Another Reason Not to Run Windows
Windows malware on a computer running Ubuntu? Strange.
open source, open genomics, open creation
The open source anti-virus software project ClamAV is one of my favourite pieces of free code. I've used it for years now, and recommended it to dozens of people. But I've always been a bit worried about its business model: could it continue to grow?
Well, now it looks like it can, since Sourcefire, creator of SNORT, has acquired the project:
With nearly 1 million unique IP addresses downloading ClamAV malware updates daily across more than 120 mirrors in 38 countries, ClamAV is one of the most broadly adopted open source security projects worldwide. ClamAV has also been recognized as comparable in quality and coverage to leading commercial anti-virus solutions. Most recently, at LinuxWorld this year, ClamAV was one of only three anti-virus technologies to provide a 100% detection rate in their live 'Fight Club' test featuring live submissions from the show audience.
Under terms of the transaction, Sourcefire has acquired the ClamAV project and related trademarks, as well as the copyrights held by the five principal members of the ClamAV team including project founder Tomasz Kojm. Sourcefire will also assume control of the open source ClamAV project including the ClamAV.org domain, web site and web site content and the ClamAV Sourceforge project page. In addition, the ClamAV team will remain dedicated to the project as Sourcefire employees, continuing their management of the project on a day-to-day basis.
As the above points out, ClamAV was one of only three anti-virus technologies to provide a 100% detection rate, and this only reinforces my confidence is using it day-in, day-out. If you don't know it, do take a look. (Via Matthew Aslett.)
Posted by Glyn Moody at 1:47 pm 0 comments
Labels: antivirus, clamav, snort, sourcefire
One of the oldest canards is that open source can't be secure, because crackers are able to see the source code and exploit it. Good to see a journal dedicated to security doesn't buy it:Open source applications make their source code publicly available for any user to download, compile and execute. This makes it possible for developers to modify different aspects of the program to their needs. However, it also makes it extremely easy for malicious coders to find and use exploits in the software against unsuspecting users.
To prevent this from happening, open source software employs some of the highest forms of security around, and when it comes to open source security applications, that bar is set even higher. After all what good would a network firewall or intrusion detection system be if a user were able to penetrate the system because of an exploit in the source code?
It follows this up with a handy list of 105 open source security apps (although I'm not quite sure if all are pure free software, or whether some just run on things like GNU/Linux). Anyway, a useful starting point.
Posted by Glyn Moody at 4:54 pm 0 comments
Labels: antivirus, firewalls, GNU/Linux, intrusion detection, security
To the extent possible under law,
glyn moody
has waived all copyright and related or neighbouring rights to
this work.
This work is published from:
United Kingdom.