Signature defs include virus defs?

Unanswered Question
May 5th, 2009

When looking at my IPS logs (SSM module in ASA) I noticed (below). Don't sig updates include virus updates or should I be applying virus updates?

Signature Definition:

Signature Update S397.0 2009-04-30

Virus Update V1.4 2007-03-02

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
scothrel Wed, 05/06/2009 - 05:57

The virus updates were distributed/managed by the Incident Control Server (ICS) product that was a joint effort between Trend Micro and Cisco. Trend had the ability, via the ICS, to push anti-virus signatures to a Cisco IPS Appliance for emergent virus control. ICS never caught on and has since been discontinued. We continue to ship, as a base, the last update level that Trend published (V1.4). At some point in the future, we plan to remove the Virus Update label and just include the V1.4 signatures in a base S... signature set.

Actions

This Discussion