Re: [FD] AV scan on read vs write debate....

[Joe Brown <joeb1kenobe@xxxxxxxxx>]

A compromise might be to have scan on Write only, with a forced full system
scan of all files at a certain time. For example at lunch time.

1. You don't have an all the time performance hit.
2. Files will be checked on a daily/weekly basis.

Negatives are that these files may sit on the device while waiting for the
next scheduled scan.

Joe


On Mon, Jun 30, 2014 at 2:45 AM, Yoann Gini <yoann.gini@xxxxxxxxx> wrote:

>
> Le 30 juin 2014 à 01:48, Reindl Harald <h.reindl@xxxxxxxxxxxxx> a écrit :
>
> > but if you are talk with Apple "the OS is secure" priests
> > forget it, they are learning resistent
>
> This is not true anymore. Any Apple representative wont tell you that
> nowadays. Even more, Apple has a small antivirus builtin in the system. But
> signatures based, focused on major OS X threats. No heuristics, no
> detection of windows malwares.
>
> Le 30 juin 2014 à 01:38, Exibar <exibar@xxxxxxxxxxx> a écrit :
>
> > they claim they have a huge performance
> > improvement with scan on read turned off...
>
>
> This is also true. Sadly. I work only on Apple products (and I use
> antivirus), I never seen a good product who don’t slow down the computer as
> shit.
>
> From a sys admin perspective, Antivirus editors don’t take the Mac
> seriously, their product are slow and sometime published with too much bug
> inside. That don’t help Mac users to have any trust in it…
>
> _______________________________________________
> Sent through the Full Disclosure mailing list
> http://nmap.org/mailman/listinfo/fulldisclosure
> Web Archives & RSS: http://seclists.org/fulldisclosure/
>

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/