Hi quark, to my knowledge, heuristics is in accurate and creates lots of
false positive. Moreover, Finjan has been blocking many unknown viruses on
my side... I am using it and am ok with it. unless there is something like
what esafe claims they can do...
-----Original Message-----
From: Quark IT - Hilton Travis [mailto:hilton@quarkit.com.au]
Sent: Saturday, November 20, 2004 5:41 AM
To: focus-virus@lists.securityfocus.com
Subject: RE: Manageable Spyware Solutions?
Hi Charles,
If you're looking to a spyware/adware tool to block viruses, I think
you're looking the wrong direction. Its kind of like looking for a
driving school to teach you internal combustion engine mechanics.
If you want an AV solution that can detect unknown viruses, then NOD32
is what you need. It detected the latest rash of Bagel worms without
knowing what they were by its heuristics engine. Better to block it
before it does damage than to wait until you have a name to block (like
many of the other large AV vendors).
--
Regards,
Hilton Travis Phone: +61 (0)7 3344 3889
(Brisbane, Australia) Phone: +61 (0)419 792 394
Manager, Quark IT http://www.quarkit.com.au
Quark AudioVisual http://www.quarkav.net
http://www.threatcode.com/ <-- its now time to shame poor coders
into writing code that is acceptable for use on today's networks
War doesn't determine who is right. War determines who is left.
-----Original Message-----
From: Charles Ong [mailto:ocharles2004@yahoo.com.sg]
Sent: Saturday, 20 November 2004 06:17
Can it block unknown viruses too? Based on what I am using
now, Finjan is
able to stop IM p2p and tunneling too... I am now using
Finjan to block
AOL/ICQ, hotmail but allow only yahoo... ;)
-----Original Message-----
From: Steve McNamara [mailto:Steve.McNamara@ealaddin.com]
Sent: Friday, November 19, 2004 12:26 AM
Pat,
I work for a company that sells a product called esafe. This
product blocks adware and spyware at the gateway level. Also,
it blocks
P2P, IM, and tunneling. Even though, I work for the company I believe
the product is the best out their for content filtering.
-----Original Message-----
From: Patrick Jordan [mailto:patrick_jordan2003@yahoo.com]
Sent: Tuesday, November 16, 2004 10:51 PM
Has anyone found an antispyware product that is
centrally manageable,
doesn't chew up crazy levels of resources (on server
and client), and is
still highly efficient at catching latest spyware /
malware variants?
We've tried a couple of the products from early
entrants in this area,
but they've been pretty unimpressive - but manually
running Spybot /
Ad-Aware combo on workstations also seems a losing
proposition.
Have a feeling this topic has already been done &
dusted, but any
thoughts much appreciated ....
