Symantec Labels Vicars' Software as Spyware

ukhackster writes "The curse of Norton Antivirus has struck again. This time, Britain's vicars have been hit. Norton mistook a legitimate file for a piece of spyware, and those who followed the instructions found that their sermon-writing application no longer worked. Norton was once an essential application. Is it turning into a joke?"

well... yes?

[User+956]

Given that they're also reporting that 80% of viruses defeat Norton and the other big AV programs, I'd say yes, it is a joke.

Re:well... yes?

[rizzo420]

norton is a bigger joke than the others though. i do tech support for students for a living (ok, more than just students, but i am more hands on with them). i have found in my experience that norton misses a lot of viruses mcafee picks up and mcafee tends to do the better job of the 2. mcafee also seems a bit lighter on resources and doesn't stick its nose everywhere. i can't tell you how many mucked up network stacks i've seen because of norton's personal firewall program. once it's uninstalled the networking magically works. go figure. even disabling it does nothing.

so yes, norton is a joke and i would not recommend anyone purchase anything from symantec until they get their act together.

that being said, this is simply a mistake. it happens. mcafee had one that detected excel.exe as a virus.

Re:well... yes?

[SoupGuru]

So what's the solution?

Re:well... yes?

[User+956]

So what's the solution?

Kaspersky AntiVirus. It's a small enough company that the malware writers don't test against it.

Re:well... yes?

[ShadowBlasko]

Although not directly connected to the NAV problems, my favorite thing about Norton is how Norton Internet Security refuses to allow Live Update connections to other software. It is considered too much of a threat.

Guess what Norton Uses to update Norton Security? You guessed it!

Re:well... yes?

[Aladrin]

That's actually not what the article says. It says that 80% of 'malware' slips by Norton Anti-Virus. That is viruses, trojans, spyware, adware, etc. Last I checked, Norton Anti-Virus didn't check for adware or spyware, just viruses and trojans.

Notice in the article they only talk about anti-spyware in that people should have it and don't. They don't say they tested it.

Norton and McAfee's AV have been jokes for years. But malware isn't why.

Re:well... yes?

(ok, more than just students, but i am more hands on with them)

So Mrs. Letourneau how is the marriage going?

Re:well... yes?

[pete6677]

Norton has become the AOL of antivirus. Living off a brand. Too bad Symantec destroyed what was once a great product.

Re:well... yes?

I once had to remove Norton Internet Security because it was causing problems for a friend. The POS took the network connection with it as it went. I don't remember the details however I assume it corrupted windows system files.

Re:well... yes?

norton has been a joke for years now.

It seems to be the pattern with anti-virus software; it starts out small and effective... the word spreads... it become popular... then starts going to shit with bloat... then it end up bug-ridden and poorly implemented, like it was coded by semi-schooled interns, and coasting on name recognition.

McAfee has also followed this pattern. I remember when it was a cool, free AV app... but now it's just buggy bloatware.

Avira Antivir seems to be following this pattern, alas. I've been running it since 2000 or so, back when it was small, relatively unknown (adding a layer of security by obscurity), and effective.

Then sometime last year or so, it started getting popular and gaining recognition. It's now in the bloat stage, starting to get fat with its "AVnotifier" ad popup on every update. Then it happened -- a glitch: telling me I had to pay for the upgrade to Pro or lose auto updates (which was a goof, it still updates). Last month, for the first time ever, it popped up two falses on me during a routine scan, on a file dating from 1998. With heuristics off.

Time to find another obscure but well-written AV app.

Re:well... yes?

[Ruie]

that being said, this is simply a mistake. it happens. mcafee had one that detected excel.exe as a virus.

Yes, mcafee should have labeled it a trojan instead..

Re:well... yes?

[TClevenger]

Symantec is where programs go to die. They buy up software and let it stagnate (for instance, under Symantec, several version of ACT! had the same easily fixable bug, even though it was in their knowledge base several times), getting as much money out of the software with as little work as possible. (When's the last time you saw a great new feature in any Symantec product? Our current corporate "Symantec Antivirus" is exactly the same as the old versions of Norton Antivirus, but with a new tray icon. Oooooooh.)

Re:well... yes?

[jridley]

Also try Avast and AVG. I alternate, currently I'm using Avast. Both free for personal use. That's important when it comes to working on friend/family computers, because honestly, most of them aren't going to pay the subscription fee and no AV software is going to work very well with 3 year old def files.

Re:well... yes?

[DavidD_CA]

That's assuming you're lucky enough to uninstall it.

A client of mine had Norton 2003 on one of her machines and I attepted to get that sucker off so I could install Norton 2005. Hell no. Followed the crazy instructions on their website to the letter.

To this day, whenever they reboot the machine Norton 2003 asks them to register (which it then errors out on). Then Norton 2005 takes over.

(I would format the machine and reinstall, but there's a number of issues there that I won't get into, and the computer is only used a few hours a week.)

Re:well... yes?

[swv3752]

The latest version does have a spyware checker. It is useless, but it is there.

Re:well... yes?

[rizzo420]

true... i've seen too many cases where the uninstall doesn't work and you have to use their manual removal tool, which used to be a great standalone exe, but now it's a crappy activex webpage that takes even longer.

Re:well... yes?

[DCGregoryA]

Any stock machine (yes, even Windows) will block any attack you're likely to encounter if you do some common things.

1) Keep it patched.
2) Don't log in as root/administrator, ever.
3) Don't use the same password as root/administrator.
4) Your main login account should have LIMITED privileges and NOT any installation privileges.
5) Make a secondary administrator account with a 10+ digit password and use that to install things/perform maintenance only.
6) Do not download keygens, cracks, warez software, etc. Actually *gasp* purchase legitimate software and music.
7) Do not open email attachments that you're not expecting to get or from people you do not trust.
8) Limit your open ports to the bare minimum required (Use IPSec on Windows to enforce this).

For Linux/Mac/Unix :
Most of this stuff happens already. Kudos.

For Windows :
Run Internet Explorer in the highest security mode and add "Trusted Sites" for sites you trust, ONLY.

Additionally, Microsoft should have most of this set up when you first install Windows, but alas it defaults to a very lax security setting, especially things like XP Home which will default you to an administrator. Microsoft would rather be "convenient" than "secure" which, while its a usability thing, annoys the crap out of us engineers/techs.

Re:well... yes?

[Eukaryote]

Hopefully the new icon comes in cornflower blue...

Re:well... yes?

Kaspersky used to be very cool 10-15 years ago when they were develoing Dr. Web virus scanner. Hugely popular in Russia (where Mr. Kaspersky is from) it included 'emperical scan' feature that was said to be able to catch even yet unknown viruses. Whether it actually did I don't know, but back then the mere presence of this feature was very geeky and ubercool.

Another interesting fact about Kaspersky as a company is that it is actually being CEO'd by Kaspersky's ex-wife, while Kaspersky himself still supervises technical side of things.

Having said all this, I must add that recent versions of K's software do something ungodly when hooking Windows network stack. So they tend to f*ck machines up to a blue screen, when these machines run some additional low-level networking stuff, eg Hamachi. Compared to naggly bloatware that Norton is, Kaspersky still is a far better and rather obvious choice. Just keep in mind that it's not perfect either and SAVE your stuff OFTEN.

Re:well... yes?

(ok, more than just students, but i am more hands on with them).

Sounds like that could get you in some serious trouble.

Re:well... yes?

[laffer1]

Yes, NIS is quite poor. I've noticed it usually works if you don't patch it. Eventually they release a patch or an error occurs during a patch and then you can't surf. Best of all, unlike 2003 if you buy 2005 (or possibly newer ones) it won't let you install just antivirus when you figure out it sucks.

I got my former employer to buy me a copy of NIS so I could help with problems they might have at work. I usually worked from home. I ended up switching to SAV 8/9/10 since I got a free copy as a student. Recently I transfered schools and they have Mcafee Enterprise 8. Not only did it catch a virus right after install, but it seems faster. I wouldn't say its lighter weight though. With SAV 10 I got around 235mb ram usage and now I'm at ~400mb on bootup. Of course there's a new version of xfire running too...

In general, I've had bad luck with the home editions of all antivirus software I've tried. They seem to bloat the interface, but its still confusing to my mother. I miss the days of lightweight antivirus software. Worst of all I don't trust any antivirus vendor. I'm a bit suspicious of overseas security products unless they're open source. Maybe someday clamwin will get an on access scanner.

Re:well... yes?

[6ULDV8]

"more than just students, but i am more hands on with them"

Current district guidelines prohibit this so called "hands on" approach. Please report to the office immediately.

Re:well... yes?

[Rix]

I bet you're more hands on with the students...

Re:well... yes?

[ShadowBlasko]

What is it about say... AVG that you don't like?

I like the small memory footprint, the timely updates, and the ease of interface. (hit it and forget it)

Is there a reason they are not to be trusted? (seriously... not being a smartass)

Re:well... yes?

[kilodelta]

Yes, BackupExec has been sucking ever since V8.x and now that Symantec owns it I'm looking for a new backup software vendor.

Re:well... yes?

[TClevenger]

Oh, God, tell me about it. I like how I have to delete Exchange mailboxes twice: once in AD U&C, and once in BE. Otherwise, my backups show up as "FAILED" in big red letters (even though everything else backed up fine), and I have to remove them from the backup job manually.

Re:well... yes?

[hydraulos]

Also I had to uninstal Norton Personel Firewall/AV because it interfered with my GRAPHICS DRIVER!!!
I mean come on now, any of my 3-d apps made my comp freze within 30 secs

Re:well... yes?

Who's the moderator on crack?

This post isn't a troll - it's basic commonsense.

Re:well... yes?

[eionmac]

Likewise AVG reports my ISP's (Bt Telecom- largest in UK)log in program as dangerous. But no response from either on questioning it. A retained CAB file appears to be problem

Re:well... yes?

What exactly do you expect your backup software to do if a resource which you explicitly, manually selected to back up suddenly ceases to exist?

Re:well... yes?

[Obi-w00t]

i can't tell you how many mucked up network stacks i've seen because of norton's personal firewall program. once it's uninstalled the networking magically works. go figure. even disabling it does nothing.

Somebody I know has Norton Personal Firewall, he has to manually open ports, leaving them open constantly and to use Xfire, an IM and server browser program that opens many different ports as it queries servers, he has to disable it. I'm not sure if he is using an old version (2005, he says) but it seems to function like something a computing student cooked up in his spare time, it lacks the ability to open and close ports only when a certain program using those ports is open - something that is quite frankly unacceptable.

I am so glad I have switched to alternate products, big-name AV software register false positives and firewalls that you have to disable if you want to use more than one program at a time.

Re:well... yes?

[Casualposter]

You can install only the AV part of the software. You just have to know what to run. We just did that here with the latest version of Norton.

Re:well... yes?

Overall I've been very happy with the corporate version of Symantec Antivirus. Stable, simple, and uses minimal system resources. But the uninstallers for their AV products DO NOT WORK and never have. You'd think after 10 versions they'd get a clue and fix this problem? Their solution? Uninstall. Reboot. Run a hard to find utility called NONAV. Reboot. Run NONAV again. Reboot. Pray.

Re:well... yes?

this is simply a mistake. it happens. mcafee had one that detected excel.exe as a virus.

But...Excel *is* a virus.

The Vicar Knows who he writes for...

