[SGVLUG] ack -- finally got "wormed" at work

Robert Leyva Robert.Leyva at warnerbros.com
Tue Aug 16 19:13:22 PDT 2005 

Greets,

Um, Tom, clamwin is a _windows_ port of the Linux clamav system! Both 
clamav and clamwin are GPL'd software.

I use clamav on my Linux box (I just scan my /tmp dir, as that's where 
my junk goes that people send me).

At home, clamwin has found/removed virii and malware that our Norton 
doesn't detect.

I'd suggest having both, as clamwin is just a filesystem scanner. It 
does not stay in RAM like symantic and norton do.

I would change the default for clamwin from "just detect and log" to 
"remove" in the preferences, then you might be successful against that 
naughty bit of code? I highly doubt the malware would detect and disable 
clamwin.


Let me know if it helps.

Me


Tom Emerson wrote:
> On Tuesday 16 August 2005 6:32 pm, Robert Leyva wrote:
>   
>> Try downloading and installing clamwin (clamwin.com)?
>>     
>
> heh heh heh -- you're lucky enough to be working in a part of WB that 
> encourages the use of Linux ;)  As such, we are "supposedly" (?) protected by 
> norton at a corporate level -- in fact, they send an e-mail every tuesday 
> morning reminding people to leave their system "on" so the latest signature 
> file can be downloaded & applied automatically [as well as a full scan, etc.]  
> Turns out this is a bit redundant for me anyway as I've also set a daily scan 
> myself, but apparently that doesn't do much good if the signature file isn't 
> updated with the same frequency.
>
> [ironically, yesterday I wanted someone to send me a group of files so he used 
> winzip to package them up for me, but when his message arrived it was noted 
> as "quarantined" because the attachment HAD A VIRUS.  When he (and I) scanned 
> the file he created, it didn't turn anything up -- a call into the 
> company-wide helpdesk confirmed we "had the latest signature file" so we came 
> to the conclusion that there may be a blanket "rule" that all .zip files are 
> presumed to be virus laden]
>
>   

-- 
---
"Knowledge is Power." -- Francis Bacon

Robert Leyva 
(Robert.Leyva at warnerbros.com)
Software Engineer
Warner Bros. Online

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://vorean.sgvlug.org/pipermail/sgvlug/attachments/20050816/5ef8f936/attachment.html

More information about the SGVLUG mailing list