[20397] in bugtraq
Re: Double clicking on innocent looking files may be da ngerous
daemon@ATHENA.MIT.EDU (Nick FitzGerald)
Mon Apr 23 19:48:37 2001
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
Message-ID: <200104230928.VAA16014@fep3-orange.clear.net.nz>
Date: Mon, 23 Apr 2001 21:26:55 +1300
Reply-To: nick@virus-l.demon.co.uk
From: Nick FitzGerald <nick@virus-l.demon.co.uk>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <27B17B8B25A3D411B45800805FA7F01CB08444@mtvmail.merant.com>
Michael Wojcik <Michael.Wojcik@MERANT.COM> wrote:
Sorry for the delay in responding...
> I suspect we're approaching the point where it makes no sense to have an
> executable extension list anyway, and desktop antivirus products will just
> scan all files.
What do you mean "approaching"??
If you did not realize that about 5 years ago (probably nearer six
now) you were behind the game...
Since about 4 years ago it has been close to crucial.
The AV companies started to realize it (as in "publicly acknowleged
it" by recommending "scan all files" or even making that the default
or at least by starting to talk about implementing "smart file
typing" in their products) about 3-3.5 years ago.
Regards,
Nick FitzGerald