[ackthpt]

Don't think sorry's easily said
Don't try turning tables instead
You've taken lots of Chances before
But I ain't gonna give any more

Don't ask me

That's how it goes
Cause part of me knows what You're thinkin'
Don't say words you're gonna regret
Don't let the fire rush to your head
I've heard the accusation before
And I ain't gonna take any more

Believe me
The sun in your Eyes
Made some of the lies worth believing

I am the eye in the sky
Looking at you
I can read your mind
I am the maker of rules

Dealing with fools
I can cheat you blind
And I don't Need to see any more
To know that I can read your mind, I can read your mind

Don't leave false Illusions behind
Don't Cry cause I ain't changing my mind
So find another fool like before
Cause I ain't gonna live anymore believing
Some of the lies while all of the Signs are deceiving

I am the eye in the sky...

Eye In The Sky
Written by Eric Woolfson and Alan Parsons

Re:The Vicar Knows who he writes for...

Well... maybe they sound good with the music or something.

Re:The Vicar Knows who he writes for...

[krell]

Pay no attention to the writing of the troll
The words seem empty cause theres nothing there at all
We let the wise men moderate too soon
We were just children of the moon

Re:The Vicar Knows who he writes for...

Watch me closely be aware

That All I do is only to surprise you

Every move is Sleight of hand

And every word is planned to mystify you

Put down the crack pipe.

"Norton was once an essential application." No, it was never any such thing. Norton has always been amoung the worst anti-virus software. Norton just got corporate mindshare, where as "sketchy foreign companies" like RAV and KAV scared PHBs.

turning into?

[Phil246]

I think you're a bit behind the times mate.
Its been a joke for quite a while now.

Re:turning into?

[Amazing+Quantum+Man]

Peter Norton needs to sue Symantec for defamation of character.

Re:turning into?

[Woy]

Finally some sense. Its an awful program that uninstalls as cleanly as gator. The dead horse that is "Norton Whatever" will stop moving as soon as marketing stops beating it.

PS: PKI ERROR! If you just jumped on your chair and missed a heartbeat, you know what i'm talking about.

Sermon Writing App?

"Protestant Module" sold separately.

Really?

[codeshack]

A sermon-writing application? Word doesn't have a Insert->Scripture option?

Re:Really?

[yourexhalekiss]

Do any of these afflicte vicars read slashdot? What is your sermon-writing application like?

Re:Really?

[just_another_sean]

Nope. Emacs on the other hand...

Re:Really?

[Jtheletter]

A sermon-writing application? Word doesn't have a Insert->Scripture option?

I heard they tried to add that feature once but blood started pouring out of the PC speakers and all the text kept getting rewritten in demonic sanskrit. Apparently some incompatibility between the word of God and a Pure Evil OS. Works just fine in OpenOffice though! ;)

Re:Really?

[99BottlesOfBeerInMyF]

A sermon-writing application? Word doesn't have a Insert->Scripture option?

Actually, on OS X you can add a Word->Services->Insert Scripture option by adding a service, and it should work in most of your other applications as well.

Re:Really?

[AuMatar]

Emacs is scripture- it is the way and the light.

Re:Really?

[aztektum]

Microsoft tried, but they couldn't get the Auto-Replace option to provide strong enough imagery of fire and brimstone. It's important these passages really drive their meaning home right before asking for a hand out in the collection plate, and Word just didn't cut it.

Re:Really?

[andphi]

I think they might have tried it once. Then they integrated Clippy.
Word->Insert->Scripture->John->Chapter 3->Verse 16
Clippy:
"I'm sorry, I can't find that file. Would you like to:"
Cite the Koran
Cite the Book of Mormon
Cite the Rig Veda
Cite the Watchtower Bible
Cite the Book of Common Prayer

No matter what the user does next:
You have chosen The Road Ahead by Bill Gates

Re:Really?

[nuzak]

"Hi, I see you're writing a sermon!" .... naw, just too easy

Re:Really?

[gstoddart]

Nope. Emacs on the other hand...

Why am I afraid it really can?

Back in the day when total system memory was measured in single-digit/low two-digit MB ranges, there was a reason why emacs was known to stand for "Eight Megs And Constantly Swapping". :-P

Cheers

Re:Really?

[JakusMinimus]

Emacs is scripture- it is the way and the light.

Bite thine tongue! For everyone knows that VI (specifically VIM) illuminates one's true path to salvation!

Re:Really?

[Dr+Caleb]

"Works just fine in OpenOffice though! ;)"

But not under BSD. Something to do with Daemons.

Re:Really?

[ultranova]

all the text kept getting rewritten in demonic sanskrit.

You joke, but my parents, who recently updated from Works 2.x to Word whatever certainly didn't laugh when they realized that all their documents had indeed become incomprehensible.

I guess it says something about Microsoft when jokes like these bring back memories of actual events...

Re:Really?

[crawling_chaos]

Splitter!

Re:Really?

[plantman-the-womb-st]

No no no, let the silly Emac-fundamentalists preach the damnation and hell fire while thumping their lisp manuals.

VI users don't preach, they just get the job done.

Re:Really?

[cammoblammo]

Nope. Emacs on the other hand...

Funny you say that. I'm a preacher (not CoE though) and I use Emacs for writing my sermons.

Re:Really?

Nope. Emacs on the other hand...

Bastard
You've just made me soak my monitor in tea

Re:Really?

[superflippy]

Actually, according to TFA, it's not a sermon-writing application, it's software used for planning a church service:
"Visual Liturgy contains all of the authorised liturgy for the Church of England. Vicars use the software to choose services, plan Bible readings and create booklets."

You can think of an Anglican church service as having a sort of standard template into which are inserted different prayers, Bible readings, and hymns depending on the day and season. Instead of making people flip through the prayer book, some churches print out the whole service in order in a sort of programme or booklet. It makes sense to me to have software that would make this publishing task easier.

Re:Really?

[/dev/trash]

man have we become lazy.

Norton has been irrelevant...

[nikkoslack]

for YEARS in the corporate environments I've worked in. Ever since their marketing campaigns based on FUD, or maybe it was Peter Norton stating that viruses weren't a threat to PC users, then saw that they were and started writing anit-virus software.

sounds like it's doing a pretty good job to me...

[paulsgre]

If vicars, imams, priests, friars, clerics, and rabbis were the only things Norton was blocking, I'd say it's time to reevaluate my longstand hatred of them in favor of an uneasy alliance.

once an essential application?

[yagu]

An anecdotal Norton lifetime experience:

At one time I considered Norton an essential application/utility because I couldn't explain sufficiently to new computer owners why Norton (and McAffee, etc.) were unnecessary, evil, and just wrong for them. So, I'd always get their credit card number, hold my nose, and ante up their money for their peace of mind.

But after years of being called back and finding computer disarray on these "happy" users caused directly or indirectly by the intrusive "anti-virus" software suites such as Norton, I've switched tactics and now the very first thing I do when working on others' computer (with their permission of course) is uninstall any of the mainstream virus protection programs, download AVG free version and am done with it.

I've found since taking this approach virtually no call backs where any problems were created by AVG, with much happier friends and family who have at the same time saved themselves a couple of bucks.

Once an essential application Norton? Only in as much as Norton had been able to (and continues to) convince the world they are essential, not a hard task in the FUD universe that is Windows.

Re:once an essential application?

[t_ban]

Idea for business startup: antiantivirus for religious groups :-)

Re:once an essential application?

[Zontar_Thing_From_Ve]

Once an essential application Norton? Only in as much as Norton had been able to (and continues to) convince the world they are essential, not a hard task in the FUD universe that is Windows.

Man, is this the truth. My dad runs Norton and I told him once that I thought that Norton caused more problems than it solves, but he trusts (sigh) Norton. Long story short, just last night as a personal favor I went over to help a retired guy I know who was having trouble with his PC. He also runs Norton and it sucks! He has some crazy Norton program running to warn him about "unsafe" web pages. I was trying to help him with access problems to an online account he had and all this program did was pop up a box on every single account page saying that "This page is unrated." and making him check off one of three boxes (basically - continue, don't go there, go there this time only) AND then enter a password. This is a retired guy who is 73 years old. I can't imagine living like this where you have to click on a box and give a password just to surf the web, but that's how he lives. He doesn't even question the logic of this. I really don't know if he is maybe protecting the PC for his 5 year old granddaughter (why not just not let the kid use it?) or if he thinks it will save him from accidentally going to a "bad" site (he is very religious, by the way).

I feel pretty strongly that friends don't let friends use Norton. I work in IT and I don't know anybody in my field who uses Norton at home. I agree that AVG is better than Norton AV. The only Norton product I like is Ghost.

Re:once an essential application?

[jd]

Dunno if Norton AV was ever essential. I used macafee very early on. Now, some Norton software was, indeed, essential, back in the DOS days. No serious geek left home without a floppy containing the early Norton Utilties (undelete files, hex edit files or even the disk - there were some seriously useful tools). Norton Guides were pretty helpful, too. I can remember using the Guides for assembler and for DOS interrupts. They were the first practical on-line guides for DOS, because they were plugged in on a TSR, so you could actually be editing and switch to them. They were also unloadable, making them in many ways almost direct ancestors of the Linux kernel modules.

Never found Peter Norton's books to be that good, though. There were many excellent books on the PC internals, detailing the interrupts, the INT 21 functions, how to directly program the video card, "undocumented" Intel CPU instructions, etc. Norton's books were not amongst those I regard as the gems of that era.

Re:once an essential application?

[daft_one]

Like opposing condoms in Africa... but with computers!

Re:once an essential application?

I used to to that, but stopped using AVG after repeated problems. It seems like about 2-3% of the installs simply delete incoming mail, replacing the body with the helpful "AVG found this message to be free of..." (or close to that anyway). I don't know why it happens, but it's happened often enough that AVG is also off my list.

Everything is malware/spyware now anyway, I can't even remember the last time I ran across a real virus.

One of the first questions to ask when doing network troubleshooting over the phone: Do you have Norton Internet Security Installed?

Re:once an essential application?

[Shawn+is+an+Asshole]

The only Norton product I like is Ghost.

Give ntfsclone a try. Here's a good tutorial on using it.

It's easily scriptable, and is great in conjuction with ms-sys. If you spend a few minutes customizing something like RIP you can have the restore completely automated.

As a plus, everything's GPL'd. No licesence fees.

IMHO, Unattended + WPKG is still the best option, though...

Re:once an essential application?

[Ana10g]

Just sprinkle the PC In holy water, and it'll never catch a virus again :)

Re:once an essential application?

[jridley]

uh, yeah. With Ghost going for $10 after rebates, and the ability to burn directly to CD/DVD, external USB/firewire, network drives, etc, I think I'll just use Ghost, TYVM. My time is worth *something*.

Re:once an essential application?

[poulbailey]

Once an essential application Norton? Only in as much as Norton had been able to (and continues to) convince the world they are essential, not a hard task in the FUD universe that is Windows.

Norton, not Symantec. There's a world of difference and Norton tools were essential back in the day.

An omen perhaps?

[IAstudent]

Maybe this is a sign that relig... err I mean magic and technology can't coexist.... oh, wait..

*ducks behind cliched fantasy story*

stupid nitpick, please ignore

[bunions]

Just for completeness, I'll mention that it's the 'Vickers' machine gun, not 'Vicars.'

http://www.firstworldwar.com/atoz/mgun_vickers.htm

Yes, I realize it's a pun, but it would have worked either way, really.

