Linked by Thom Holwerda on Sun 22nd Oct 2006 22:56 UTC
Linux "The talk lately has centred about Vista's security APIs, but Linux certainly needs improvements in this area, because AV vendors still rely on an external kernel module to implement 'real time' file scanning." The Inq also reviews AVG antivirus for Linux, and concludes it is a must-have
Thread beginning with comment 173926
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[4]: Pointless
by bytecoder on Mon 23rd Oct 2006 00:50 UTC in reply to "RE[3]: Pointless"
bytecoder
Member since:
2005-11-27

Ok, but we're not talking about now, we're talking about sometime in the future. It makes sense to push for the better solution in the long run, or are you content with your "adequate" solution?

Reply Parent Score: 2

RE[5]: Pointless
by hal2k1 on Mon 23rd Oct 2006 00:58 in reply to "RE[4]: Pointless"
hal2k1 Member since:
2005-11-11

"Ok, but we're not talking about now, we're talking about sometime in the future. It makes sense to push for the better solution in the long run, or are you content with your "adequate" solution?"

Anti-virus programs are not a better solution.

A better solution is to have a good security model for your system in the first place, and then to install only applications for which the source code can be and is inspected and auditable by independent people who have the same interest as you (ie, they are not being paid by the vendors of the programs, and they are end users of the programs themselves).

Reply Parent Score: 5

RE[6]: Pointless
by bytecoder on Mon 23rd Oct 2006 02:33 in reply to "RE[5]: Pointless"
bytecoder Member since:
2005-11-27


Anti-virus programs are not a better solution.

I didn't say it was. I'm saying the complete opposite of this, which you'd probably known if you'd bothered to read my other post...



A better solution is to have a good security model for your system in the first place, and then to install only applications for which the source code can be and is inspected and auditable by independent people who have the same interest as you (ie, they are not being paid by the vendors of the programs, and they are end users of the programs themselves).

That's a terrible solution. It's impossible to catch all the bugs. The best security policy is that of containment, not perfection.

Reply Parent Score: 1

RE[6]: Pointless
by stestagg on Mon 23rd Oct 2006 08:44 in reply to "RE[5]: Pointless"
stestagg Member since:
2006-06-03

A better solution is to have a good security model for your system in the first place, and then to install only applications for which the source code can be and is inspected and auditable by independent people who have the same interest as you (ie, they are not being paid by the vendors of the programs, and they are end users of the programs themselves)...
...And still you will have viruses. If you think that it is possible to have an operating system and software set that is 100% invulnerable, then you'll be waiting a long time.
Anti-virus isn't a nice catch-all solution but it adds an extra layer of system-awareness. If you've got a nice partitioned system with all permissions set-up etc... This doesn't stop a virus/viruses from getting into memory and waiting for someone to make a mistake on the host sytem.

Reply Parent Score: 1