Suitable Anti-Virus for those who ship software
-
Simple question...Is Microsoft Security Essentials sufficient AV protection on development workstaions used to compile and sign executables? One of my biggest fears has always been that a system gets compromised and we unwittingly send out a batch of infected updates. :omg: I am currently in a situation where a customer's AV identified 5 of our executables as being infected and quarantined them. In trying to resolve the situation, their network administrator asked for those files as a zipped email attachment which I sent. She promptly replied that the attachment had been stripped due to detection of a virus! I have checked these files with both MSE and AVG with no problem. I have applied for an evaluation of the AV the customer is using (lightspeed) both to replicate the issue, and to find out if the claim is legitimate but am still waiting. BTW, any executable we ship is digitally signed.
"Go forth into the source" - Neal Morse
-
Simple question...Is Microsoft Security Essentials sufficient AV protection on development workstaions used to compile and sign executables? One of my biggest fears has always been that a system gets compromised and we unwittingly send out a batch of infected updates. :omg: I am currently in a situation where a customer's AV identified 5 of our executables as being infected and quarantined them. In trying to resolve the situation, their network administrator asked for those files as a zipped email attachment which I sent. She promptly replied that the attachment had been stripped due to detection of a virus! I have checked these files with both MSE and AVG with no problem. I have applied for an evaluation of the AV the customer is using (lightspeed) both to replicate the issue, and to find out if the claim is legitimate but am still waiting. BTW, any executable we ship is digitally signed.
"Go forth into the source" - Neal Morse
kmoorevs wrote:
Simple question...Is Microsoft Security Essentials sufficient AV protection on development workstaions used to compile and sign executables?
Simple answer; nothing will be sufficient to give guarantees. Install 10+ AV's, and you'll still receive "updates" of virus-definitions. There's no way to eliminate the threat completely. FWIW, using Avast! Antivirus, nothing more. The thing that protects it best, is to be paranoid on who touches your build-server. If it's really a big issue, then install a second build-server in a remote area. Upload the sources bij FTP, generate a hashcode of the binaries and compare them with a hash of the local binaries. If they stop matching, "something" changed.
Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^]
-
kmoorevs wrote:
Simple question...Is Microsoft Security Essentials sufficient AV protection on development workstaions used to compile and sign executables?
Simple answer; nothing will be sufficient to give guarantees. Install 10+ AV's, and you'll still receive "updates" of virus-definitions. There's no way to eliminate the threat completely. FWIW, using Avast! Antivirus, nothing more. The thing that protects it best, is to be paranoid on who touches your build-server. If it's really a big issue, then install a second build-server in a remote area. Upload the sources bij FTP, generate a hashcode of the binaries and compare them with a hash of the local binaries. If they stop matching, "something" changed.
Bastard Programmer from Hell :suss: If you can't read my code, try converting it here[^]
-
Simple question...Is Microsoft Security Essentials sufficient AV protection on development workstaions used to compile and sign executables? One of my biggest fears has always been that a system gets compromised and we unwittingly send out a batch of infected updates. :omg: I am currently in a situation where a customer's AV identified 5 of our executables as being infected and quarantined them. In trying to resolve the situation, their network administrator asked for those files as a zipped email attachment which I sent. She promptly replied that the attachment had been stripped due to detection of a virus! I have checked these files with both MSE and AVG with no problem. I have applied for an evaluation of the AV the customer is using (lightspeed) both to replicate the issue, and to find out if the claim is legitimate but am still waiting. BTW, any executable we ship is digitally signed.
"Go forth into the source" - Neal Morse
Try uploading a small executable to https://www.virustotal.com/[^] and you can see the output from a host of antivirus engines they support.
Vasudevan Deepak Kumar Personal Homepage You can not step into the same river twice.