Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 2440 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AV signatures date 06.08.2012

isle-gmbh

Halo,

using Ednpint Security and Control 10.0.

The virus data date from 06.08.2012.

The last update was today (07.09.2012), but I still have the old definitions.

I think this might be a problem.

Nice weekend, O. Schumann.

ISLE GmbH.

[Antivirus und HIPS]

-[ Software]

Sophos Anti-Virus 10.0.7

Veröffentlichungsstatus Full

On-Access-Status Aktiviert

Detection Engine 3.34.0

Erkennungsdaten 4.80G

Datum der Virendaten 06.08.2012

Objekte erkannt 3880695

Erkennungsdateien 385

Version der HIPS-Regeln 9.7.8

Version der HIPS-Konfiguration 1.0.4

Letztes Update 07.09.2012 12:03:11

:29261


This thread was automatically locked due to age.
Parents
  • 0

    Hello angus,

    the Virus data date corresponds to the Detection data version (e.g. 4.80 or 4.81). Usually it is not much more than one month in the past, but if - for whatever reason - you subscribe to a fixed version (as opposed to Recommended) it is to be expected. Note that protection is not (significantly) reduced as newly issued IDEs will work not only with the latest but also previous versions of data and engine.

    isn't the date of the last IDE the relevant date?

    You are correct that you can only see when IDEs have been downloaded - but at this time the client should have downloaded all IDEs available and not only some of them. What you can see in the GUI is the number of IDEs on the client (which you can compare to the number on the downloads page). If the number is correct then you can be pretty sure the client is up to date (a better indicator is the Up to date status in SEC as it not just compares dates/numbers when it identifies the packages - and of course this requires that the clinet communicates with the console).

    Christian

    :34169
Reply
  • 0

    Hello angus,

    the Virus data date corresponds to the Detection data version (e.g. 4.80 or 4.81). Usually it is not much more than one month in the past, but if - for whatever reason - you subscribe to a fixed version (as opposed to Recommended) it is to be expected. Note that protection is not (significantly) reduced as newly issued IDEs will work not only with the latest but also previous versions of data and engine.

    isn't the date of the last IDE the relevant date?

    You are correct that you can only see when IDEs have been downloaded - but at this time the client should have downloaded all IDEs available and not only some of them. What you can see in the GUI is the number of IDEs on the client (which you can compare to the number on the downloads page). If the number is correct then you can be pretty sure the client is up to date (a better indicator is the Up to date status in SEC as it not just compares dates/numbers when it identifies the packages - and of course this requires that the clinet communicates with the console).

    Christian

    :34169
Children
No Data