Re:stupid nitpick, please ignore

[technococcus]

Beat me to it. Read Neal Stephenson's words on the Vickers in Cryptonomicon. It's absolutely hilarious.

Antivirus

[DownWithTheMan]

I think on a corporate level, anti-virus is a *must*, you're dealing with 100s of millions of dollars in transactions and any downtime is money lost... For the tech-savvy home user though, I really don't think anti-virus is essential. I run an iMac with OSX 10.4.7, and an IBM (Lenovo) Thinkpad with Windows XP SP2 and all the latest updates and hot-fixes. I refuse to put anti-virus on it because I think it sucks up too many of my resources. Since switching from IE to Firefox (back in the 0.4 Fire phoenix days) I have no had 1 single issue of spyware, malware, or virus problems on my machine. I keep everything up-to-date and I know who, what, when, and where I'm downloading all my files from the internet. I'll be honest, I pirate plenty and still haven't had any problems... The more I see these anti-virus solutions, it seems that they are designed to keep dumb people from from doing dumb things...

Re:Antivirus

[LordPhantom]

Dear DownWithTheMan,

We'd like to thank you for your "If I don't know it's there, it must not be" attitude. We'll be seizing your assets now.

Sincerely,
Black Hat Pirates

Re:Antivirus

[99BottlesOfBeerInMyF]

I have no had 1 single issue of spyware, malware, or virus problems on my machine. I keep everything up-to-date and I know who, what, when, and where I'm downloading all my files from the internet.

An up-to-date Windows install running Firefox and anything but Outlook will protect you from the lion's share of what is out there. There have, however, been several zero day worms that do not involve user interaction that can quietly have their wicked way with your Windows box while it is sitting idle but connected. Without antivirus, it is doubtful you'll ever know if you've been infected with one of these worms. Most of these are pretty high profile with well defined signatures. I'd recommend just running ClamAV every now and again, from a read only device. If your corporate security guys are on the ball (and have the dough) they will probably also notice your machine trying to propagate said worm on their network, but that is not always something you can count on.

To summarize, you're probably right, but you don't actually know for certain that your statement is true.

Re:Antivirus

[Henneshoe]

I actually like to sit down each night and read my hard drive bit by bit looking for spurious programs. It takes a few minutes but the piece of mind it gives me is worth it.

Re:Antivirus

[theLOUDroom]

I think on a corporate level, anti-virus is a *must*|

And I think it's a joke.

AV protects you from two things:
-KNOWN vulnerabilities
-Stupid users

You shouldn't be running systems with known vulnerabilities and you shouldn't be giving stupid users access permissions to important data. Either sandbox them or educate them.

AV software does pretty much nothing but create a false sense of security. It is usually used as a (non)subsititute for decent security practices.

Dawkins aproach...

[RyanFenton]

Well, accoring to Dawkins, sermon generators would be explicit tools for the carrying of a viral message.

I think the program may be working properly as designed.

Ryan Fenton

Re:Dawkins aproach...

[neersign]

so you would say they were intelligently designed?

Re:Dawkins aproach...

[demachina]

Amen :)

I saw this article on AlterNet today. There is a San Antonio, born again bible thumper, John Hagee, who is currently leading a national crusade to invade Iran because they think it will trigger the second coming of Christ, oh and the EU is the Antichrist. From the article:

"Thanks to the viral marketing made possible by the hundreds of evangelical leaders who have signed on to his new organization, his warmongering has rippled through megachurches across America for months. Hagee calls pastors "the spiritual generals of America," an appropriate phrase given his reliance on them to rally their troops behind his message."

So in this case these sermons ARE a virus, Oh where were you when we needed you Symantec.

This would be funny except the Republican party is right there with them. Ken Mehlman, the Republican party chairman addressed their convention and George W. sent this nut case a letter cheering him which he read at this Apocalypse Now Convention. There is a reason the U.S. so unconditionally backs Israel lately, the born again lunatics in power now think that the Jews have to control the holy land for the imminent second coming of Christ to happen and if places like Iran destroy Israel it will prevent the second coming of Christ. I've actually seen serious pieces on CNN about this.

If only this anti virus scanner had kicked in when this nutcase wrote his book(its sold 800,000 copies) and deleted it, it might have saved America from tilting in to complete lunacy.

Re:sounds like it's doing a pretty good job to

[giorgiofr]

Friars tend to live a secluded life and have close to no relationship with the world out of their monastery. May I ask why you dislike them? Their home-made honey and liquor are usually delicious :)

The CoE needs to call...

The Bishop!

Re:The CoE needs to call...

[bdonalds]

We was...too late!

Re:The CoE needs to call...

[whitehatlurker]

No, they need ... The Saint.

Viruses and Virus scanners .. a vicious circle

[namityadav]

If people just list down what they do on their computers, most of them are going to find that a Linux box would do them just fine (If they don't want to pay the Apple premium). Getting rid of the vicious circle of the Virus scanners / Privacy tools / spyware blockers, their updates / fake warnings and worthless Microsoft security updates should be a very compelling reason, IMHO.

Re:Viruses and Virus scanners .. a vicious circle

[gettingbraver]

If people just list down what they do on their computers, most of them are going to find that a Linux box would do them just fine.

I'm just starting to realize that.

In a related story.....

[ReidMaynard]

(AP Cupertino, CA) A mysterious fire is raging out of control at the Symantic HQ on 20330 Stevens Creek Blvd.

Re:In a related story.....

[Volante3192]

From Cupertino FD, Fire Chief Big McLargehuge was exhausted. "We just got the fire put out, and then all my guys started getting covered in locusts. And the frogs...so many frogs. However, we had some good water pressure and were able to handle them pretty well.

"But when my oldest son just dropped dead right in front of me, I knew we had to get out of there."

Re:In a related story.....

[Geoffreyerffoeg]

Amazingly enough, Symantec headquarters are not getting burned up. Local church leaders are petitioning to declare the area "holy ground" and have removed their sandals.

To be fair....

[8127972]

....we can replace the Norton name with any other vendor's name and still have the same discussion. The only reason that we're beating up on Norton is that they've shot themselves in the foot like this before.

Interestingly enough....

[jizziknight]

I haven't use any antivirus software on my home computer for years, and have had fewer viruses than when I was using it. Go figure.

Re:Interestingly enough....

[another_fanboy]

Without antivirus software, how do you know you've had less viruses?

Re:Interestingly enough....

[jizziknight]

Easy. My system doesn't slow to a crawl and never crashes for unexplained reasons. Also, a quick online scan can pretty closely confirm I have no viruses.

Of course, there could be a stealth virus of some sort, but that's unlikely since I also have no unexplained and/or random behavior. And in the case of a stealth virus, chances are you still wouldn't be able to detect it with antivirus software.

Re:Interestingly enough....

[EchoBinary]

... he upgraded to a *nix?

Re:Interestingly enough....

[jizziknight]

Nope, I'm running XP Pro SP2. Shocking, isn't it? Especially when you consider that it's an old Dell Dimension L with an 800MHz Celeron, 384 MB of PC100 SDRAM, and a 128MB ATI PCI graphics card. It's actually pretty impressive that it runs fairly quickly at all.

Best line of the article

[Stonent1]

"Usually it takes a lot to get a clergyman upset, but we have had a fair few on the phone. There's been no talk of smiting yet, but we'll wait and see," Green added.

I love the Brits.

Hmm?

[Murodese]

I stopped using Norton a day after I installed it because when I opened my mp3 directory the world exploded.

Re:Hmm?

So, How many of your mp3's have an EXE extension ;)

Re:sounds like it's doing a pretty good job to me.

[lawpoop]

against Norton or the clergy?

Re:sounds like it's doing a pretty good job to me.

[bunions]

Norton ClergyBlocker 2006 Pro Edition.

I'd buy two copies.

Essential?

[pikakilla]

When has norton ever been an essential application? If a person is resonably cautious and knows the basics of computer security there is no need to have an antivirus program that clogs the system. Peridoic web checkups do just fine.

On another note, now that this software has lost its credability with the clergy (as CHP has advised members to ignore threat warnings dealing with this software) im willing to wager that many clergy members would be willing to ignore many future threat warnings with the fear that the progam will break some other essential application. The money spent on the licenses for norton would be better spent on education for the clergy so they can avoid these problems all together.

Re:Essential?

[JebusIsLord]

you never, EVER want to educate your clergy! Think about that for a second!

Re:Essential?

[Mister+Transistor]

Yes, it once was a LONG time ago (DOS days). To avoid being redundant, see my other post here.

Re:Essential?

[narcc]

The biggest problem with 'the church' today is the disturbing number of uneducated ministers. The original mission of Harvard and Yale was to educate future clergy!

Being religious means asking passionately the question of the meaning of our existence and being willing to receive answers, even if the answers hurt. --Paul Tillich

A seminary, if it's any good, will turn out more atheists than pastors.

Not sure Norton was ever essential

[PDMongo]

I'm not sure I agree with the comment that Norton A.V. was "essential software". I have always seemed to find a better, or at least far less intrusive, alternative to the Norton products. When the things that are intended to help you get in the way, they cease to be essential.

Re:Not sure Norton was ever essential

[doofusclam]

I have always seemed to find a better, or at least far less intrusive, alternative to the Norton products

Amen to that. We must remember that one of the main problems with malware is that it slows down the machine and eats system resources. It goes therefore that a permanently on a/v scanner shouldn't hog resources itself, which Norton does with style, otherwise it is exhibiting the same effects it is meant to deal with.

Together with the numerous security flaws found in Norton which can make it less secure than running without a/v software, I don't know how they sell any copies to anyone with a clue. Putting Norton on the cover with a stethoscope was excellent marketing.

If I fix a computer one of the first things I do is remove Norton and install freeware AVG + Spyboy S&D. It's far more effective and less pimped out with ridiculous bloat extravaganzas.

Re:sounds like it's doing a pretty good job to

[paulsgre]

Jealous of their simple lifestyle, homemade liquor, and delicious honey.

What this world needs...

[Viperion]

...is an Anti-Norton virus.

After one of my users uttered that spoonerism the other day, I am more and more convinced it needs to happen.

Re:What this world needs...

[Billosaur]

I believe there are several virii out in the world that look for and try to shut down or erase NAV. And here we thought they were a bad thing! I haven't used it for years, ever since I had the devil's own time trying to get the corporate version off my computer after I changed jobs.

Re:What this world needs...

Been there, done that... http://www.theregister.co.uk/2001/06/25/flaw_means _virus_could_disable/

Norton Antivirus or...

...Chuck Norton Antivirus?

Re:sounds like it's doing a pretty good job to

[wing03]

Not to mention that a few monestaries produce some amazing beers.

Norton the Anti-Christ

[Drakin020]

Symantec hates religious people...

Brief Sermons

[Cycloid+Torus]

I'll bet services were shorter for a few weeks there.

Re:sounds like it's doing a pretty good job to me.

[another_fanboy]

How often would you have to update the subscription?

This is why...

[monoqlith]

God uses a Mac.

If a bumper sticker says, it must be true!

Re:This is why...

Well, after seeing the annoying "I'm a PC. I'm a Mac" commercials then we have to believe that Mac's doesn't get viruses. But the world has plenty of viruses so it isn't run on a Mac, is it? :)

Also God created the world and all in it. Including viruses and other sharming diseases. So maybe Norton is Anti-God ;)

/sarcasm

Re:This is why...

