Security Basics mailing list archives

Re: Exchange server & Web Security for mid size company.... Need advise.

From: phunked up! <phunkodelic () gmail com>
Date: Wed, 11 Jan 2006 08:03:37 -0500

Thanks for the input.  I decided to keep it at two layers.  I went
with Norton 8200 Appliance as Gartner rated it best in class, and
instead of buying an anitvirus for exchange I bougt a spyware add on
for Trend Micro anitvirus which we currently run.  Its pretty bad when
you clean over 13,000 pieces of spyware off of each of your Citrix
servers.  I figured money was better spent that way.



On 10 Jan 2006 05:01:05 -0000, barcajax () gmail com <barcajax () gmail com> wrote:

It doesn't hurt to have three layers (gateway, client and email server) because each one serves its own function. The 
gateway solution can inspect web traffic such as HTTP, HTTPS, SMTP and FTP (depending on the solution chosen), the 
email server obviously caters to emails received and sent while the client providing PCs from infection that comes 
from surfing the web or from storage media (diskettes, portable storage devices, infection from other machines within 
the same segment).
Just a note, having three layers provide overlap in securing your organisation BUT get solutions from different 
vendors for each because different vendors provide different response times for new vulns/viruses/worms/trojans. For 
example, McAfee may release a new virus definition to address Blaster first but Symantec may react the fastest for 
the WMF vuln. Three different vendor products for your three layers will increase your chances of having a new sig 
for a new threat.

---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
----------------------------------------------------------------------------


---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
----------------------------------------------------------------------------

Current thread:

Exchange server & Web Security for mid size company.... Need advise. phunked up! (Jan 09)
- <Possible follow-ups>
- Re: Exchange server & Web Security for mid size company.... Need advise. barcajax (Jan 10)
  - Re: Exchange server & Web Security for mid size company.... Need advise. phunked up! (Jan 11)
- RE: Exchange server & Web Security for mid size company.... Need advise. Depp, Dennis M. (Jan 10)
- RE: Exchange server & Web Security for mid size company.... Need advise. Ross, George (Jan 10)
- RE: Exchange server & Web Security for mid size company.... Need advise. Collier, Simon (Jan 11)
- RE: Exchange server & Web Security for mid size company.... Need advise. Chinnery, Paul (Jan 11)
- Re: RE: Exchange server & Web Security for mid size company.... Need advise. vbaranov (Jan 17)
- RE: RE: Exchange server & Web Security for mid size company.... Need advise. Richard Lambert (Jan 20)