Full Disclosure mailing list archives

RE: AV Naming Convention

From: <Glenn_Everhart () bankone com>
Date: Tue, 10 Aug 2004 11:34:36 -0400

So isn't this the reason CVE was created some time ago now?

Give the AV companies a bit of mercy though: they are called upon to
analyze virii with ever less lead time, and need to pick names sometimes
before full behavior is even known (as it seems to me from watching
them).

Given the time allowed to do this work, it seems a cross reference after
the fact is probably the best one can hope for.

-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com]On Behalf Of Todd Towles
Sent: Tuesday, August 10, 2004 10:16 AM
To: 'Todd Burroughs'; 'Frank Knobbe'
Cc: full-disclosure () netsys com
Subject: RE: [Full-disclosure] AV Naming Convention




I have to agree with Todd, the naming convention is now right useless for
the normal population and make keeping up with viruses on a corporate level
that much harder. AV companies are always trying to beat the other company
and this leads to very little information sharing between the companies on
new viruses, etc.

Maybe a foundation should be created. This foundation could give a seal of
approval to all AV corporations that join in. We are starting to make rules
for patch management over at patchmanagment.org. Why couldn't a group work
with AV names and the first company that finds and IDs it correctly gets to
name it in the foundation. Just a dream, I would guess.





_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


**********************************************************************
This transmission may contain information that is privileged, confidential and/or exempt from disclosure under 
applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, 
distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If 
you received this transmission in error, please immediately contact the sender and destroy the material in its 
entirety, whether in electronic or hard copy format. Thank you
**********************************************************************

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: AV Naming Convention, (continued)
- Re: AV Naming Convention nobody@localhost (Aug 10)
  - Re: AV Naming Convention Nick FitzGerald (Aug 10)
- Re: AV Naming Convention Thomas Loch (Aug 10)
  - Re: AV Naming Convention Alerta Redsegura (Aug 10)
  - Re: AV Naming Convention Nick FitzGerald (Aug 10)
  - RE: AV Naming Convention Todd Towles (Aug 10)
    - Re: AV Naming Convention Thomas Loch (Aug 10)
  - Re: AV Naming Convention Valdis . Kletnieks (Aug 10)
- RE: AV Naming Convention Frank Knobbe (Aug 10)
  - Re: AV Naming Convention ASB (Aug 10)
- RE: AV Naming Convention Glenn_Everhart (Aug 10)
  - RE: AV Naming Convention Todd Towles (Aug 10)
    - Re: AV Naming Convention Jan Muenther (Aug 10)
    - RE: AV Naming Convention Todd Towles (Aug 10)
    - Re: AV Naming Convention Jan Muenther (Aug 10)
    - RE: AV Naming Convention Todd Towles (Aug 10)
    - RE: AV Naming Convention Nick FitzGerald (Aug 11)
    - RE: AV Naming Convention Todd Towles (Aug 11)
  - RE: AV Naming Convention Frank Knobbe (Aug 10)
    - Re: AV Naming Convention Valdis . Kletnieks (Aug 10)
    - RE: AV Naming Convention Nick FitzGerald (Aug 11)

(Thread continues...)