ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » General IBM MQ Support » AntiVirus Exclusion MQ Files

Post new topic  Reply to topic Goto page Previous  1, 2
 AntiVirus Exclusion MQ Files « View previous topic :: View next topic » 
Author Message
gbaddeley
PostPosted: Sun Jan 20, 2013 2:37 pm    Post subject: Reply with quote

Jedi Knight

Joined: 25 Mar 2003
Posts: 2538
Location: Melbourne, Australia
Hi Jeff,
mqjeff wrote:
I was talking about the chance that a random section of a random part of a q file would contain the same set of bytes that matched the signature of a virus exec.

I'd say the chance is very low, otherwise there would be a significant number of false positives.
Quote:
In either situation, one *still* does not want one's virus scanner program to remove any section of a q storage file, there by corrupting the queue and damaging any remaining messages on the queue.

True. I thought virus scanners work by quarantining entire files rather than portions of them, or only report a virus match and not automatically move the file.
_________________
Glenn
Back to top
View user's profile Send private message
bruce2359
PostPosted: Sun Jan 20, 2013 2:57 pm    Post subject: Reply with quote

Poobah

Joined: 05 Jan 2008
Posts: 9475
Location: US: west coast, almost. Otherwise, enroute.
Which antivirus program? The free kind? The industry-standard kind? What options?
_________________
I like deadlines. I like to wave as they pass by.
ב''ה
Lex Orandi, Lex Credendi, Lex Vivendi. As we Worship, So we Believe, So we Live.
Back to top
View user's profile Send private message
mqjeff
PostPosted: Mon Jan 21, 2013 7:19 am    Post subject: Reply with quote

Grand Master

Joined: 25 Jun 2008
Posts: 17447
gbaddeley wrote:
Hi Jeff,
mqjeff wrote:
I was talking about the chance that a random section of a random part of a q file would contain the same set of bytes that matched the signature of a virus exec.

I'd say the chance is very low, otherwise there would be a significant number of false positives.


I'd suggest that they use a significantly larger set of metrics to determine if a specific file might contain a virus in the first place.

I'd suggest that I do not consider those metrics reliable in the case of files of unknown type that they have not specifically been told about - for example files named 'q'.

It's great if you've gotten away with it.

I don't trust it, and do not recommend that anyone trust it without realistic testing.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic  Reply to topic Goto page Previous  1, 2 Page 2 of 2

MQSeries.net Forum Index » General IBM MQ Support » AntiVirus Exclusion MQ Files
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.