It does have "Learning" abilities, its "heuristic" blah blah blah......

I agree with a post i saw a while back here, about rather using the defense-in-depth model. I believe a balanced approach between automation and human interaction needs to be found in an organisation. while you sleep, i am awake, and vice versa..... i believe in vlans, i believe in firewalling, but if the question is, do i use an automated anti-virus only, i say no.

you are your own best tool. anything can happen that wonks out the server, and what if your network becomes infected with a network aware virus that chews up all your bandwidth scanning for similarly vulnerable machines?! how would it update then if it has no bandwidth to utilise?! QoS and other factors would also play a role. I believe that no, one should not only have automation for network anti-virus.

They are mostly, anyways, reactionary ....... if someone wrote virus for office (word) how would this anti-virus pick it up if it had legitimate application algorithym with exploit for inside? what about a stealth virus, that will switch itself off when it detects it is being scanned?! I believe one was found not so long ago, about 2 weeks ago if not mistaken. I remember the debate on zdnet and others were "is conventional anti-virus becomming obsolete." I believe in balance and complete system defense .....