[funsec] standards status in the industry - opinion?
Florian Weimer
fw at deneb.enyo.de
Sat Jan 7 18:18:01 CST 2006
* Drsolly:
> On Sun, 8 Jan 2006, Florian Weimer wrote:
>> How many anti-virus programs have got an ^MZ checkbox which is enabled
>> by default?
>
> What do you mean by an "MZ checkbox"?
>
> Why would anyone *not* scan executable files? So why would you want to
> give people an option to disable scanning those files?
Activating the checkbox would flag anything that is received over the
network, looks like an executable, and lacks a proper AuthentiCode
signature as malware. (IIRC, Microsoft has promised to implement
something similar, but I haven't seen any warnings on Windows XP SP2
yet.)
Apart from PGP users, who sends .EXE files by email?
More information about the funsec
mailing list