On 2013 Jun 10, at 16:17 , Dan Olson wrote: > >> >> Is antivirus appropriate for Mac's/OS X? >> >> Is antivirus appropriate for any unix varieties? >> > > There are a bunch of policies out there (FISMA, PCI) which require anti-virus > and recurring updates. So > if this org has to comply with one of those, yes. IMHO, these policies are > the force holding up the > market for osx/unix antivirus.
That said, I've seen PCI QSAs very liberally interpret anti-virus for Unix based systems. (Yes, these QSAs kept their job after Visa revoked QSA certifications from a bunch of QSAs who were approving stuff they shouldn't.) It requires a QSA who is willing to write a mitigating control. But then as long as you are attempting to perform the clause of the negotiated mitigating control, you should be fine. (No comment on OS X as I'm not in a position to speak on that.) ---- "The speed of communications is wondrous to behold. It is also true that speed can multiply the distribution of information that we know to be untrue." Edward R Murrow (1964) Mark McCullough mark.mc...@gmail.com _______________________________________________ Discuss mailing list Discuss@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
