Slashdot Mirror

← Back to Stories (view on slashdot.org)

Why Popular Anti-Virus Apps 'Don't Work'

Posted by ryuzaki0 on from the build-a-better-mousetrap dept.

Avantare writes "ZDNet Australia has a writeup about why AV apps don't work. The reason given is because the malware authors are writing code that will get around the signatures of the application by testing their code on the most popular anti-virus software before release." This comes as a follow up to another article detailing the sad state of anti-virus software currently on the market.

4 of 375 comments (clear)

  1. No S**t by Instine · · Score: 5, Insightful

    AV software, and even most firewall software, which goes beyond port control simply prevents the user using the whole of the internet, but rarely stops the internet using them. This is just one reason why.

    Still an interesting point it raises, and a good example to give to none believers if you ever have to give the "Nothing is perfectly secure" speach to a client.

    --
    Because you can - or because you should?
  2. Just follow a few basic steps... by gasmonso · · Score: 4, Insightful

    1. Firefox with popup blocker

    2. Firewall software

    3. Sit behind router

    4. Use AV software

    5. Don't click on anything that pops up without read it!

    http://religiousfreaks.com/
  3. Default Deny by lapagecp · · Score: 4, Insightful

    Say it with me people Default Deny, Say it louder now so that Microsoft can here it. Operating systems need to by default deny the right to execute. This whole let anything run unless it looks like a virus crap is not working. Oh and Microsoft that doesn't mean make a pop up so that someone can click "Yeah run it already." Every program shipped with the OS gets to run, every program you add to the list gets to run, maybe every program on a white list maintained by a person or company you trust gets to run, and thats it. Now before you all freak out and starting talking about linux and how you can already do this let you remind you that, everyone switch to linux, is not a valid solutions because its not going to happen anytime soon. Sure it works on a case by case basis but I still need to go in to work and be able to keep 30 or 40 computers safe and clean that are going to run on windows because thats what our software will run on. So Microsoft do you let anyone into every room in every building you own unless security sees them on a list or do you determine who can go where and then keep everyone one else out? Why is it that we are forced to use security that anyone can see hasn't worked in the past and has no hope of work in the future?

  4. And they are both wrong. by khasim · · Score: 5, Insightful

    Think about it for a moment. What is the intent of anti-virus software ("anti" + "virus")? Isn't it to stop apps that you don't want running on your computer? Apps that were written by the "bad guys"?

    So, the reason that anti-virus software sucks is because the "bad guys" are writing BETTER "viruses" that can bypass the anti-virus programmers' software.

    And the reason for that is that anti-virus software is REACTIVE.

    A proactive system would patch the holes that are being exploited.

    A reactive system issues patches to remove all the specific threats encountered so far.

    That approach will ALWAYS result in the "good guys" being behind the "bad guys". Like DUH!!!