Re: Anti-virus for i5OS -- MIDRANGE-L

Subject: Re: Anti-virus for i5OS
From: Joe Pluta <joepluta@xxxxxxxxxxxxxxxxx>
Date: Tue, 01 Apr 2008 15:03:54 -0500
List-archive: <http://archive.midrange.com/midrange-l>
List-help: <mailto:midrange-l-request@midrange.com?subject=help>
List-id: Midrange Systems Technical Discussion <midrange-l.midrange.com>
List-post: <mailto:midrange-l@midrange.com>
List-subscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=subscribe>
List-unsubscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=unsubscribe>

David Gibbs wrote:

Java?

Not at the same layer as a native program ... but, strictly speaking, it's code living on the IFS that's executing on the system.

I would agree that the JVM is a possible vector for bad things to happen. On the other hand, I don't know of an anti-virus program that looks for Java bytecode viruses. I did find that the Microsoft JVM had a ByteCode verification exploit.

I can't figure out, though, how a virus would be able to exploit that. You'd actually have to give write access to the directory where your Java classes live. That's a little different than a shared folder. I mean, if you give write access to root, you're in deep doo-doo no matter how many anti-virus programs you run

Joe

As an Amazon Associate we earn from qualifying purchases.

Follow-Ups:

Re: Anti-virus for i5OS , David Gibbs

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.