Jump to content
Sign in to follow this  
Chim

SAS Definitions Update Scheme

Recommended Posts

I'm curious about the definitions update scheme of SAS.

In recent times, since the latest 2 attempts to update the SAS definitions failed, I decided to uninstall and reinstall SAS on 06-16-2014 morning.  The SAS Setup file that I used at the time was one that I've had since 01-26-2014.  Since then, I have of course updated the definitions various times with plenty of additional definitions added in that time span.

 

NOW ... why, how is it that after reinstalling that 01-26-2014 version of SAS on this recent 06-16-2014 morning, the only definitions that were added were the ones in the image in the attachment in this post?

 

I know wayyy many more definitions for way many more different types of malware have been added in the previous definitions updates.  As you can see in the attachment, the definitions update on 06-16-2014 had only 22 items and only 5 different malware names.  Why so few now when I used the same Setup file as before?  Something just doesn't add up.

post-37243-0-87620900-1403554684_thumb.jpg

Share this post


Link to post
Share on other sites

Either you misunderstood my inquiry or I still don't understand how your SAS definitions update scheme works.  Let me try again.

 

Okay, in that link you posted, there is a TON of definitions / items since the 01-26-2014 version of SAS Setup file that I mentioned installing.  I would think that if TODAY I were to again uninstall SAS and reinstall that 01-26-2014 version and then proceeded to have SAS update itself ... shouldn't SAS update itself to the absolute latest status, the latest set of definitions that are available at that instant ... with ONE update attempt?  Regardless of that that 01-26-2014 SAS Setup file is almost 6 months old, I wouldn't think that I would have to perform several definitions update attempts in order to download and install all the latest definitions.

 

So, again ... if now I can see in that link that there are obviously many definitions items since that 01-26-2014 date of my SAS Setup file, why weren't they ALL downloaded and installed on that 06-16-2014 date that SAS updated itself with only that small 11308 batch of definitions items?  What good would it do me to think that my SAS is now fully up to date ... when it sure appears that it is not?  What am I missing?

Share this post


Link to post
Share on other sites

Ohhh, Okay.  That's what I wanted to hear ... at least I think.  :mrgreen:

So then it sounds like in a case like mine where I used a very old SAS Setup file to install SAS ... when I have SAS update itself, the really old definitions items won't necessarily be listed there in the latest changelog, but they WILL be included in the update.

 

Thanks! 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×
×
  • Create New...