On Sun, Feb 23, 2020 at 02:07:00PM -0500, Philippe LeCavalier wrote: > On Sun, Feb 23, 2020, 14:04 Stefan Monnier <monn...@iro.umontreal.ca> wrote: > > > > defense in depth / layered defense... would you recommend having a Linux > > > anti-malware? > > > > No. All those only try to recognize known threats. When a threat is > > known, the security hole it exploits is also known, and the fix for it > > already exists as well, so updating your distribution to the latest > > security fixes is a better solution since it doesn't just protect you > > from those known threats but it also protects you from unknown threats > > using the same security holes. > > > > > > Stefan > > > That's not true. Sophos has ai learning and threat analysis mitigation > tactics built in.
And a lot of snake oil to boot. I totally agree with Stefan: for an OS with a working and transparent patch/release cycle, "classical" AV strategy is nonsense. Besides, the real threats are elsewhere these days, cf. [1] (hint: the data you care about isn't in /usr/bin). Cheers [1] https://xkcd.com/1200/ -- tomás
signature.asc
Description: Digital signature
