I do not see how to get it from the definitions, but
the update process seems to leave behind txt files that contains the
version.
In my case it is :
C:\Program
Files\CA\Common\ScanEngine\InoculateIT.txt and
C:\Program
Files\CA\Common\ScanEngine\Vet.txt
An excerpt from Inoculate
Title: Message
McAfee
also has a listserv that can notify you of DAT updates:
http://vil.mcafeesecurity.com/vil/signup_DAT_notification.aspx
-Original Message-From: Dirk Bulinckx
[mailto:[EMAIL PROTECTED] Sent: Wednesday, June 21, 2006 9:31
AMTo: Servers Alive Discussion
Yes, that was the page I used. We no longer use Symantec. NOD32 uses
the registry key for definition info. I got the Symantec info from
C:\Program Files\Common Files\Symantec shared\VirusDefs\definfo.dat.
HTH
On 6/21/06, Julian Carr <[EMAIL PROTECTED]> wrote:
>
>
> Where are you checking in the r
If it isn't broken why fix it?
Although if you are bored you could use the php function:
stream_socket_client
To connect to port 80 of www.nod32.ch and then send a
GET /en/index.php HTTP/1.0 (Followed by two newlines or cariage return
and newline)
You can then parse the text in php then you d
CA seems to have an info file at ftp://ftpav.ca.com/pub/inoculan/scaneng/Siglist.txt
For Win2K (InoculateIT Engine) the latest version seems to
be 23.72.45, and for the VET engine it's
12.6.2269
(we can
also get a filesize)
So that
info we can get it from their site, now how can we get i
Hello All,
I have done this for both symantec and NOD32 anti-virus. BAsically
what I did was on webserver that hosts my SA status pages download the
latest version info. This is done hourly.Both Symantec and NOD32 have
webpages that showed this. Then extract the text strings from the
webpages and
Antoher note is that the version on a client machine is stored in teh
registry. You could use a combination of the ini file and a regread.
Jason Passow
Mississippi Welders Supply
[EMAIL PROTECTED]
ph: (507) 494-5178
fax: (507) 454-8104
"If you do everything right, nobody will realize you've do
It's part of the software but they want to send this from a
central place...
Dirk Bulinckx.
From: Servers Alive Discussion List
[mailto:[EMAIL PROTECTED] On Behalf Of Mark PerrySent:
Wednesday, June 21, 2006 2:51 PMTo: Servers Alive Discussion
ListSubject: RE: [SA-list] Checking anti-
IF we build something like that for McAfee and IF the
others (other AVs) have a similar way of working it could well
work.
Do you know IF they have an INI like that too? (if so
can you send me that ini offlist and also the .DAT as it is on a system running
the AV - all that as ZIP file and
We used to use Mcafee and they allow you to view a report but as far as
I know there was never a way to schedule the report to email or anything
of the like.
Jason Passow
Mississippi Welders Supply
[EMAIL PROTECTED]
ph: (507) 494-5178
fax: (507) 454-8104
"If you do everything right, nobody will
I wouldn't mind at all being able to do this for CA
eTrust (if it were to become available...) :-)
Michael D. ShookTechnical
AnalystSaddle Creek
CorporationMichael.Shook@saddlecrk.com863 668 4477 (work)863 860 4070 (cell)863 665 1261
(fax)www.saddlecrk.com
From: Servers Alive
Do not McAfee not provide a facility to automatically do
this for you?
I haven't used McAfee but have used various other flavours
(Sophos, Trend, AVG, CA) and find it difficult to believe that this is not
provided as part of the Software?
From: Servers Alive Discussion List
[mailto:[EMA
The first URL only works if you have a cookie that says
that you "agree" with theirs terms.
The 2nd one can indeed be used, see my other mail about
it.
Dirk Bulinckx.
From: Servers Alive Discussion List
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]Sent: Wednesday, June 21,
What you could do is download the update.ini file from
McAfee
http://download.nai.com/products/datfiles/4.x/nai/update.ini
That
contains not only the version number of the dat file (in the [SuperDat-IA32] or
[ZIP] or [SCM] or [Incremental] section under DATVersion) but also a
checksum/file
The version is viewable on this page:
http://www.mcafee.com/apps/downloads/security_updates/dat.asp?region=uk&segment=enterprise
and is also in the following (small)
downloadable file:
http://download.nai.com/products/datfiles/4.x/nai/update.ini
Could one of those be used someh
SA as such can't do the download, but you could do this via
some external check. BUT won't take just take a long time? Isn't the
version (date/time) stamp somehow available in an easy
format?
Dirk Bulinckx.
From: Servers Alive Discussion List
[mailto:[EMAIL PROTECTED] On Behalf Of
Ian,
Can you have SA do a download (FTP?) from McAfee and
then do a binary file compare (FC) of your download vs whatever file you
are using internally?
-Tom
From: Servers Alive Discussion List
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]Sent: Wednesday, June 21, 2006 7:3
I think that before being able to make something for it or
do know what can be done for it you need to have some extra
info.
Were can you get in a "clear" format the latest version
number (number or date/time stamp) from McAfee.
Were can you get in a "clear" format the latest version
numb
Folks,
Every morning our Service Desk do a
manual check to see that our anti-virus infrastructure is up to date. Specifically,
they check that the virus definitions file (from McAfee) on the central
server is the latest one.
I'd love to automate that check, but
I'm not sure how to do it. I can d
Re-reading it makes me think you're rightmaybe a little
test?
Dirk Bulinckx.
From: Servers Alive Discussion List
[mailto:[EMAIL PROTECTED] On Behalf Of Mark PerrySent:
Wednesday, June 21, 2006 11:26 AMTo: Servers Alive Discussion
ListSubject: RE: [SA-list] Exchange & Mail
Lists
Although the symtoms are talking about resolving an issue
to do with BCC, I read the following passage in this MS KB:
"To resolve this problem, you can modify the out-of-office
message generation behavior on the Exchange 2003 computer that contains the
mailboxes so that out-of-office messag
21 matches
Mail list logo
