TLUG Mailing List

Mailing List Archive

tlug.jp Mailing List tlug archive tlug Mailing List Archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Anti-virus software is a scam

Date: Tue, 28 Sep 2010 19:54:20 +0900

From: Nicolas Limare <nicolas+tlug@example.com>

Subject: Re: [tlug] Anti-virus software is a scam

References: <4CA1C1C3.4080007@example.com>

User-agent: Mutt/1.5.20 (2009-06-14)
> For instance, I say that you can never get a computer virus from certain 
> file times, and I explain why Linux is more secure than Windows.
> 
> Hopefully, I haven't said anything factually wrong in those regards.

In fact, this is wrong. For example, a bug was recently discovered in
libpng[1], with buffer overflow. This means that opening a specially
crafted PNG file via the buggy libpng could lead to execute evil code
on your machine. This evil code could be a virus or a virus
vector. In that case you "get a computer virus from a PNG file".

This is not common as .exe virii, but it's possible.

[1]http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1205

I also remember the terrible times when OutlookExpress had a bug in
its HTML messages handling, and some messages could trigger the
execution of attachments when they were previewed. And you _had_ to
preview the messages if your wanted to delete them. With this
environment, you really needed an anti-virus.

-- 
Nicolas LIMARE
http://nicolas.limare.net/                         pgp:0xFA423F4F
Attachment: signature.asc
Description: Digital signature

References:

[tlug] Anti-virus software is a scam
From: Dave M G

Prev by Date: Re: [tlug] Anti-virus software is a scam

Next by Date: Re: [tlug] Anti-virus software is a scam

Previous by thread: Re: [tlug] Anti-virus software is a scam

Next by thread: [tlug] Anti-virus software is a scam

Index(es):

Date

Thread

Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links