undefined | Better HN

0 pointsInclinedPlane15y ago0 comments

No thank you! AV software is not security, it's a stopgap measure for when you have to "do something" but are too lazy to implement real security measures. And McAfee is one of the lowest quality AV vendors out there (remember when they pushed out a definition update that made XP instances unbootable? that costs a lot of people a lot of headache, and millions of dollars).

0 comments

3 comments · 2 top-level

noonespecial15y ago· 1 in thread

Agreed. Just wait till they push the signature to the flash om some special chip that calls a vital windows binary a virus. Not only will you not be able to boot, you won't even be able to reinstall, or pxe-boot, or run a live cd...

Thats one deep rabbit hole.

InclinedPlaneOP15y ago

Aye. And imagine how much damage false-positives can have on smaller software companies. A company like MS runs all of its binaries through the major virus scanners as a matter of course for any release build, not just to check for viruses but to make sure that they don't get tagged by a broken heuristic detector or some such. But not every company has that luxury (and even so, it didn't save XP from McAfee's blunder).

Besides which, all AV amounts to variations on turd polishing. You'll never achieve robust security through black-list methods.

Marticus15y ago

It isn't software at that point as you would normally think of it - it would be a dedicated hardware piece that simply cross-references signatures with a known detection library and reports to the Intel chip.

And you think end users have any grasp of how to implement "real" security measures? Oh hell no. Joe Schmoe at XYZ web design corp is inevitably gonna download that porn at work and get some worm.

j / k navigate · click thread line to collapse