From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 108184 invoked by alias); 9 Apr 2019 16:38:59 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 108176 invoked by uid 89); 9 Apr 2019 16:38:59 -0000 Authentication-Results: sourceware.org; auth=none X-Spam-SWARE-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=ham version=3.3.1 spammy=virus, antivirus, helped, gathered X-HELO: vsmx012.vodafonemail.xion.oxcs.net Received: from vsmx012.vodafonemail.xion.oxcs.net (HELO vsmx012.vodafonemail.xion.oxcs.net) (153.92.174.90) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Tue, 09 Apr 2019 16:38:57 +0000 Received: from vsmx004.vodafonemail.xion.oxcs.net (unknown [192.168.75.198]) by mta-8-out.mta.xion.oxcs.net (Postfix) with ESMTP id F1921F34CAA for ; Tue, 9 Apr 2019 16:38:54 +0000 (UTC) Received: from Rainer.invalid (unknown [87.185.221.231]) by mta-8-out.mta.xion.oxcs.net (Postfix) with ESMTPA id C453C19AD61 for ; Tue, 9 Apr 2019 16:38:52 +0000 (UTC) From: Achim Gratz To: cygwin@cygwin.com Subject: Re: Sophos Antivirus References: <8675fd88-d4a9-d022-885f-f03fa2082390@cs.umass.edu> Date: Tue, 09 Apr 2019 16:38:00 -0000 In-Reply-To: <8675fd88-d4a9-d022-885f-f03fa2082390@cs.umass.edu> (Eliot Moss's message of "Mon, 8 Apr 2019 18:06:22 -0400") Message-ID: <87h8b7jfqi.fsf@Rainer.invalid> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-SW-Source: 2019-04/txt/msg00079.txt.bz2 Eliot Moss writes: > At present, Sophos is enterprise managed on my computer, which means > I can't even personally install the hotfix, but I might convince my > organization to help me do it, etc. Just gathered information while > I await their response ... No experience with Sophos, but certain heuristics in virus scanners apparently are only applied when the file in question has not yet been scanned. So it is sometimes helpful to run an explicit scan of the install dir. With other antivirus solutions only explicit whitelisting or exclusion of the installation directory actually helped. The exclusion usually only needs to target the "real-time" and heuristic engines of the antivirus package, which might make it more acceptable for corporate IT security. It is also helpful to ask them to escalate to the vendor support, since usually the vendors know about how their products interact with Cygwin and have a solution ready for when the customer asks. Regards, Achim. -- +<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+ Samples for the Waldorf Blofeld: http://Synth.Stromeko.net/Downloads.html#BlofeldSamplesExtra -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple