> > > Every organization I have worked with found that the best way to handle
> > > the issue of viri is at the desktop workstation.
> > >
> > It is the most efficient way, efficience/cost ratiowise, but it is not
> > perfect and leaves HUGE scurity holes.
>
> Agreed it's not perfect, but is at this time the most viable solution
> available.
Agreed. Pavel, if we shouldn't be scanning at the wall because
of the latency that heuristic scanning entails, and we shouldn't
be scanning at the desktop because of these unspecified security
holes, where do you think we -should- be scanning? B-)
Most significant viruses are aimed at the PC desktop, and some
can -only- (normally) enter at that point. If your desktop protection
is good enough, just about -all- of them will be picked up there,
whichever entry point applies. The same is not usually true of
scanners at any other entry point, though some vendors claim it
is.
I'm beginning to think this thread has exhausted its relevance
to firewalls.
--
David Harley \ | / alt.comp.virus FAQ
D .
Harley @
icrf .
icnet .
uk \ | / & Anti-Virus Web Page
Support & Security Analyst \ | / Folk London On-Line gig-list
Imperial Cancer Research Fund ____\|/____ http://webworlds.co.uk/dharley/
|
|