[WilliamSChips]

God would never use proprietary hardware.

Limited vision nerds and geeks

Unleaded gasoline tanks today have an aperture size that prevents diesel nosels from fitting into the tank. This is meant to protect the occasional absent minded person (or complete noob user) from accidentally installing the wrong fuel into their tank and causing harm to their engines.

Same goes for antivirus software really. Experienced and knowledgable users can self protect themselves against computer virus infections but that doesnt mean everyone is like you. In the case of computer usage there are far more ignorant users (particularly with regards to security) than informed ones. I don't run AV software on my PC but I do tell my sister to run it and keep her signatures up to date. Why? Because she's liable to fall victim to all sorts of online tricks and schemes and download and install something she shouldn't. She happens to have a life and doesnt spend 8+ hours a day reading geek-zines like Slashdot. She uses her computers for a couple of hours a day and then goes about her business.

Yes there needs to be software out there to protect causal computer users from the ever changing array of tactics employed by spyware and virus authors.

Too many geeks want to find something for once in their miserable lives to be an elitest prick at, and ragging on ignorant computer users is one of them.

Only certain sermons erased?

[MECC]

Did it only erase sermons bashing evolution? Isn't that a virus of sorts?

Mcafee getting confused with Norton?

[Morinaga]

I don't recall Norton having this issue before, I thought the previous culprit was Mcafee. I had to do quite a few manual fixes to replace applications until Mcafee released the EPO update to correct this. It was a mess.

http://www.forbes.com/facesinthenews/2006/03/13/mc afee-samenuk-microsoft-cx_cn_0313autofacescan11.ht ml

turning into? hardly..

[wfberg]

Signature-based virus scanners have ALWAYS been a joke. Basically, it's a technology that was barely good enough when the first one was written, and all that time we've been using it until something better comes along.

The real solution to virusses lies not in signature-based scanners, but in policing applications. The discontinued Thunderbyte AV (of DOS days) had the right idea. It scanned files for instructions that shouldn't be in normal programs, like an API call to format your hard disk. It had a list of exceptions (format.com etc.), but otherwise, it would complain loudly.

Nowadays, we can do much better. We have usernames, credentials, priviliges etc. Why don't programs run as separate users with separate priviliges? There is NO reason why Word (or openoffice for that matter) should be able to access every part of the registry or harddisk that the user running it can. Firefox should basically be restricted to making TCP connections and writing it's configuration, cache, and a download directory. The security model now allows it to write to c:\windows\system32 if you're logged in as administrator, even though it clearly has no business doing so.

Newly downloaded applications should be granted permission only to write to registry keys they themselves created, and files likewise. And if an app overstretches its default permissions, the OS should complain loudly and ask permission (OS "professional" edition), lookup a policy file (OS "corporate/enterprise" edition) or simply disallow it and require some sort of wizzardry - e.g. editing an .ini file - to overrule it (OS "home" edition).

This doesn't require rocket science to implement, though it will break some stuff and force users to copy files from My Documents\Microsoft Office to My Documents\Firefox if they want to upload a document. Small price to pay, I say.

Of course Norton and McAfee suffer not just from being unreliable in detecting virusses, they also fuck up your OS so it won't work properly anymore, and are a bitch to uninstall. But the solution to that is simple; switch to another product. The fact that the other product would, again, be a signature based scanner is the lamentable part.

Re:turning into? hardly..

[99BottlesOfBeerInMyF]

Why don't programs run as separate users with separate priviliges?

You can do this today on Solaris using containers or on FreeBSD using jails, or obtain the functional equivelent. None of them are well integrated into the UI portion of the OS yet and I don't think there is a well established set of defaults and description of violations yet. I expect this to be the direction of the industry for security so expect it to be integrated into every OS except Windows within the next five years. I'm actually crossing my fingers and hoping Apple jumps on this grenade. The UI is the hard part for most developers and whatever problems they have had, they are still above average for good UI design.

Re:turning into? hardly..

Sorry, where it says "most of the virsuses", read "some viruses". Oops :)

Re:turning into? hardly..

[honkycat]

While this is a more secure approach, I see two problems. First, although the inconvenience is objectively a small price to pay for the additional security, few people see security issues objectively. The thinking is "well it hasn't been hacked yet so it must be secure." As a result, a change that adds inconvenience with no benefit other than increased security will not be welcomed. I don't think this is insurmountable, though.

The other problem is that a scheme like this requires that someone determine what privileges a particular application needs. You cannot trust the application to do this, obviously. I don't see a good way for the OS to know what privileges are needed. Really, I think this requires a technically sophisticated administrator for the machine. That may work well for businesses or high-security environments, but it's not going to fly at home, where most machines are administered by someone who knows enough to insert a CD and run install but not much else -- and that's the optimistic characterization.

Re:turning into? hardly..

[Geoffreyerffoeg]

The security model now allows it to write to c:\windows\system32 if you're logged in as administrator, even though it clearly has no business doing so.

The security model on my webhost allows my scripts to write to system32. But not to my own directories. There is something seriously wrong with either their sysadmin or Windows, and I believe it's the latter since we're just using the permissioning system that comes with Windows + IIS....

Re:turning into? hardly..

[mattsday]

We have a system here at work called "CSA" -- it runs behaviour patterns and disalows certain programmes from accessing areas of the disk, memory etc... We have it configured here to give us the choice on its actions (and can disable it entirely), but server-side there's no reason why it can't have these policies determined and pushed down...

Re:turning into? hardly..

[eth1]

"Why don't programs run as separate users with separate priviliges? There is NO reason why Word (or openoffice for that matter) should be able to access every part of the registry or harddisk that the user running it can."

I think you just basically described SELinux...

Re:turning into? hardly..

[ultranova]

I know saying something good about Trusted Computing around here is largely akin to taping meat to myself and dancing with lions, so here is an AC post.

Only when you are clearly lying; in this particular case, you are trying to make it seem like Digital Restrictions Management is increasing security for the user of the computer, as opposed to some remote authority, which is a lie.

One of the goals that Trusted Computing is working towards is 'Sealed Storage': only the program that generates the data can access the data it has encrypted.

This is only usefull if the goal is to lock the user of the computer out of the data - that is, to prevent the user of the computer from doing anything with the data that the program make doesn't want them to, such as, say, opening a Word file in OpenOffice.

For increasing security for the user, kernel-enforced access controls are far preferable - they are both sufficient and allow the user to transfer data from application to application. For an example of such controls, see the access control system of Unix-like operating systems, such as GNU/Linux; these controls need to be revised somewhat to allow finer-grained control, but this doesn't require DRM.

I hope your corporate masters gave you a good price for your soul, astroturfer, but I doubt it very much.

Re:turning into? hardly..

[99BottlesOfBeerInMyF]

The other problem is that a scheme like this requires that someone determine what privileges a particular application needs.

The answer to this is good defaults, possibly based upon templates. First, provide an official service for licensing and registration, that is locked down. Next give all new (not factory installed) apps access to their own registry and source files, that licensing service, and the ability to write new files in the users docs, but not read or overwrite existing ones. If it wants internet access it can ask. If it wants to read other files, it can ask. If it wants to read my e-mail address book or modify another program or the core os or read my IM buddy list, it can ask.

This means few existing programs and even fewer new programs will ever legitimately run afoul of these rules. As an added bonus VMs that can run programs from other OS's can use the same mechanism.

That may work well for businesses or high-security environments, but it's not going to fly at home, where most machines are administered by someone who knows enough to insert a CD and run install but not much else...

I disagree. Unless they run malware, most people will never hit any restrictions on default settings other than the occasional app that needs to use the internet and that is pretty self explanatory. So long as the UI is well written, this should be less confusing than what people deal with now and more in line with user expectations for their computer. Less than one in ten people I talk to realize that their computer does not already restrict programs they run. A common reaction is, "well why would it let some game send spam e-mail without telling me?" Can you think of a way in which a program would need (not currently does but with a good design) to violate the defaults I've described that would confuse a user?

Re:turning into? hardly..

[Aeomer]

In this case the problem is with the sys admin not windows. Too many people allow IIS to run with admin privilages, but there is *no* reason to do so. Never ever ever! Anyone who says different wants to sell you more services. ;-)

Re:turning into? hardly..

[Geoffreyerffoeg]

If it's an admin then why can it not write into my own web directory (the directory mapped to / and subdirectories)? It's running as iusr_www best I can tell (I can sometimes make it work if I use cacls to grant rights to iusr_www).

Re:turning into? hardly..

[Eivind]

If it wants internet access it can ask. If it wants to read other files, it can ask. If it wants to read my e-mail address book or modify another program or the core os or read my IM buddy list, it can ask.

We already know what happens when we bombard users with dialog-boxes. They are perceived as noise. As disturbances. As something standing between the user and what he/she wants to do.

The primary focus becomes to get rid of them so you can do what you want to do. Typically the user will click "Yes", "Ok", "Whatever", "Bugger the hell off and let me use my computer" is more like what they mean.

Thing is, the user have learnt, trough experience, that though the dialog-boxes frequently present a choice, it's really no choice at all. There's one "correct" choices (the one that makes the dialog-box go away) the other choices are "wrong" and will only lead to the dialog-box reappearing.

9 out of 10 times, if 3 seconds after a user clicked something on a dialog-box, you ask what it said, they don't know. They never read it. This tendence goes *UP* with increasing frequency of questions.

I can understand it too. For work-reasons I got a new XP-laptop from Dell some time back. It has antivirus, automatic-updates and a shitload of absolute crap installed on it. Half of which is "evaluation copies" that you don't even have a license for beyond the first 90 days or whatever.

The first month of use there where dialog-boxes demanding answer HERE, NOW literally dozens of times. "blablah antivirus has new updates, want to download ? (yes,no,later)". "blablah antivirus has finished downloading the updates. Want to install ? (yes,no,later)" "There are important updates for your computer, download now ? (yes,no)", "The updates have been downloaded, install ? (yes,no)" "The updates have been installed, the computer needs to reboot for the changes... reboot now (yes,no)" (then if you click no, it asks again 30 minutes later. *NO* fucking option for making it shut up for the rest of the day or whatever.

Yes, many of these you can after a while get rid of by vigorous ticking of "Don't ask again" boxes. It's still ridicolous. Even *more* so when it's software that you don't even own that's doing the nagging. And that's with a business-dell. Don't even get me started on my wifes Vaio. The "Lifestyle" for the person whose lifestyle consists of clicking "yes,no,bugger_off" a whole lot, and occasionally, for short periods between this, being allowed to use the computer you bougth.

Re:turning into? hardly..

[strikethree]

I strongly disagree with your post. Trusted Computing is an outstanding concept and will greatly reduce the damage that viruses can cause. It will also greatly enhance the security of the computing environment.

The problem with Trust Computing is with the planned implementation. Trusted Computing is great for the user... if the user is in control of the keys. Unfortunately, the user will not have the keys, as the implementation will be designed for our erstwhile coporate masters. This is where Trusted Computing is a great idea gone horribly wrong.

strike

Re:turning into? hardly..

[99BottlesOfBeerInMyF]

We already know what happens when we bombard users with dialog-boxes. They are perceived as noise. As disturbances. As something standing between the user and what he/she wants to do.

