+1 to this. I use Avast myself, and it has very occasionally alerted me to apparent malware. For me it's worth the compromise. I tell other people they should use AV as a matter of policy, so I am eating my own dog food. Plus I would be *really* sheepish if I got infected and wasn't following my own advice. YMMV.
On Aug 24, 2012, at 10:55 AM, Robin Wood <[email protected]> wrote: > On 24 August 2012 14:59, Christopher Croad <[email protected]> wrote: >> I have mixed feelings. I figure AV is at best 30% effective, and I know I >> can keep my Mac pretty secure without it. Still, I run Sophos on my Mac and >> it doesn't get in the way. If it did, I would have no issue in shutting it >> down. AV is like seatbelts on an airplane. They provide a little security >> during bumpy flights, but a lap belt isn't going to do much when the plane >> is rocking and rolling ( or crashing). >> >> Chris Croad > > > I agree, as long as it isn't getting in the way then I don't see any > reason why to not run it. > > People talk about AV being dead but there is still a lot of V out > there for it to pick up and all it takes is a mis-click late at night > or a drive by from a compromised ad server and AV can make the > difference between taking a hit and getting a nice popup telling you > you've just been saved. > > Robin > >> >> -----Original Message----- >> From: [email protected] >> [mailto:[email protected]] On Behalf Of Josh More >> Sent: Thursday, August 23, 2012 11:23 PM >> To: PaulDotCom Security Weekly Mailing List >> Subject: Re: [Pauldotcom] AV for OSX >> >> I agree with Ryan's view. >> >> Also, as a counterpoint to Michael's, it is surprisingly difficult to >> not do anything stupid under OSX. The only way I've found to be >> reasonably secure is to not run as admin (not hard, actually), use >> Little Snitch and Glimmer Proxy (annoying) AND replace Safari >> completely with a hardened Firefox (noscript, HTTPS Everywhere, >> Request Policy, WOT, Adblock+, Certificate Patrol, etc)... which >> pretty much completely kills a large part of the OSX experience. >> >> When you add to this, the tendency of Apple to release patches as >> frequently as cicadas, I don't think that adding an additional layer >> of defense, imperfect as it is, is a bad idea. >> >> I use Sophos on mine. >> >> -Josh More >> >> >> >> On Thu, Aug 23, 2012 at 4:43 PM, Michael D. Wood >> <[email protected]> wrote: >>> I also agree. Don't believe the hype, when/if it really comes down to it - >>> maybe, then look into something. In the meantime, be security aware and >>> don't do anything stupid. >>> >>> -- >>> Michael D. Wood >>> ITSecurityPros.org >>> www.itsecuritypros.org >>> >>> -----Original Message----- >>> From: [email protected] >>> [mailto:[email protected]] On Behalf Of Alex Kornilov >>> Sent: Thursday, August 23, 2012 10:55 AM >>> To: [email protected] >>> Subject: Re: [Pauldotcom] AV for OSX >>> >>> On 8/22/12 10:20 PM, John Strand wrote: >>>> No. >>>> >>>> The reason? I have yet to be on a test were it gets in the way. >>>> >>>> I do know it causes your system to run slower and crash more. >>>> >>>> I would rather have a faster, less secure system than the illusion of >>>> security. >>> +1 >>> I agree. Don't believe propaganda from yellow press IT blogs. >>> _______________________________________________ >>> Pauldotcom mailing list >>> [email protected] >>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >>> Main Web Site: http://pauldotcom.com >>> >>> _______________________________________________ >>> Pauldotcom mailing list >>> [email protected] >>> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >>> Main Web Site: http://pauldotcom.com >> _______________________________________________ >> Pauldotcom mailing list >> [email protected] >> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >> Main Web Site: http://pauldotcom.com >> _______________________________________________ >> Pauldotcom mailing list >> [email protected] >> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >> Main Web Site: http://pauldotcom.com > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
