lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
From: thomas8142 at freenet.de (Thomas Loch)
Subject: AV Naming Convention

This should not be used as a replace for the virus-pattern-system! Only to 
have standardized names for recently discovered but not yet named viruses. 
And someone (who tells the name of a found virus nothing) can see to which 
category of viruses it belongs without remembering every name


On Tuesday 10 August 2004 19:33, you wrote:
> So if I change my name the police can't find me? ;)
>
> AV companies should be able to work with any form of ID. Use their local
> until an agreement as been made.
>
> -----Original Message-----
> From: full-disclosure-admin@...ts.netsys.com
> [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Thomas Loch
> Sent: Tuesday, August 10, 2004 11:09 AM
> To: full-disclosure@...ts.netsys.com
> Subject: Re: [Full-Disclosure] AV Naming Convention
>
> > This completely misses the point.
>
> I do not completely agree ...
>
> > When a new virus is discovered, it is
> > essential that there is a RAPID response to the threat. ...
>
> I agree...
>
> > ...The idead of
> > handing the critter over to a committee to decide it's name is, quite
> > frankly, plain bonkers.
>
> Why?
>
>
> Why can't we handle not yet named viruses as 'unnamed' or we use a
> standardized (by ISO?) method to generate a numeric code that consists of a
> classification in categories and a sequential number and probably some kind
> of checksum or hash until the virus gets an official name?
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html


P.S. AV companies should be able to work __together__ and that __without__ any 
kind of naming. They should find those digital bastards and neutralize them!

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