Re: another VX site?

[Drsolly <drsollyp () drsolly com>]

> Of course, whether an AV product _need_ detect, or need deetct _and 
> inform the user_, of the precise variant when, despite the malwares' 
> program logic and/or expression differences, their _effective 
> behaviour_ is the same, is another question.  AV uber-purists have 
> (mostly) always aimed for "exact identification" whereas others have 
> tended to go for "if the functionality is about the same such that 
> disinfection is the same we need not be too fussy about identifying 
> precise variants" and a few have always been so sloppy that it matters 
> not what they call something as half its detects are guaranteed to be 
> entirely unrelated and some/many not even malware (for example, some AV 
> -- I forget which offhand -- has a generic "unwanted file" or similar 
> detection for _any file_ it does not have more precise identification 
> of that is packed with FSG).

Internally, though, if the product is going to do repair, then exact 
identification is extremely important. I agree, you don't need to tell the 
user that it's jerusalem.h or jerusalem.m if those have the same payload, 
but there's not big downside in displaying that info.

> > Just called my sisters wife, ...
>
> It's not germane to this conversation, but I was not aware lesbian 
> marriage was possible/legal anywhere in the US...

Maybe they got married in the UK, where we now have same-sex "Civil
union", which is (loosely) called "marriage".

> The Wikipedia "plural of virus" entry deals with the rest of the 
> bogosity of "vira", "viri" and "virii" showing it to be the pseudo-
> scholastic nonsense it is, so I'll not bother spelling it all out again 
> after all.

Righteous.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.