Yes, the Windows implementation is a horrible one and a standard example of what not to do. They break numerous UI conventions and basically use operant conditioning to make users click, "OK." whenever they see such a dialogue box.

Do not, however, confuse this with dialogue boxes being impossible to correctly implement. First, they need to be as rare as possible. You have to eliminate all of the ones that that don't present real choices to the users. Second, you have to write them in plain English and provide enough granularity of control so that the user can actually select the option they want. Jails like these aid in that. Third, you have to present actual actions as buttons, with different ones for every situation. OK/Cancel is not acceptable.

WRONG: 45iffaddr.exe is an executable file (OK)(Cancel)

RIGHT: The program "Spaceblaster" wants to read your e-mail address book (Stop it from reading my addresses)(Let it read my addresses once)(Always stop it from reading my addresses)(advanced Options)

In the former case the user doesn't know what is happening and will most likely just click "OK" to make the dialogue go away so they can play the game they just downloaded. In the second case, the user knows what program is trying to do what and simply reading the the buttons in order to pick which one they are going to click on gives them the information they need. They have no option to click "OK" to make it just all go away. Better yet, in a proper implementation, none of the choices will hinder them in playing their game, if that is what it really is. The OS can grant access to a dummy set of e-mail addresses if the permission is denied and the program won't even know. As a result, it is very difficult for malware writers to deny access to a real program used as a lure.

Basically, if you actually follow good UI design practices, the problem Windows has with OK/Cancel dialogues goes away. Unfortunately, looking at the Vista betas they don't seem to have learned this lesson yet or they just don't care enough to do it right.

MOD UP, NOT DOWN

Norton is an anti-virus program. It makes perfect sense that it should impead the effectiveness of the most long-lived and devastating virus of all time: religion.

Don't mod me down becuase you disagree with me. Post a response explaining why you think religion gets a bad rap and why you think it's such a huge benefit to mankind. Moderating me down so no one can read what I and paulsgre wrote is chickenshit. You're abusing the system. Mod down the "first post" and GNAA trolls; not someone who you disagree with.

Re:MOD UP, NOT DOWN

[paulsgre]

Seriously. Why does religion, even on Slashdot, get some kind of verbal immunity? Why is it verboten to explicitly or implicitly bash a belief system bound in no way by logic or reason? -1 FLAMEBAIT, perhaps, but Troll? please.

Re:MOD UP, NOT DOWN

[QMO]

...Why does religion, even on Slashdot, get some kind of verbal immunity?...

You must be new here.

Re:MOD UP, NOT DOWN

[tompaulco]

I agree with you. Religion sucks. And I'm not the only one who thinks so. Jesus Christ himself spoke against the very religion whose prophecies he fulfilled.

Re:MOD UP, NOT DOWN

[jcdenhartog]

Actually He spoke against the abuse and misinterpretation of the religion of the prophecies He fulfilled. It wouldn't make sense for God to send a Messiah that spoke against God himself.

Re:MOD UP, NOT DOWN

[cammoblammo]

No, the GP was right. God doesn't have to equal religion.

Re:MOD UP, NOT DOWN

Actually He spoke against the abuse and misinterpretation of the religion of the prophecies He fulfilled. It wouldn't make sense for God to send a Messiah that spoke against God himself.

Yeah, that would be like writing an instruction manual that said to do one thing in the first half of the book, and then to do the exact opposite in the second half of the book. It just wouldn't make sense.

Re:MOD UP, NOT DOWN

[tehcyder]

Slashdot is predominantly American, and Americans are predominantly Christian, and Christians are as tolerant of unbelievers as most religions, i.e. not at all if they can help it.

The number of Americans who go to church regularly (and must presumably believe in the nonsensicaly fairy-tale basics of Christianity) always surprises people like me who live in the UK.

Well

[Marko+DeBeeste]

I hardly expected the Spanish Inquisition

norton utilities

norton stopped being essential when the length of the command names exceeded two characters.

Norton AV? Essential? BWAHAHAHAHA!!!

[eno2001]

Hmmm... I don't seem to see any version of Norton on my Gentoo box. My Fedora and RedHat boxes never had it either. My BSD boxes never had it. Essential? Hardly. Probably more "reluctantly required" for most users of Windows and Classic Mac OS. But to be honest, I had a Windows XP box that I never patched and kept behind a Linux firewall for two years. I only used Mozilla and later Firefox as the browser. I never got one infection. Not one. However, as soon as I plugged said device directly into my DSL line in the middle of an emergency, within seconds I got hit with something. (Can't remember what it was but it was common. Caused your XP box to give you an RPC error and then shutdown.)

PlatePal

[krell]

They take donations through the PlatePal (tm) church offering cash collection service.

Trust me, I am an IT professional...

[andrewzx1]

What most amateur IT people don't understand is that there is a world of difference between Norton Antivirus, and Symantec Antivirus. As an IT professional who has helped neutralize viruses off of many computers, and who administers a Windows domain (don't hate me), I can say that Symantec Corporate Antivirus works great, is centrally managed, and does what it is supposed to and no more. I've used to for 5 years now and it has successfully prevented numerous virus outbreaks that would have greatly disrupted the Windows workstations I am paid to administer. If this were a Linux/Mac desktop environment, there would be no need to run an antovirus. But there is critical software that is available only for Windows. And this is what I am paid to keep running.

Re:Trust me, I am an IT professional...

[dave562]

I can say that Symantec Corporate Antivirus works great, is centrally managed, and does what it is supposed to and no more.

I would have agreed with you... until Symantec wiped out VNC earlier this week because the latest patterns have determined that it is a "Remote Access Trojan".

Re:Trust me, I am an IT professional...

[Avohir]

IIRC their corporate engine was bought from another company, possibly bitdefender

Re:Trust me, I am an IT professional...

[jackbird]

As an instructor who's taught graphics and 3D animation in a lab where Symantec Corporate Antivirus's realtime scanning made it completely impossible to get any work done ("let's realtime scan the 300 MB Photoshop swap file EVERY TIME IT CHANGES"), I respectfully disagree. I can't even imagine what it's like for the poor bastards who have to run it in production.

Re:Trust me, I am an IT professional...

"Symantec Corporate Antivirus works great,"

unless its set to scan your computer while your actually working on it!!
Then you essentially must stop using the computer till its done as it sucks
up all the computer resources. takes about 45 minutes.

Re:Trust me, I am an IT professional...

Um you can simply exclude the swap directory.. It already excludes certain temp files, but you can't expect an application to know the location of the swap files for every application ever made.

Re:Trust me, I am an IT professional...

[Zephiria]

As an IT person of middle skill, I have to say i was with you up till the no need for a scanner for mac/linux.
Still its a good point Corperate tools are better because well.. corperations are far far more important then people :D

No.

[drinkypoo]

Norton was once an essential application. Is it turning into a joke?"

No. It has been a sad joke for years. The fact that so many IT professionals actually choose norton is a testament that a ton of IT professionals are complete idiots. Naturally, in most cases it is thrust upon them by a director of IT who couldn't find his ass with both hands, a map, a gps, and a sextant.

Re:sounds like it's doing a pretty good job to me.

[AcidLacedPenguiN]

each genesis?

Re:sounds like it's doing a pretty good job to

[udderly]

Might I suggest Chimay Blue http://en.wikipedia.org/wiki/Bi%C3%A8res_de_Chimay ?

The quick answer

[ElephanTS]

Norton was once an essential application. Is it turning into a joke?

Ans: Yes.

However, Norton seems to be playing catch up with its OSX counterpart. Norton Systemworks (Utilities) became a joke for Mac users years ago now at the start of OSX having been an essential app for OS7/8/9. In fact there is no surer way of guaranteeing an OSX 'nuke&pave' situation than running Nortons and getting it to fix something. It's kind of like a medecine that kills .... (AZT anyone?)

Sux Max

[mombodog]

Stopped using Symantec starting in 2003, just bloatware.MacAfee is even worse..

Norton Anitvicar

[fuego451]

Hallelujah brother the world just might be saved from another computer generated, prolix diatribe this Sunday. Imagine vicars having to come up with a sermon from their heart rather than a pull-down list of appropriate incantations.

Norton needs to port this feature to sermon-writing applications for all religions. Oh, and political speech-writing software too.

Can I get an 'Amen' from the /. congregation?

Religion == Virus

[arthurpaliden]

So, tell us something we don't know.

Drop Norton, grab NOD32. Flowers and Bunnies.

[Sarusa]

Remember when the name Peter Norton meant something (good)? Not any more. I've used NAV for years but finally got fed up with the increasing amount of bloat, the way it bogged everything down, and the occasional bluescreen. I was never hit with a virus that it missed, but it was just such a pig.

I switched over to NOD32 which is tiny, fast, almost no system impact, and never takes down the entire machine. It's never even crashed as far as I can tell. It's supposed to detect better than Norton too, though I have so few hits I can't really compare the rates.

After this I visited my parents and stripped everything Norton off their 1.8ghz Celeron XP Home system and installed NOD32 instead. It's like a whole new machine! My parents are still gushing about how fast I made their computer when all I did was take the millstone off its back.

I know NOD32 is kind of pricey (the software is free, the subscriptions are $30 a year though) for some people, but if you can afford it it'll make a huge difference in your computing experience. And you won't be feeding more money to the Symantec mediocrity machine.

Re:Drop Norton, grab NOD32. Flowers and Bunnies.

Too true man. We've started using NOD32 with Remote Administrator (The enterprise server), and XMON (Their Exchange Scanner) and it's a fantastic product. So far we have it on three sites, no problems whatsoever. It's a little tricky to learn at first, but right now it's the cleanest software, with the best detection rates (signature or heuristics) in the industry.

Drop whatever shit AV you're using right now and pick up NOD32, best Antivirus I've ever used (This includes Kaspersky, Panda, Norton, AVG, and all of the others that we trialed).

Does this happen to anyone else?

[Bryansix]

I have the beta of Microsoft Defender on my computer. I also have a copy of Norton Anti-Virus that I got a license to because I was in the Military (DOD pays for unlimited downloads for even personal computers). Now at least everyday I get a pop-up warning that Microsoft Defender is trying to change something that Norton doesn't want it to change and that Norton blocked it. I don't get an option to allow the change and I don't have an option to ignore the problem. I figured that they would fix this with updates but it has been happening for months. Is anyone else affected?

Re:Does this happen to anyone else?

[Magnet+Steve]

This also started happening at my office when we implemented SAV10 (upgrading from 9, which worked great). It has to do with the Tamper Protection, which is cool in theory (prevents any application from shutting down or altering the AV software) but in practice is just too restrictive. We finally starting having Tamper Protection off by default. The ironic thing is that tamper protection can't protect itself: change two unprotected reg keys, and it shuts off.

Sermon writing program...

Maybe we should give Norton a break, afterall religion is a virus.

Norton? McAfee?

[Colin+Smith]

What are these strange things you speak of?

find / -name \*norton\* 2> /dev/null

Nope, nothing. Can't be very essential.

A slow death by Norton GoBack

I, too, once thought that Norton was essential. Silly me ... how times have changed.

I was experiencing the "window's crud", and bought a (bundled) value pack of Norton Utilities (tm) along with other stuff. I took the default installation, which was a sad mistake. It installed Norton's "GoBack".

