Vulnerability Development mailing list archives
Re: Another new worm???
From: griffiths_a () SCHOLAR DON TASED EDU AU (Andrew Griffiths)
Date: Thu, 22 Jun 2000 14:49:05 +1000
while I was catching up on my reading. The answer to the question at the bottom of your message. Yes. My smtp filters where upgraded, and, after just checking them, I had 5 attempts. Improved my enviroment? I would have to answer yes. Maybe some kickass linux/window coders would like to write a free AV product? At 01:01 AM 21/06/00 -0700, you wrote:
I will summarize all the reponses in one post. Accusations of commercial advantage are are way off base and show a lack of understanding of the AV business. It doesn't matter which antivirus vendor you give it too. There are contractual agreements between most AV vendors to share viruses on request. In addition, 20+ AV vendors recently formed an organization called Rapid Exchange of Virus Samples (REVS) designed to facilitate the distribution of viruses among those who need them. If you are one of those people, contact Joe Wells at wildlist.org and join the group. The last thing any AV vendor needs is more viruses - we get (no exaggeration) over 500 new viruses a month. Thousands of files are sent to us each month for analysis. What I was trying to do was reduce the likelyhood of copy cat viruses. AV vendors have a firm policy of never giving virus samples to anyone who we are not sure will be responsible in their handling of the virus. For those few people who need to do their own analysis, there are faster, safer ways of getting the code then relying on someone sending it to you over on uncontrolled email group days or weeks after the av vendors had analyzed the virus and provided detailed descriptions of it on our web sites. By last Friday every major av vendor had posted write-ups Justin - my problem had nothing to do with problems handling viruses, you should try reading more carefully. jjday@ebixquay.etnay - if the problem were a product design flaw that the manufacturer refused to address, I would support posting of all details. But in the antivirus world we are dealing with thousands of kids who are actively seeking to break our defenses - giving them ammunition is foolish. Let me ask the list, did one person on this list use this posting to better protect their environment? Dan Schrader Trend Micro
-------------------------------------------------------------------------- Andrew Griffiths | Charlie Brown: Why was I placed on this | griffiths_a () scholar don.tased| earth? | .edu.au | Linus: To make others happy. | -----------------------------| Charlie Brown: Why is everyone else here? | This message was transmitted |-------------------------------------------| and displayed with 100% | Q. what does this unix commands do? | recycled electrons. | unzip; touch; finger; mount; gasp; yes; | | unmount; sleep; | -------------------------------------------------------------------------| A. Not everything you do is related with computers. You might be camping out in a sleeping bag...
Current thread:
- Re: Red Hat 6.2's ftp segmentation fault, (continued)
- Re: Red Hat 6.2's ftp segmentation fault Jim Kinney (Jun 24)
- Re: Red Hat 6.2's ftp segmentation fault Blue Boar (Jun 24)
- Different attack vector - PXE-2.0 protocol Ollie Whitehouse (Jun 25)
- Spoofed FTP connections John Scimone (Jun 25)
- Re: Red Hat 6.2's ftp segmentation fault Jason Storm (Jun 24)
- Re: Another new worm??? sigipp () WELLA COM BR (Jun 21)
- Keyboard recording Martin M Samson (Jun 21)
- Re: Another new worm??? Blue Boar (Jun 21)
- Re: Another new worm??? Steve Mosher (Jun 22)
- disclosure and risk to list subscribers (Re: Another new worm???) Mark Rafn (Jun 22)
- Re: Another new worm??? Andrew Griffiths (Jun 21)
- Re: Another new worm??? Dan Schrader (Jun 23)
- Re: Another new worm??? Dan Schrader (Jun 23)
- Re: Another new worm??? Michael W. Shaffer (Jun 23)
- Re: Another new worm??? Bennett Todd (Jun 24)
- Re: Another new worm??? Crispin Cowan (Jun 25)
- Re: Another new worm??? Elias Levy (Jun 26)
- Re: Another new worm??? Crispin Cowan (Jun 27)
- Re: Another new worm??? Dino Amato (Jun 28)
- dalnet 4.6.5 remote vulnerability Matt Conover (Jun 28)
- *snprinf vs strncpy (misconception) Matt Conover (Jun 28)