[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Backdoor not recognized by Kaspersky

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Backdoor not recognized by Kaspersky
From: Gregor Lawatscheck <gpel@xxxxxxxx>
Date: Wed, 03 Mar 2004 20:11:22 +0100

Cael Abal wrote:

Historically, passworded .zip files have been the only remotely
acceptable way to e-mail executables.  I'm hesitant to give that up.

ACK. Some AV vendors even request samples of exectuables in passworded zips.

I'd still rather allow all passworded .zips and rely on the client's AV
to nab it.

People using pgp / gpg to exchange executables between them would possibly be the way to go. Then again people who have heard about p/gpg aren't the ones who click on executables randomly anyway. There's still an education issue with new Internet users of which there seem to thousands a day who fall for these worms. After all there are driver licenses for normal highways but none for the "information super highway".

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Backdoor not recognized by Kaspersky
  - From: Valdis . Kletnieks

References:
- Re: [Full-Disclosure] Backdoor not recognized by Kaspersky
  - From: Bart . Lansing
- Re: [Full-Disclosure] Backdoor not recognized by Kaspersky
  - From: Cael Abal

Prev by Date: Re: [Full-Disclosure] Buffer overflow in qmail-qmtpd, yet still qmail much better than windows
Next by Date: Re: [Full-Disclosure] Buffer overflow in qmail-qmtpd, yet still qmail much better than windows
Previous by thread: Re: [Full-Disclosure] Backdoor not recognized by Kaspersky
Next by thread: Re: [Full-Disclosure] Backdoor not recognized by Kaspersky
Index(es):
- Date
- Thread