To make the long (painful) story short, GoBack prevented me from logging into my machine (it interferes with the boot sequence). When i followed the directions on Symmantec's web site for correcting the problem, GoBack corrupted the master boot record (MBR) of my notebook's hard drive. Brilliant! I had a pair of hard deadlines for deliverables, and my machine was useless. Their tech support wrote me an email which said (honest to god)

"... if you cannot boot your machine ... log into Windows and disable our software."

More brilliance! I suppose i could have paid $30+ per hour to have their telephone staff tell me how to get their crap off my system, but i thought i'd already wasted enough money with them. I managed data recovery on the drive (sector scanned the 60 gig drive, then reassembled the links) to find that GoBack made (literally) hundreds and hundreds of copies of thousands of the same files across my drive (which made recovery yet more annoying). In all, it cost me about 4 working days.

Which is all the more annoying since The Utilities did nothing to help with the Window's crud.

AVOID NORTON UTILITIES LIKE THE PLAGUE.

The above are my own personal opinions based upon my own painful experiences. They do not necessarily reflect the opinion of my employers, clients, lawyers, etc.

Don't Move, Devious!!!

[mekkab]

I've been waiting for this allusion...

So...

[Mister+Whirly]

So how is labeling sermon-writing software as "bad" not a Good Thing (TM)?? Sounds like it is stamping out crappy SPAM to me....

Re:So...

[LocalH]

Zealot.

crackmenot

[spyrochaete]

I had my own run-in with a Norton false positive. For some reason, my newly acquired copy of NAV took exception to a file on my desktop called "Norton Antivirus 2003 keygen.exe". IIRC it labelled it as "malware\keygen". I checked the file with several web AV tools and it was clean. What could the problem have been?

P.s., Avast FTW!

OBVIOUS?

[nevesis]

Norton has long since been a joke.

Any anti-virus with a 256mb+ footprint is a joke.

The Internet Security product suite is beyond a joke.

Any firewall with 2,000 registry modifications is beyond a joke.

Symantec corporate edition is pretty good at what it does.

AVG isn't resource hungry, but has relatively poor detection rates. It is free software, though.

Most people don't get rare, morphing, 0-day viruses though, so detection rates aren't always of utmost importance.

NOD32 has a memory footprint of 10mb. It also is always one of the top three highest detection rates in the industry. (Norton never makes top three)

Any questions?

Talk about a blessed relief...

[toby]

...for the congregations.

Every cloud has a silver lining, etc.

fire me! fire meeeeeeee!!!!!!!!

I work for Symantec. I'm typing this on a Symantec computer. From a Symantec network. In the office. Surrounded by thought-deprived Symantedroids with little yellow swirlies tatooed on their foreheads.

So listen very closely:

Norton is shit. Shitty software shittily implemented on a shitty operating system. It used to be kind of kewl, but now it's a shit interface, with shit performance, and shit virus definitions that cost a shitload of money to update. Implemented on a shitbag platform because its missing some basic shit in the process controls. So we piled more shit on top of the shit that was already there, so now the shit attack surface still smells like shit, only it's bigger. The underlying pile of shit keeps getting bigger because Microsoft is apparently drilling and pumping to recycle old shit, so we have to keep making our pile of shit bigger to cover it, only some of the old shit keeps poking through. And our shit is updated only when the shit hits the fan. No one even knows their way around the pile of shit anymore because it's become an immense mountain of shit with rolling hills of shit versions, rivers of shit updates, shit swamps of shitty support and peaks of horseshit management tools that allow people to pretend that they understand all this shit.

Buy a Mac. Patch the OS. And don't install shitty antivirus software.

AV Not Essential? Come to College...

[embracethenerdwithin]

If you think Anti-Virus software is not essential, I'd like you to go to a large college campus and connect to their network. Without a firewall and AV software you will probably have some nasty worms, viruses and trojans in about 1 hour. I have my computer set to scan everyday while I am at class. It finds at least 2 viruses a week. I use firefox, zone alarm, and keep windows updated. I also turn the comp at night, but stuff still gets through. I just wish people on campus would get AV software, the school gives it away for free because the situation is that bad. I have spent hours going around the dorm putting AVG or Norton(free from school) on friend's machines because they were completely trashed by worms and viruses(I usually have to reinstall everything first). On a side note turn off file sharing on your hard drives people. Everyone on campus can access all your files. And whoever the owner of "Matt's Comp" is, you may want to rethink putting all your passwords and usernames in a file labeled "passwords.doc" in your My Documents folder...

Re:AV Not Essential? Come to College...

[Onan]

...you will probably have some nasty worms, viruses and trojans in about 1 hour. I have my computer set to scan everyday while I am at class. It finds at least 2 viruses a week...

...windows...

Ah. I think I see where your problem is...

Re:AV Not Essential? Come to College...

[embracethenerdwithin]

Don't worry too much I dual boot Ubuntu. Sadly I need Windows for school, since everythign everyone uses is Windows based.... Ok cue the: ...Ubuntu... Ah. I think I see where you problem is.....

Re:AV Not Essential? Come to College...

The summary isn't saying that anti-virus software in general isn't essential, but that Norton Anti-Virus isn't essential. Since Norton doesn't actually work, and casues many more problems then it solves, I think it's pretty safe to say that that's the case.

Re:AV Not Essential? Come to College...

[hawfizzle]

i would definitely put a dedicated firewall in between myself and any campus network.

On the other hand...

...religion is spyware of a sort. At least, it's viral in nature. Maybe Symantic wasn't that far wrong...

Re:Norton AV? Essential? BWAHAHAHAHA!!!

[null+etc.]

How do you know you never got hit with a virus, if you don't run anti-virus software? Some viruses are sneaky and steal personal information, avoiding detection at all cost and then package up and send such personal information out through a trusted application such as IE or FireFox.

Which vicar is this?

The one in a tutu?

I stopped using Norton a long time ago...

[Thrymm]

I couldnt deal with paying $50 or whatever for it after rebates, and then having all these bloated applications bundled with it, taking most of the cpu/ram resources on top of it. Plus the fact it seems Norton doesnt work as intended anymore made me switch over to AntiVir http://www.freeav.com/ Maybe not the best, but it runs quietly in the background, updates once a day and seems pretty efficient for me.

God

I'm agnostic, but from what I know of God - he is all knowing. So he already not only knows my card numbers but their PINs too!

Of course it's not just Norton

[justasecond]

Last time I installed Lavasoft's Adaware program it flagged expat.dll -- a *very* common C XML reading library (from Jim Clark no less) -- as spyware. Google says SpySweeper (whatever the hell that is) does the same. That's a serious problem for my company because we distribute the dll with our software.

Just lazy programming: "hmmm...this virus uses a dll named expat.dll! Instead of investigating the thing, let's just flag the .dll as spyware!". If I ever write a spyware program it's going to use a .dll named "kernel32.dll".

Re:Of course it's not just Norton

[assassinator42]

CA's EZ Antivirus has also flagged mIRC as a virus.

Shame on you

Shame on you... putting your hands on the students like that...

Don't write the sermon, vic!

[skoda]

(apologies to Monty Python)

First Vicar: As I scan my computer for sinful programs...

(Cut to bishop and vicars at doorway.)

Bishop: The anti-virus, vic! Don't run the anti-virus!

(Cut back to vicar.)

First Vicar: (Scanning in process)

(The computer explodes. Vicar's sermons disappear in smoke. Cut to close-up of the bishop.)

Bishop: We was too late. The Reverend Norton's writings bit the ceiling.

Re:sounds like it's doing a pretty good job to

Because Stalin was right, all bigots deserve being executed in a painful way.

I completely agree

[Von+Rex]

I've found that Norton and McAfee are the source of more computer problems than any other software, including Windows itself. They are bug-ridden, invasive, and wasteful of resources. About 50% of the "service calls" I do consist of replacing Norton/McAfee with AVG and then typing "msconfig" to turn off all the other garbage they've got installed in their tray. Then they say "You fixed my computer! It's like brand-new! You must be some kind of god damn genius!"

Re:I completely agree

I can reiterate this same experience.

One of my jobs is working on a helpdesk for some highly specialized, but not terribly exotic, custom software that needs to communicate over a network. The software runs on random non-techy user's personal computers, and rarely does a night go by when someone doesn't call in with some failure due to either Norton or MacAfee.

Last week it took three and a half hours to figure out how to squeeze all traces of some insidious software package from a computer. It was blocking all useful network connections, refused to respond to any human input, didn't have a working uninstaller, and popped up dozens of spurious warnings as soon as the computer was turned on. Amazingly this wasn't some surreptitiously installed malware from a sketchy web site, it was some component of Norton or MacAfee! (I don't remember which -- these things sort of run together after a while.)

I constantly fight with Norton and MacAfee firewalls, and usually just end up completely disabling them in favor of the Windows firewall. 95% of users don't have a freaking clue what to do when presented with the option of allowing or blocking access to a particular program, and it can be excruciating to try to figure out how in the hell to punch the right holes in each different version of each different third party firewall (nevermind explaining this to people over the phone who are hazy on concepts like "mouse" and "Start menu.") I'm very patient with people, but it takes a lot of time to bludgeon security software in to behaving...and that's when it's working correctly.

The kicker? Someone decided to recommend Norton as our suggested security software on our technical requirements web page!

I'm convinced there is one reason people use Norton security software: they recognize the name.

unfortunately, yes...

[Dretep]

At least since Norton got gobbled up by Symantec.

The joke's on Windows users

[ccmay]

Is [Norton] turning into a joke?

Windows/Norton/AdAware/McAffee etc. have been a risible joke for years. Everything out of Redmond (except MS Office) is insecure, feeble crapware.

-ccm

A Joke?

[Exuder]

The real question: "Is it still a joke?"

Veritas...

[DJPenguin]

I used to work for Veritas supporting NetBackup and still use the product on a day-to-day basis. Every time I here someone refer to it as Symantec NetBackup I cry a little. Have Symantec had *any* good press recently?

Re:Norton AV? Essential? BWAHAHAHAHA!!!

[eno2001]

I know because I intentionally ran a virus scan on the box just before I ditched it. Came up completely clean. Not only under Norton, and McAfee. But also under ClamAV and Grisoft's free AV scanner as well. It's easy to keep a Windows PC free of viruses if you know what you're doing. And you don't need AV to do it. I specifically did this two year experiment to prove a point to a co-worker.

It's not for the freakin' sermons!

[Revbert]

Read the article, folks. The software has the liturgy and the readings. (I'd assume it has all the Propers, meaning those parts of the worship service that change based on the day on the liturgical calendar.) That means it has nothing to do with sermon preparation, but instead with preparation of the liturgy (what most lay folks call "the service"). See http://www.vislit.com/articles/intro.html for more info. Poor techie writer didn't understand his subject matter. (A liturgy, for instance, is not "delivered," while a sermon is.) Also, all the (predictable) jokes re: "sermon = virus" reflect the same misunderstanding. (Of course, the Visual Liturgy folks seem to be pitching their software towards folks who don't exactly have a strong grasp of technology, too.)

Re:fire me! fire meeeeeeee!!!!!!!!

[nocaster]

Come on, don't hold back. Tell us how you really feel about it.

Obligatory Toy Story reference

He's at it again!!!

Asked and answered

[Ludedude]

"Norton was once an essential application. Is it turning into a joke?"
[+] yes (tagging beta)

Thank you, please drive through.

