Archive Formats Kill Antivirus Products

nemiloc sends us to the F-Secure blog for breaking news about widespread vulnerabilities in programs that process archive files: "The Secure Programming Group at Oulu University has created a collection of malformed archive files. These archive files break and crash products from at least 40 vendors — including several antivirus vendors... including us." Here is test material from OUSPG and a joint advisory from Finnish and English security organizations. It isn't news that security products can have have security vulnerabilities. What makes this advisory important is that antivirus software is a perfect target. It is run in critical places with high privileges and auto-updates to keep versions coherent.

Re:Secure Platform without Anti-virus

[Nullav]

You might want to take Solaris off that list. It's only as closed as MySQL Enterprise.

Re:Secure Platform without Anti-virus

[beckerist]

Sybase / Adaptive Server Anywhere (as it's called now) is NOT ANYTHING like MSSQL. OLE DB vs ODBC, MSSQL requires an insane amount of resources comparatively, many syntax differences including table referencing, restoring, OS commands (ASA can run in Linux.)
Licensing for ASA is about 20% the price of MSSQL. MSSQL CAN do indexed views and multiple triggers, where ASA cannot. Naming conventions are shorter in ASA.

Also, don't even get me STARTED on security. I work for a software dev company that uses both platforms and I still refuse to touch MSSQL if I can help it. Not because I'm anti-Microsoft but because there are so many fundamental differences between the two that I'm not willing to completely relearn a "new" SQL syntax for it. I feel bad if you're stuck with MSSQL but migrating to ASA FROM MSSQL would suck even worse in my opinion.