Path: utzoo!utgpu!watserv1!watmath!att!att!linac!pacific.mps.ohio-state.edu!zaphod.mps.ohio-state.edu!unix.cis.pitt.edu!dsinc!netnews.upenn.edu!vax1.cc.lehigh.edu!cert.sei.cmu.edu!krvw
From: oper1%drcv06.decnet@drcvax.af.mil (DRCV06::OPER1)
Newsgroups: comp.virus
Subject: RE: Trojan Warning (PC)
Message-ID: <0009.9011281444.AA08768@ubu.cert.sei.cmu.edu>
Date: 27 Nov 90 21:01:00 GMT
Sender: Virus Discussion List <VIRUS-L@LEHIIBM1>
Lines: 18
Approved: krvw@sei.cmu.edu

keithm@ashtate.A-T.COM (Keith Mund) writes:

>>Speaking personally as a software author, buy software from the
>>manufacturer or a legitimate dealer. The same fears you have are felt
>>by them manyfold, and great care is taken to insure safe software.
>>Although you threw out names of companies freely, none of them has
>>distributed software with any problems. Why fear a problem that does
>>not exist. Viruses are spread by individuals copying software, not by
>>legitamate manufacturers.

	One way of insuring that the SCAN or F-PROT programs are
legitamate is for the authors to ZIP their program with the -AV
(Authenticate Verification) switch on.  That way if the programs were
modified PKUNZIP would tell you.  It would also be a way for users to
know that the ZIP file came straight from the author and hasn't been
modified in any way.

Glenn.