Focus on Apple
RE: ClamXav for OS X 10.4 Aug 15 2007 09:03PM
David Harley (david a harley gmail com) (2 replies)
RE: ClamXav for OS X 10.4 Aug 16 2007 08:42PM
Todd Woodward (todd_woodward symantec com) (1 replies)
RE: ClamXav for OS X 10.4 Aug 17 2007 09:26AM
David Harley (david a harley gmail com) (1 replies)
RE: ClamXav for OS X 10.4 Aug 17 2007 05:13PM
Dixon, Wayne (wcdixo aurora lib il us) (1 replies)
RE: ClamXav for OS X 10.4 Aug 18 2007 03:23PM
David Harley (david a harley gmail com)
> Sourcefire acquires ClamAV open-source anti-malware project
>
> http://us.rd.yahoo.com/dailynews/rss/tech/*http://news.yahoo.c
om/s/infow
> orld/20070817/tc_infoworld/91102

Indeed. In fact, there's a lot of discussion on some lists as to whether
Sourcefire will eventually move to a two-tier subscription model somewhat
similar to snort, so that paying customers will benefit from faster updates,
though Sourcefire seem to be saying no to that at present. (Interestingly,
this also explains one or two observations by the ClamAV developer with whom
I had a lively exchange of views last week. Nothing particularly germane to
this discussion, though.)

http://www.sourcefire.com/products/clamav/ has some interesting aspects. In
particular, the FAQ references the very flawed DarkReading report and states
that:
"At LinuxWorld this year, ClamAV was one of only three antivirus products to
provide a 100% detection rate in their live 'Fight Club' test featuring live
submissions from the show audience. One vendor caught fewer than 10 percent!
The full article is available at:
http://www.darkreading.com/document.asp?doc_id=131246&WT.svl=news1_1"

Apparently, they hadn't noticed that the vendor catching fewer than 10
percent used the ClamAV engine...

Actually, I think this might benefit the product, to some extent, the above
notwithstanding. Snort, IMHO, is an excellent example of how good an open
source security product can be, even (or especially?) in its uncommercial
incarnations (I've gone into some detail on the use of snort sigs in a
couple of things I've written recently). If Sourcefire can coax ClamAV a
little nearer to that model while bearing in mind the (positive) differences
between it and a competent commercial AV product, that could give it the
final push into being a real alternative.

--
David Harley
http://www.smallblue-greenworld.co.uk

[ reply ]
RE: ClamXav for OS X 10.4 Aug 16 2007 02:37PM
William Holmberg (wholmberg amdpi com) (1 replies)
RE: ClamXav for OS X 10.4 Aug 16 2007 04:43PM
David Harley (david a harley gmail com)


 

Privacy Statement
Copyright 2010, SecurityFocus