On Fri, 15 Jun 2007, Hay, Mausul W wrote:
"Time to educate your leader."
Ian,
Please don't get into the arrogant belief that just because it is
Solaris or any other UNIX variant that anti-virus is unnecessary. Virus
writers haven't targeted 'NIX but that doesn't mean 'NIX is
invulnerable. My guess is that as Linux gains more acceptance in the
wider computing arena, in corporate circles and in consumer PCs, hackers
will begin to see more opportunities at hacking 'NIX for profit or
getting at sensitive personal data and the incidents of viruses aimed at
'NIX systems will rise.
Yes. If that happens, you can create an antivirus program. After all, the
task of such software is to identify / remove _KNOWN_ offenders.
It's quite hard to create software that prevents potential exploitation of
unknown security problems. That's why an antivirus software is only as
good as its service and its frequency/quality of signature updates.
The latter is also a reason why particularly an opensource antivirus
software may not be that good an idea. Who's committed / paid for /
answerable for timely reaction to new viruses ? Will you find anyone who
guarantees you the latter ? Will an insurance be willing to cover you if
you use such a product ?
Now I'm not disputing security issues with UN*X and UN*X-like systems.
There are plenty. But again, if there are no known penetrators then an
antivirus software does nothing.
What _IS_ relevant, for any system, is a reasonable security policy that
includes configuration guidelines for machines in your specific
environment. What services should run ? How should the firewalls be
configured, who may access what parts of the network ? How is data
compartmentalized ? What sorts of tagging/access control must be
enforceable, and how are the ruls going to be used in your organization ?
How can these rules be implemented in the real world that is heterogenous
eventually ?
_These_ are things that are very much relevant for a UN*X system. Unless
you know a bit about your environment and don't refuse to close your eyes
to potential vulnerabilities, you will suffer eventually.
Saying "I'm putting an antivirus software in to be safe" is about the same
as saying "I'll put an armed guard at the front door to be safe" - while
ignoring that the back door can't be locked and the garden fence behind
has fallen down.
Work with your leader to come up with a security policy that's adaptable.
That can react to threats. That doesn't close its eyes and says "I'm warm
I'm safe because I have a blanket". Blankets such as saying 'every system
needs an antivirus software' are ineffective. Go ban mobile phones on your
workplaces - they have none.
And yes, you're right, some 'leaders' are uneducateable; a certain amount
of technically-senseless rules will be in every policy :(
FrankH.
Mausul.
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ian
Collins
Sent: Friday, June 15, 2007 7:57 AM
To: yoyo
Cc: opensolaris-discuss@opensolaris.org
Subject: Re: [osol-discuss] Re: recommend the opensource anti-virus
foropensolaris?
yoyo wrote:
Except ClamAV,anyone else?
Wait a minute. Do you need antivirus solution on your
Solaris system for your *Windows* systems,
or do you actually want an antivirus solution on
Solaris because you believe that Solaris also needs
an antivirus program?
not me ,but my leader think so~whatever i like or not,it's my work
must to do that.
today on the meeting ,my leader ask me to create a new zone ,then
install a antivirus on it.i don't know why,but i should try it next week
:(
Time to educate your leader.
Ian
_______________________________________________
opensolaris-discuss mailing list
opensolaris-discuss@opensolaris.org
_______________________________________________
opensolaris-discuss mailing list
opensolaris-discuss@opensolaris.org
_______________________________________________
opensolaris-discuss mailing list
opensolaris-discuss@opensolaris.org
