Feeds

Sophos updates snag unwary

Viral order

  • alert
  • submit to reddit

Secure remote control for conventional and virtual desktops

Sophos users on standalone PCs should remember that they need to download virus definitions after they install their monthly update CD.

During a local (single user) install of Sophos Anti Virus (SAV) the package automatically removes old virus signature definition (IDE) files.

The advice comes from a Reg reader who had had already downloaded a virus signature file for BadTrans-B before installing the CD; but this definition became deleted during the CD update process. He subsequently became infected by BadTrans-B and although he didn't find it hard to disinfect his machine, it's easy to understand how he made his mistake.

SAV automatically deletes IDE files during local installation as part of its housekeeping functions, but for central installations this function is performed manually - so computer networks are not automatically stripped of protection in the same way.

SAV user manuals and installation guides explain what a home user needs to do, but as our correspondent says "no-one really reads the small print in these things".

Graham Cluley, senior technology consultant at Sophos Anti-Virus, conceded that it needed to make its software and documentation clearer about the need to download update files after applying a monthly update CD.

"The reason why BadTrans-B detection wasn't included on the CD ROM was simply because of the length of time it takes for the CD ROM to be mastered and properly quality assured," he said.

Protection from the virus has been available on our Sophos' Web site since 24 November but that was too late to get onto its December CD. A description will be included on SAV's January 2002 CD, Sophos says. ®

External links

The interaction between local installations of SAV and the deletion of IDE files

Related stories

BadTrans virus bites Windows users hard
Murder on the Outlook Express
Email deletion bug baffles McAfee
Norton AV update rings false alarm bells

New hybrid storage solutions

More from The Register

next story
Google recommends pronounceable passwords
Super Chrome goes into battle with Mr Mxyzptlk
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
Snowden, Dotcom, throw bombs into NZ election campaign
Claim of tapped undersea cable refuted by Kiwi PM as Kim claims extradition plot
Reddit wipes clean leaked celeb nudie pics, tells users to zip it
Now we've had all THAT TRAFFIC, we 'deplore' this theft
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
TorrentLocker unpicked: Crypto coding shocker defeats extortionists
Lousy XOR opens door into which victims can shove a foot
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.