can enumerate good and prohibit everything else. So, don't be too
> harsh on those [anti-viruses] that miss some of evil things sometimes:
> remember, they are trying to do the task that is fundamentally flawed.
>

Is there a package out there that would block all email messages with 
binary executable content? I understand that pdf and word files may 
contain executable code - the package would have to be able to distinguish 
such files with executable code and those without. (Is that possible)?

For us, that would be a satisfactory substitute for Kaspersky, perhaps 
even a superior one.

daniel feenberg



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?alpine.LRH.2.20.1603231224140.8892>