I agree 100%

[ZincFinger]

I used to use Norton a lot. Over the last 4 years or so, I have come to realize that Norton causes so many more problems that the very few it actually solves that I too remove Norton when setting up a new computer. Symantec products are now way too buggy to be trusted IMHO, the better proof: unistalling them is sometimes as painfull as removing malware.

Re:fire me! fire meeeeeeee!!!!!!!!

dude, how could you make it through the lameness filter?

I Don't Know Why They Are Angry...

[pedalman]

At least NAV didn't delete all their pr0n.

regular crashes

[stewwy]

At work I've disabled norton on my pc as if I don't nothing works, its set to update at 12 am (not pm)for some stupid reason so just before lunch everyones (except mine for some reason :) ) pc blue screens on update days

I've tried explaining to my pointy haired boss that Norton crashes our pc's because of a conflict with our inventory SW and nortons update mechanism but he's got as much of a clue as dilberts cartoon boss
He's supposed to be our IT guy, but usually makes it worse when he tries to 'fix' things, anyway rant over. I'm enjoying quietly converting people to firefox and thunderbird and have recieved lads of requests to 'speed up my computer' which usually means uninstalling all sorts of cr*p.
Today the big boss asked me to sort out outlook express which I did by swopping it for an 'upgraded' version (i.e.thunderbird), which he now thinks is great so things are looking up!

Obviously what we need...

[BlindFate]

... is an exorcist. Satans possessed this piece of software! Lord give us the power to protect our computers from this evil!

Essential? eh?

When has Symantec/Norton EVER been "essential" or not a joke. Please.

Security Thru Sense of Security - NOT!

[Goldenhawk]

Dear Black Hat Pirates,

We'd like to thank you for your "I'm sure my antivirus software will warn me about EVERYTHING bad on my machine, like the advertisements tell me it will" attitude. It demonstrates that you apparently place waaaaay too much trust in antivirus software, especially the latest and not-so-greatest. Hopefully you'll get infected by something written by your own associates when Norton doesn't catch it, and that will get you off our backs.

Sincerely,
The Rest of Us

80% miss rate anyway

[HangingChad]

I'm not sure the false positives could do anything but further amplify that anti-virus is more of a false sense of security than real threat protection.

80% miss rate

Of course if you're still surfing with Windows you're at risk anyway.

Re:80% miss rate anyway

I've seen this quote mentioned many, many times, usually out of context. Mr. Ingram works for AusCERT and he stated that at the time AusCERT sees the malware, it is not detected 80% of the time.

AusCERT is obviously going to be involved in the detection of new malware at the earliest stages -- this shouldn't surprise anyone then that most signature-based antivirus applications do not catch brand new malware. It's only after the malware is discovered and analyzed that signatures can be written.

And for those of you who think that signature-based antivirus is stupid, just remember that security is to be implemented at all layers and the advantages of a signature-based solution are that it has the lowest false positive rate. The disadvantage is that it is a reactive solution that catches most malware only after signatures are written.

Behavior-based malware scanners are a wonderful idea that no one, not even the open source crowd, has been able to perfect with a low-enough false positive rate to be acceptable by the masses. Want to confuse a non-technical user? Throw a behavioral based false positive at that person for one out of every 100 clicks.

Your argument is 99% flawed...

[gamlidek]

without religion, what would become of war? or hate? How would world leaders control the masses? Honestly, without religion most people would be nice to each other because they'd have to -- there would be no higher being that would forgive them for their inhumanity to other humans. People would have to make more of an effort...

Now, *with* religion, you can slack off, cheat, lie, steal, kill, covet, etc, and still be forgiven regardless of how much you hurt those around you. You can waste all of the Earth's resources without concern because one day you'll be with your God and that's really all that matters. I mean, this Earth is temporary, right? People really don't matter so much as what those people believe in, right?

I forgot what I was saying... I think I was agreeing with you or something...

anyways...

/gam/

Re:Your argument is 99% flawed...

[jcdenhartog]

Hmmm... I don't remember Hitler using religion... or Stalin... or Castro... Seems that your argument is 100% flawed.

Re:Your argument is 99% flawed...

[bunions]

Dear jcdenhartog,

Hi, how are you? We are fine. In the future, when stating that Hitler made no use of religion, you may want to keep in mind that Judaism is, in fact, a religion.

Sincerely,

The Jews

Re:Your argument is 99% flawed...

[Drooling+Iguana]

I don't remember Hitler using religion...

Read his book, then. His Catholocism was a very strong motivation for what he did.

They claim their boss is....

[niceone]

omniscient. If seeing and knowing everything isn't spyware I don't know what is.

Re:They claim their boss is....

*chuckles* Good point. But He's also omnipotent, so He has no need of or use for their credit card numbers even if He has access to them. ^_-

thats not new

[AlgorithMan]

some years ago NAV found borland c++ 5.02 suspicious...

No wonder!

[w0d3h0us3]

Suddenly the last 30 years of Anglican Church history make sense. They aren't becoming Unitarians... their computers are infected with spyware!

Re:fire me! fire meeeeeeee!!!!!!!!

[halivar]

Bob,

Due to unauthorized dissemination of trademarked, patented and copyrighted Company Secrets(tm), I'm sorry to announce that you are being promoted into a management position. If you're lucky, they won't give you stock options. Please clean out your office and report to Human Resources.

Joe Smith
Human Resources Directory
Symantec, Inc.

Re:sounds like it's doing a pretty good job to

[resmungo]

I thought irrational hatred of religion was the one thing that bound the many threads of Slashdot together? :)

What happened to Norton?

[sunny256]

Given that they're also reporting that 80% of viruses defeat Norton and the other big AV programs, I'd say yes, it is a joke.

That surprises me a bit. When I used DOS in the old days, software produced by Norton was always of high quality, maybe flagships in the DOS world. Norton Commander was very popular, it could be considered as the file manager, and Norton Utilities was a musthave, with lots of system administration tools and useful programs.

It seems as when they started to produce MS Windows tools, they lost their leading position in the market. Norton Commander for Windows didn't catch on, AFAIK, but that's maybe because Windows already had its own file manager. Norton Commander became superfluous. So, when they started producing anti-virus software I believe they were rated as some of the best, at least in the beginning.

It is quite interesting to see how a big software company with great products and good reputation can be degraded into second-class software in just a few years.

Is there ANYTHING that will get rid of Lop.C??

[KlomDark]

I've tried AdAware, Spybot Search and Destroy, and one other one I cannot remember the name of, and no matter what, it will not go away. Both AdAware and S&D detect and identify it, but telling them to fix/heal it does no good.

Re:fire me! fire meeeeeeee!!!!!!!!

Nice shit analogy, Ricky.

All major AV software gets its turn as the joke.

[GarryFre]

There are a number of bullets that destroy data and the credibility of anti-malware sofware. They are * Human error, * The price of backwards compatibility, * Cooincidental matching of signatures, * Virus mutation, * Being famous enough to attract scrutiny that reveals weaknesses or just plain arrogant claims that attract challengers, * The bad habit of implicitly applying fame instead of shame to virus writers. No software is immune to being hit by one of these bullets sooner or later unless you are running an etch-a-sketch laptop. Human error we all know, but with the hundreds of thousands of virus signatures to search, it is bound to happen that some legit software would have a sequence of bytes that match a signature at times. Its sheer probability. I won't fault Nav for that. Major AV softwares are big targets for those seeking fame that don't care if its infamy if they can write a virus that rides on the weaknesses of a major piece of software or Windows itself. Arrogant claims also attract unwanted attention. On my work machine, I had an AV software that claimed to scan all incoming traffic and claimed to block the incoming threats before they got onto my machine, failed to protect my machine when I got a message from someeone who appeared to be a friend, who knew the answer to my question, but the link they sent ended up downloading 400 viruses, all of which this AV corporate edition detected AFTER they were installed on my machine! These weren't new viruses, but had been in the AV signature file for ages. Obviously, some low life took it as a challenge to find a weakness in this software, to prove that their software did not provide the bulletproof security they claimed. I avoid the big four major brands of antivirus software in favor of one less known that uses the signatures from one of the major four. The best protection against viruses is the brain of the user who is computer saavy. I used HijackThis to remove those 400 viruses. I installed it, I googled the UID of every process I did not recognize until I had eradicated every virus on the system. Up to a few weeks ago, I had and used NAV 2005, but it kept starting disabled because it did not play nice with my audology sound card software or vice versa. Eventually, a virus got through, even though I hadn't opened any email and again, HijackThis was a quick rescue. Now when I get email where I feel I must check out the link I suspect I'll boot into Linux and browse to the site. The biggest problem with these AV softwares, is that many of them do not allow for the creation of a boot CD (Floppies are far too unreliable and a boot floppy can't be made for NT and seemingly for XP.) where the user can boot into a clean environment where the chances of a virus being active and stealthing are minimized during a scan. Without this capability, a running virus simply re-creates the offending files after they are deleted or on reboot. This however becomes a problem when a server cannot be brought down for a thorough untainted scan. This means one should have backup servers. Ie, if you aren't willing to invest in redundancy, one must risk paying the price. Microsoft help presents instructions for creating a clean boot with msconfig but there are two problems with that. There can be no guarantee of a clean boot on a compromised boot media, and step 2 of 12 caused my XP to think it was booting up on a different machine when it was on the same exact machine it was running on before I rebooted! I ended up having to reactivate windows! Since I have a cd with only SP1 this could have been desasterous to try a repair using that CD. Sooner or later, with all the proliferation of malware, we are going to hit a critical mass where legit software will be mistaken more and more for virus, and scanning will turn into a bigger and bigger hassle. Backwards compatibility is a luxury that comes with a price and that price is being limited in how one can respond to threats and security holes. It seems that the next big step might be to have compatibility layers, where an OS ca

I'm an IT professional too

[RebornData]

I would have agreed to you up until V10. As a consultant I administer MANY windows domains, and I've had a significant issues with V10 that I never had with earlier versions at a number of customers, especially on the server (the worst place). I'm using Trend Micro SMB now... and couldn't be happier. They've even built in automatic removal of other A/V software (including Symantec) into their own client installer. My only gripes is that their spam filtering stinks (so does Symantec's), and it doesn't support IMAP at the client.

-R

To be fair...

[abb3w]

Works just fine in OpenOffice though! ;)

OpenOffice's equanimity is similarly unchanged if you do inserts from the Necronomicon. (User sanity is appreciably affected if you do, but not so much as merely caused by using MSWord.)

Ph'nglui mglw'nafh Cthulhu R'lyeh wgah'nagl fhtagn....

WTH

[geekoid]

"But when my oldest son just dropped dead right in front of me, I knew we had to get out of there."

WTH?

Re:WTH

[Volante3192]

10 plagues of egypt... locusts, frogs, death of the first born...

also includes a 3 day solar eclipse, water into blood, lice, flies, diseased livestock, boils, and hailstones of fire.

it's a biblical reference, meaning while the vicars aren't looking into smiting yet, someone else might take the initiative... your humour mileage may vary...

Spent Four Goddamn Hours Because of Norton

[Master+of+Transhuman]

Trying to link a client's Access tables to an offsite SQL Server yesterday.

Guess what? Norton AV's Office Plugin was blocking the link table dialog.

