Path: utzoo!utgpu!watserv1!watmath!att!bu.edu!snorkelwacker.mit.edu!apple!agate!shelby!rutgers!netnews.upenn.edu!vax1.cc.lehigh.edu!cert.sei.cmu.edu!krvw
From: millerje@holst.tmc.edu (jeffrey scott miller)
Newsgroups: comp.virus
Subject: Re: Trojan Warning (PC)
Message-ID: <0010.9011291846.AA10418@ubu.cert.sei.cmu.edu>
Date: 29 Nov 90 02:15:09 GMT
Sender: Virus Discussion List <VIRUS-L@LEHIIBM1>
Lines: 22
Approved: krvw@sei.cmu.edu

oper1%drcv06.decnet@drcvax.af.mil (DRCV06::OPER1) writes:
>keithm@ashtate.A-T.COM (Keith Mund) writes:
>
[about buyin direct...]
>
>	One way of insuring that the SCAN or F-PROT programs are
>legitamate is for the authors to ZIP their program with the -AV
>(Authenticate Verification) switch on.  That way if the programs were
>modified PKUNZIP would tell you.  It would also be a way for users to
>know that the ZIP file came straight from the author and hasn't been
>modified in any way.
>
>Glenn.

yes and no.  As I remember, there was a PKZIP1.2 (or was it 1.1) that
had come out with was a bogus version, and yet whoever hacked it was
able to retain the AV verification..
 _____________________________________________________________________________
|                                                                             |
|  "NUKE THE UNBORN GAY WHALES!"       |  Jeff Miller                         |
|             - graffiti               |  millerje@handel.CS.ColoState.Edu    |
|_____________________________________________________________________________|