In message <[EMAIL PROTECTED]> Paul Kosinski
<[EMAIL PROTECTED]> wrote:
>After thinking about it, I still have misgivings about not scanning every file
>every day: a file may not change day-to-day, but new virus signatures are
>added all the time, and yesterday's file may contain today's newly recognized
>virus. But, given the time needed to do a full scan, I have had to adopt a
>policy of scanning only new or changed files.
I seem to get laughed at whenever I point that out (especially by the
slower AV scanners) -- The way I see it, if you don't bother rescanning
already scanned files, why bother updating your definitions either?
If the old definitions were good enough for old files, they're good
enough for new ones.
That being said, perhaps scanning files written within the last week
would be enough, since it's unlike that it will take ClamAV (or anyone
other then Symantec) more then a week to get the definitions updated?
--
Dave Warren,
MSN Instant Messenger: [EMAIL PROTECTED]
Phone: (204) 480-8407 Toll free: (888) 371-3470
Fax: (204) 283-6028
_______________________________________________
http://lurker.clamav.net/list/clamav-users.html
