George Orwell <Use-Author-Supplied-Address-Header@[127.1]> wrote in
news:8e5d066818cf60589120f30c9e00db49@mixmaster.it :

> PC World
> http://elfurl.com/qympl
>
> Some industry analysts are proclaiming the traditional antivirus method
> for detecting and eradicating viruses, trojans, spyware and other
> baneful code by matching it against a signature
> http://************/crapware to be "dead."

*yawn*


> They say signature-based checking can't keep up with the flood of virus
> variants manufactured by a criminal underworld that is beating the
> antivirus vendors at their own game. And they are arguing it's time for
> companies to adopt newer approaches, such as whitelisting or behavior-
> blocking, to protect desktops and servers.

Behavior blocking isn't new, and for that matter, neither is
whitelisting. They aren't in widespread use due to the annoyances each
option presents. Behavior blockers are bad about blocking legitimate
applications as well, annoying users to the point where they just turn it
off.

Whitelisting is nice n all, but How does one get the software authorized?
Who has control over this autorization? How does the whitelisting system
ensure the programs are legitimately whitelisted, and one of them didn't
add itself?

> "It's the beginning of the end for antivirus," says Robin Bloor,
> partner at consulting firm Hurwitz & Associates, in Boston, who adds he
> began his "antivirus is dead" campaign a year ago and feels even more
> strongly about it today. "...The approach antivirus vendors take is
> completely wrong. The criminals working to release these viruses
> against computer users are testing against antivirus software. They
> know what works and how to create variants."

This is very deceptive and shady. Virus scanners have always been tested
by the other guys, Both sides know this. It's called knowing thy enemy.
Your just trying to scare people with this recycled crap of yours.

> ..Instead of antivirus software, he says, users should be investing in
> whitelisting software that prevents viruses from running because it
> only allows authorized applications to run.

This will not prevent all viruses from running. Trojans, rootkits, etc.
It's a very misleading comment and may lead users into a very real false
sense of security.


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - V2.2
web: http://bughunter.it-mate.co.uk - email:
bughunter.dustin@gmail.com.removethis
Pad: http://bughunter.it-mate.co.uk/pad.xml