You'd click on Link Tables, get the dialog, navigate to your ODBC data sources, click the dropdown box for the ODBC databsses, click that, the dialog box then just vanishes, no errors, no nothing. Simply wouldn't function.

Four hours trying to figure out what the hell is going on. Finally from a Google search in a MySQL thread where somebody was trying to ODBC from Access to MySQL, somebody mentions the Norton AV problem

Norton is CRAP!

Anybody who uses it is out of their minds. Dump that junk. Put those morons out of business.

sot!

[apaciq]

What!! Sot you...you.....deahvil....

NAV has sucked for 3 years

[thegnu]

I used to swear by NAV and Systemworks because they pretty much were idiotproof, friendly apps that did most of what was asked of them, but they started getting bloaty as all hell.

Starting with NIS 2005, I've had customers with laptops that WILL NOT access the internet, and when you uninstall NIS, the PC won't boot. I've had NAV do exactly the same. NOD32 or Kaspersky are full-on the sheezy. TrendMicro and Panda seem quite fine by me, and McAfee, though I never thought I'd say this, is better than NAV.

Hell, avast! is better than NAV and it's a pile-o-crap.

Sounds legit to me...

[Servo]

They always say that God is all knowing! Obviously Norton is just trying to keep God from spying on you!

It's a serious point...

[Gordonjcp]

... but this is the sort of thing where the open source community could get in and help move these guys off Windows. How hard would it be to write a workalike of Visual Liturgy?

More info on this virus

[Admiral+Burrito]

Virus name: God
Also known as: Jehovah, Allah, Yahweh, YHWH
Spyware: Yes, omnicient.
Damage potential: Armageddon
Prevalence: Ubiquitous
Stealth: Yes (even it's existence is debated)
Threat level: Critical
Notes: This omnipotent entity creates a world by force of will, and then waits until the end times to trigger the armageddon payload.

Re:More info on this virus

[Redwin]

You forgot the most sinister part: Multiple instances of the virus work together to trick the users into executing the payload for it.

No more sermons?

[P0lyh34)]

Shit, ... HELL YEA! Man how could anyone see this as a bad thing? The last thing these people is help spreading their hate mongering and lies. Let them use pen and paper. They want your thoughts regressed a few thousand years, let the way they do it be regressed as well.

Re:No more sermons?

[g4c]

Speaking of hate... (see parent post)

Re:No more sermons?

[P0lyh34)]

oh your right, i fucking loathe organize relegions. All of them, christian, muslim, jewsish, nazis, their all the same folk. My hatred is well justified and placed.

You people suck.

[LocalH]

Here we have a story pointing out where Symantec fucked up pretty bad, and most of what I see is anti-religious zealotry, just because the people that got screwed were religious? I'm no religious person, but you zealots are as bad as the people you hate so much. Symantec is the problem here, not the churches.

Go fuck a tree, zealots. Leave the rational discussion to the grownups.

Re:You people suck.

[SwashbucklingCowboy]

Go fuck a tree, zealots. Leave the rational discussion to the grownups.

I'm sure the irony of this statement escapes you...

Re:You people suck.

[tehcyder]

I'm sure the irony of this statement escapes you...

For the GP's benefit, it's like goldy and bronzy only it's made out of iron.

av software has false-positive - how is this news?

[DonChron]

This happens all the time, with all antivirus software. Signature-based or heuristic or both, they make mistakes. This sounds like a small mistake - it's much worse when you trigger off a widely used application or OS file.

Sure, this is one of the dangers of any malware detection software, but how else would you do it? You need to identify dangerous software using the smallest possible identifier or behavior. Sure, you could have a whole virus-library of malicious code in your detection system, but you would use a ton of memory and disk space to do it and the product would be unusable.

Same for heuristics - you want to exercise, in a pseudo-processing environment, every function in every piece of software on your machine to make sure it doesn't try anything nasty? You would lose most of your cpu cycles to heuristic analysis, waiting several minutes for a program to start executing *your* instructions after the malware analysis completes. Good luck with that project.

With 95% of the world's computers running Windows, everybody needs antivirus software. Unfortunate, and largely MSFT's fault, but there we are. NAV, SAV, McAfee, Grisoft, Trend, Sophos, etc. - they all have their pro's and con's.

Sure, it would be great to have an efficient anti-virus system that didn't depend on too-simple heuristics or too-hard-to-maintain signatures. Does someone know how to do that? There's a big AV market out there. Go ahead, build it.

Slashdot Tagging works!

[miro+f]

Every time Someone asks a question in the slashdot summary, it always gets three tags, "yes", "no", "maybe".

Interestingly enough this one only got yes. You heard it here first, people. Norton is officially a joke. (who am I kidding, everybody knew that)

The only crack here...

[Mister+Transistor]

Is in yer ass. He's talking about way long ago...

-- You probably weren't even born yet --

Before there was Spyware, before there were viruses, before the Mac-centric (at the time) Symantec bought out and pussified it, there was:

{brief fanfare}

"The Norton Utilities"

The finest and mightiest system utils evar. They had a nice collection of about 15 programs, all tiny .exe's, that did great things. There was a direct hex/ascii editor for files AND raw disk sectors. There was the first practical unerase/undelete for files and dirs and much more - a superb hacker's toolkit, everything you needed except debug (and that came w/DOS).

Peter Norton was a god to us then. The moment Symantec bought up all his stuff they completely hosed them, they probably didn't know any better being Mac heads, but they drove what was the strongest techie software franchise in the PC world right into the toilet.

symantec norton antivirus = adware

[poor_boi]

I used to use Norton AntiVirus religiously. I recently uninstalled it and I won't be going back unless something drastic changes. Every new release lately has more and more popups which are seemingly impossible to disable. The thing basically spams you with messages and it's pretty clear they're intended to bring your attention on the program so you'll be more likely to pay for your yearly update. They're afraid antivirus has become something that sits in your tray and you ignore all year while it does its job silently ... and that software that behaves like that doesn't inspire users to shell out their yearly upgrade / subscription cash hastily enough. So they make all sorts of blinky popups to remind you that you're using Symantec Norton AntiVirus and it is Monitoring Your Computer and Status is Green and all sorts of shazz I really don't need to know. Tell me when there's a virus and shut up otherwise.

Re:symantec norton antivirus = adware

[tehcyder]

I used to use Norton AntiVirus religiously

I'm not even sure this was deliberate, but it's still funny in this context.

Re:symantec norton antivirus = adware

[poor_boi]

*Grins* It was totally unintended but I'm sure subconsciously linked to the article. Nice catch ;-)

Apologies to Monty Python..

[Meph_the_Balrog]

And Saint Attila raised the Software up on high, saying, 'O Lord, bless this Thy virus scanner that, with it, Thou mayest blow Thine enemies to tiny bits in Thy mercy

Commies take over Norton

Considering that religion is opium for the masses... may be this is intentional behavior.

Just proves my point...

[bky1701]

...No matter how odd the task, eventually, you will find an application made to accomplish it.

*Googles "generate 800000 lines of 'you suck Bob'"*

Plague on both Norton AND McAfee

They BOTH are junk. Norton 'forgets' its password and becomes impossible to remove within windows. Just deleting it makes the whole operating system unstable and prone to blue screen of deaths. McAfee has become nagware insamuch if you do not buy all the parts of its 'security suite' you will be constantly nagged until either you do or you get tired of the low performance, high overhead and other issues and try to remove it.
THEN the REAL fun begins. Both of these programs require 'online activation', meaning that unknown software is installed when you access their website. There is no guarantee that these programs are not cooperating with some government or corporation somewhere to the extent that somewhere in the millions of lines of code in these applications may lurk just about any kind of malware, trojans, spyware, informware. Online activation means that if some game screws up your system, like 'Lock-On Gold' with its sly background installation of StarForce DRM, then after re-installing the operating system these online activations mean a huge needless and time wasting extra onerous duty of redoing each and every one of the tiresome things one at a time. At some time in the not too distant future, online 're-activations' will become either not free, limited, or both, adding a further layer of frustration to windows users. In addition, requirements to 'online activate' mean that you were not sold the whole application when you foolishly plunked your money down for their less than worthless 'limited warrantees'. This is a shame because Norton was once a good set
of utilities when it had fill secure deleters, disk volume table of contents and FAT editors, etc....really served the computing public. But that was before microsoft 'windows' and its attendant corruption arrived and made computers inscrutable. Before that, software came with real manuals that described how it worked, along with advice on how to customize it in many cases. For much of this, we have ex VP Al Gore to thank. His DMCA was the icing on the tombstone of user's true control of thier machines.
      That is unless you move over to linux!

Re:Plague on both Norton AND McAfee

[rizzo420]

the home versions of all of them suck royally. mcafee's enterprise edition is really nice.

Oh No

[wildman6801]

Oh no it's the Symantecs antichrist!

T-Rex Judeorum

Well, you could say that priests and religion are indeed spyware, they want to collect personal information, that's why they hear confessions. Also, religion spreads like a virus.

At least that is what the local ultra-libertarian and jewry political party SZDSZ preaches here in Hungary. They are extremely anti-clerical and want all youth to abuse drugs, engage in homosexual relations and bilge drink as well as relativism in education (teacher better not dare to criticize lazy and anti-social students or punish them or they'll be fired). They hate christian priests, but support destructive sects, like the scientology company.

Teenagers and yuppies are indeed liking these messages and thus highly pro-SZDSZ. They are deeply scared of the political right coming back to government and pushing the priests to power. Even though the SZDSZ is totally incompetent and destructive and the economy is in ruins, the population has been hyped into such a priest-phobia by the liberal and jewish capital controlled media that any change political is impossible.

I would say it is the liberalism and moral relativity which is spyware and viral and we need to do something against it.

NAV Is The Suck

[baronvonchickenpants]

Although I can obtain Symantec's products gratis from Indiana University, I haven't used it in about 4 years. I have yet to see any malware that NAV will successfully remove.

My Windows machines (as well as any that I'm asked to repair) all run ClamWin http://www.clamwin.com/. It's every bit as good, and GPL'd too!

Re:NAV Is The Suck

[tehcyder]

You misspelled "teh".

Nortons Anti

[carsurf]

It's been pathetic for years.

News Flash....

[infosec_spaz]

It has been a joke for a long time!!! I worked for McAfee in about 1998, and they were a joke that far back as well. Hopefully one day, an antivirus that actually does not depend on viruses being reported or found in the wild will come along, and kill off the crappy stuff we have now-a-days.

AVG is an joke too

[Jachra]

Some people think AVG is an good option. AVG misses more trojans and virusses than McAfee and Norton. So AVG is an bigger joke. On one of my test systems AVG missed an 3 year old trojan. Symantec found it and cleaned it. /offtopic If you don't want Symantec to remove your keygens, the just change the options on what to scan.

CNET ratings...

[Hawkinpaul]

For those of you talking about how Symantec is a place where software goes to die: Check out how CNET has rated NIS from the 2002 version to the 2006 version (I always thought cnet rated Norton way to high but look at the trend.)

NIS version 2002 8.0 Excellent

NIS version 2004 7.6 Very Good

NIS version 2005 7.0 Very Good

NIS version 2006 6.0 Good

http://reviews.search.com/search?q=Norton+Internet +Security&tag=srch&submit=Go!

hmmm... anybody see a trend here? But how could anyone in there right mind ever call NIS Exellent or even Very good?

Prediction

NIS version 2010 1.0 Holy Moly This Reeks!