Comments on: PCI DSS 1.2 – Anti-virus for *all* platforms http://www.paymentsystemsblog.com/2008/08/19/pci-dss-12-anti-virus-for-all-platforms/ David D. Bergert Sat, 19 Nov 2011 16:52:57 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: NM http://www.paymentsystemsblog.com/2008/08/19/pci-dss-12-anti-virus-for-all-platforms/comment-page-1/#comment-1089 NM Thu, 23 Apr 2009 18:09:33 +0000 http://www.paymentsystemsblog.com/2008/08/19/pci-dss-12-anti-virus-for-all-platforms/#comment-1089 Oh I sure expect to see AVs being marketed to Linux, because there's money to be made, not because they're of any use. And I'm not surprised that Sophos is going to claim that Linux needs virus protection, since that's what they're selling. Fact is, there is no actual virus on Linux in the wild, and you can't get infected with this primitive thing unless you execute binaries of dubious origin. You don't do that on Linux. You install RPMs or DEBs. No virus vector. That doesn't mean there aren't worms or rootkits or exploits; just that programs that replicate by infecting binaries -- what is actually /meant/ by "virus" -- aren't an issue. Oh I sure expect to see AVs being marketed to Linux, because there’s money to be made, not because they’re of any use. And I’m not surprised that Sophos is going to claim that Linux needs virus protection, since that’s what they’re selling.
Fact is, there is no actual virus on Linux in the wild, and you can’t get infected with this primitive thing unless you execute binaries of dubious origin. You don’t do that on Linux. You install RPMs or DEBs. No virus vector. That doesn’t mean there aren’t worms or rootkits or exploits; just that programs that replicate by infecting binaries — what is actually /meant/ by “virus” — aren’t an issue.

]]> By: Auntie AntiVirus http://www.paymentsystemsblog.com/2008/08/19/pci-dss-12-anti-virus-for-all-platforms/comment-page-1/#comment-550 Auntie AntiVirus Tue, 23 Sep 2008 21:29:17 +0000 http://www.paymentsystemsblog.com/2008/08/19/pci-dss-12-anti-virus-for-all-platforms/#comment-550 Putting Antivirus on a hardened secured high availability Unix system. Such as a database cluster is not a good idea. Putting Antivirus on a hardened secured high availability Unix system. Such as a database cluster is not a good idea.

]]>