 |
 | Alternate Data Streams And Scanning |  |
|
GuitarBob
|
|
I see that a few antivirus products are now scanning for alternate data streams (ADS) on NTFS computers. Is there any need to do so? If so, does ClamWin do this?
Here is an informative article about ADS: https://www.diamondcs.com.au/index.php?page=archive&id=ntfs-streams Regards, |
|||||||||||
|
|||||||||||||
 |
| |
|
sherpya
|
|
 |
|||||||||||
|
|||||||||||||
|
| |
|
alch
Site Admin
|
|
we looked at ADS earlier and deemed them as a low threat. Here is the quote form the page you mentioned:
So in order to execute a code from an ADS there needs to be a loader program which ClamAV would be able to identify as a virus. |
|||||||||||||
|
|||||||||||||||
|
| ADS | |
|
GuitarBob
|
|
Thanks for the info, Alch. It seems that threats are sometimes exaggerated, and resources are limited, so it's prudent to concentrate upon what is most likely to occur. I heard that Intel wasn't even aware of ADS until fairly recently. Perhaps it will go away with Vista.
Regards, |
|||||||||||
|
|||||||||||||
|
 | Alternate Data Streams And Scanning | |
|
||
|
|
|
Powered by phpBB © phpBB Group
Design by phpBBStyles.com | Styles Database.
Content © ClamWin Free Antivirus GNU GPL Free Software Open Source Virus Scanner. Free Windows Antivirus. Stay Virus Free with Free Software.
Design by phpBBStyles.com | Styles Database.
Content © ClamWin Free Antivirus GNU GPL Free Software Open Source Virus Scanner. Free Windows Antivirus. Stay Virus Free with Free Software.