Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
439
Views
0
Helpful
1
Replies

CSA and Worms detection

irelandsky
Level 1
Level 1

‎04-27-2005 04:29 AM - edited ‎03-10-2019 01:25 AM

Hi all,

could someone tell me how CSA is able to detect worm attack?

Is the agent in communication with Antivirus installed on the system?

Thanks in advance

Marco

Labels:
0 Helpful
1 Reply 1

tsteger1
Level 8
Level 8

‎04-27-2005 10:37 AM

CSA detects (based on the rules you have in place) suspicious behavior that a worm would produce when it was trying to execute on a machine. It queries the user (if user interaction is enabled) whether they will allow it. The Global Event correlation (if you have it enabled) will notify other machines and prevent the spread of the worm even if it successfully executes. CSA knows about the virus scanner (if you have it configured) and allows it to perform as needed but it is not dependant on it for protection.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card