>> ftp/smtp/http traffic for viruses, and passes all scanned traffic on. It is
>> "transparent" - there are no interactions directly with the WebShield - and
>> "cannot be bypassed" - all traffic must go through the WebShield machine.
>Hmmm, what if I use PGP to encrypt a program to you? The very nature of
>PGP ensures that the message should only be decrypted by you. How can any
>virus checker cope with this? Deny the mail?
this is why virus scanning 'en route' is nice, no more no less, it is
the scanning at the point of arrival that REALLY matters, where else
would the damage be done?
So scan all you like, you'll never find PGP encrypted virii, source code
virii and the like, only then when 'ready, willing & able' you have a
And then: 'Security policies should be consistent' on ALL points of