Slashdot Mirror

← Back to Stories (view on slashdot.org)

A Central Repository for Virus Information?

Posted by Cliff on from the forewarned-is-forearmed dept.

four12 asks: "I've been doing more work lately with network security and tightening things up. My new employer has been pretty lax over the years with such things and has come to the realization that their luck has to be wearing thin. I have noticed an dissonance of information between the various virus information sites. McAfee will have a 'prolific' worm listed, but Symantec and Trend say nothing about it and vice versa. It makes me wonder first of all, is my anti-virus system catching things as fast as the other systems? Is there a place that I can go that digests the latest threats and information down in to a nice, clean webpage? I already have too many listserv subscriptions and don't want to wade through a dozen webpages trying to correlate what is out there."

5 of 26 comments (clear)

  1. CERT by setzman · · Score: 5, Informative

    They seem to have a lot of the current advisories and stuff here.

    --
    C:\>
  2. Don't Rely Exclusivly on Anti-Virus! by zulux · · Score: 3, Informative

    The antivirus vendors can only release their updated file - AFTER the virus has started to spread, the receive a copy and patch and test. This could take *DAYS*.

    Some people think that a properly created worm/virus could spread over the entire available host populations in under 15 min from release.

    More Info Worhal Virus

    Add atachement mangeling, removal, and remove vunerable email client for example; Outlook with with it's own exploits and it's embeded HTML (Explorer) with it's own list of exploits are unacceptable for a networked computing environment.

    --

    Moneyed corporations, non-working 'poor' and criminal prisoners are turning productive citizens into tax-slaves.

  3. US Dept of Energy website by Kiaser+Zohsay · · Score: 3, Informative

    http://www.ciac.org/ciac/

    Pretty comprehensive across platforms, OSs, viruses, hoaxes, buffer overflows...

    Best of all, they're not trying to sell you something.

    --
    I am not your blowing wind, I am the lightning.
  4. IntelliShield by ModernCelt · · Score: 2, Informative
    Is there a place that I can go that digests the latest threats and information down in to a nice, clean webpage?

    TruSecure IntelliShield is one such service, but it is not free. It pulls together information about a vulnerability from various vendors, mailing lists, and such, and puts it all under one issue. It also has alerts and a shared task list for managing your organization's response to a vulnerability. The alerts can be useful given the fast-spreading nature of recent worms. The task list is less useful since organizations large enough to benefit from it probably have something similar internally.

    I have no affiliation with TruSecure, yadda yadda yadda, I just previewed their service for a former employer.

  5. Re:Take the weight off... by Ed+Almos · · Score: 2, Informative

    Too right

    A friend of mine used Messagelabs during his last job in the UK and he reckons that they are the best thing out there. Over eighteen months he had ZERO virus hits on a sixty-user site and this was during the Code Red / Nimda boom times.

    Speak to Messagelabs

    Ed Almos

    --
    The more corrupt the state, the more numerous the laws. - Tacitus, 56-120 A.D.