Realtime scan of Firefox Cache

[Fract504]

Hello,

how can I tell Avast to do enable a realtime scan for files without any extension (the cache files of firefox do not have any extension)?
I don't want to set avast to scan all files regardless of the extension, but just the default filetypes it recognizes plus the files without any extension.

I tried entering  , , in the additional list and I tried also a single dot in this list, but it does not do what I want.

Any help please?

[Lisandro]

How can I tell Avast to do enable a realtime scan for files without any extention (the cache files of firefox do not have any extention)?

I think you can't... follow this way i.e., add the * on the read/create/modify option of the Standard Shield. This provider will read the file as 'plain text' by this way.

You should ask for the 'High' sensitivity option.

[DavidR]

Firefox's extensionless cache, I believe is to make it less vulnerable to attack.

Unfortunately, this makes it difficult to scan the files efficiently, you either have to scan all created/modified files as I don't believe there is a way to include files without a extensions in the additional extensions window.

I don't think there is a way to define this with wildcards or otherwise.

[Fract504]

Hi folks,

thanks for your anwers. I think I will set the realtime scanner to scan all files created or changed. Maybe avast should include an option to scan files without extension in the next release.

[Lisandro]

Maybe avast should include an option to scan files without extention in the next release.

It was discussed a lot in the past... It's not just an option... Huge amount of hours of programming...  

[Fract504]

Technical,

are you kidding? It cannot be that much work to test a filename for an empty extension. Even our "rival" Antivir scans extensionless files by default...

Still i can't decide if I should put the Standard Shield to "high" or if I can live with the unscanned firefox cache...

I don't know how dangerous it is not to scan the cache...

[rdsu]

Technical,

are you kidding? It cannot be that much work to test a filename for an empty extension. Even our "rival" Antivir scans extensionless files by default...

I agree with you...

[DavidR]

I agree with Technical, ignorance is bliss. This will take some programming.

How do you go about selecting the correct scanning tool/packer for a file without a file extension, you have to identify the file type before you can check it for infection.

Or you have to do a simple text file scan (as Technical said) which is unlikely to be effective and miss infected files in packed/compressed form.

Yes some other programs do it, but how effective is it what type of scan are they doing. Just because they do it doesn't necessarily make it better.

Firefox has only got to 1.0 official release, you are surely not saying that time should be spent trying to follow beta developments of firefox when the the final version could be vastly different.

That is time and money wasted (programmers have to be paid), it stops regular development of avast, offered free to you and I for non business use.

[rdsu]

I agree with Technical, ignorance is bliss. This will take some programming.

Try to respect the others opinions...

[inthewildteam]

@ Fract504,

if you have a fast connection, just set the cache to use 0kb from the tools/options/privacy in Firefox.  Only reason I can see for cacheing any net session would be for off-line browsing or if you use a dial-up connection to speed up page rendering.

I use F/fox here in the U.K. with the above setting on a cable connection with no hit on page load speeds.

[Fract504]

Hi inthewildteam,

I also thought about this possibility, because I am on a 2MBit DSL-Connection flatrate...

Maybe files without any extension should be scanned as html-type files, then at least we would get the files scanned that mostly enter our systems without any control: The Web-Pages. If the extensionless files of the firefox are not scanned, a vbscript virus can enter the system easily.

I think firefox does matter a lot, so some coordinated look into this matter should be done.

Of course I can set my realtime settings to high, but I don't see any sense in scanning .txt or .png files when they are written to the disk. Also a little more cpu is also consumed.

Scanning extensionless files as html/php/xml-type would definately be a step in the right direction. At least better than not scanning them at all

[Eddy]

Scanning files without extension is already possible.
Just set the standard shield provider to scan "created/modified files" and select "all"

[Fract504]

Hi Eddy,

please read the complete thread. You will see that this possibility has been known to me from the very beginning and thats not the point anymore.

Another point with firefox and scanning is the memory cache of firefox. Who is responisible for scanning that kind of storage. I think currently no product scans this area. Just something to think about.

[Lisandro]

Technical, are you kidding?

Fract, I understand you and I hope VaMPiRiC_CRoW try to respect my opinion too.
I'm just saying you're asking and talking about things that were discussed a lot in the past. Please, don't come here just to ask for. Try to contribute sometimes. I'm a little upset  

Did you read this:
http://forum.avast.com/index.php?board=2;action=display;threadid=998
http://forum.avast.com/index.php?board=2;action=display;threadid=1096
http://forum.avast.com/index.php?board=2;action=display;threadid=5668
http://forum.avast.com/index.php?board=1;action=display;threadid=5740
http://forum.avast.com/index.php?board=2;action=display;threadid=57
http://forum.avast.com/index.php?board=2;action=display;threadid=5714
http://forum.avast.com/index.php?board=2;action=display;threadid=6141
http://forum.avast.com/index.php?board=2;action=display;threadid=7503
http://forum.avast.com/index.php?board=9;action=display;threadid=7650

I'm not kidding. I just respect Alwil team work. I don't come here to blame!

Read Igor's post here: http://forum.avast.com/index.php?board=2;action=display;threadid=6429;start=msg49871#msg49871

Test if a ? works...

[Fract504]

Hi technical,

Thank you very much for posting these links. I didn't just searched good enough.

And sorry for reporting something "negative" of avast which can be improved. Seems that some people here want to hear: Avast is perfect. Nothing has to be changed.

I don't agree with that kind of fanatism.

And I'm not coming here to ask for. I am simply reporting with open mind. I am not forcing anybody to implement any improvements. At least the avast Home version is free and I'm totally happy that we got more then we could expect for that "price".

Update: Btw: I tried adding ? to the extension list and that works! So thanks very much for that info!!
Adding ? just scans files without any extension. Technical: Friendship again?