Hi Wayne, On Sunday 08 October 2006 14:47, Wayne Johnson Inscribed Thus: > At 05:06 AM 10/8/2006, Gaffer typed: > >How do you know that the "Modern AV" is getting its updates from a > >genuine source ? > >Can you verify that it is ? > >Do you actually check ? > > Yes, yes, & yes.
<--Some snipped--> > Ah but it's still after the bug or bugs has been discovered & if the > end luser decides to renew the subscription or not but they still > have to blame someone else. I get this line all the time from > supposed security experts saying that anything that uses definitions > or a black list that needs updating is no darned good. Sure it's only > as good as far as it goes but that doesn't mean we have to stop > surfing or emailing. There are other security things we can do such > as install a NATed Router that does a world of good but that doesn't > prevent us from shooting ourselves in the foot it's MSFT's fault that > we can't control our mouse & it was the mouse's fault that we surfed > to some triple X rated site where all the nasties come out & play > [pun may or may not have been intended] > > Security is best applied in layers & not all the security has to be > built into the OS > > ----------+---------- > Wayne D. Johnson > Ashland, OH, USA 44805 > <http://www.wavijo.com> In general I agree with you ! My comments were aimed at the complacency created by the "Application does it all so you don't have to" approach ! In this instance, how does the user really know that the updates are coming from a genuine source ? and not from a bogus one ? The DNS could have been tampered with and the IP hijacked ! A Trojan could have altered the applications data source ! A similar scheme to the one that changes dial up numbers to premium rate ones ! Few users would have a clue ! As you rightly say.... Its after the fact ! -- Best Regards: Derrick. Pontefract Linux Users Group. plug at play-net.co.uk -- ---------------------------------------- The WIN-HOME mailing list is powered by L-Soft's renowned LISTSERV(R) list management software. For more information, go to: http://www.lsoft.com/LISTSERV-powered.html
