Re: Anti-Virus

["Gaddis, Jeremy L." <jeremy () linuxwiz net>]

Jimi Thompson wrote:
> There is Clam-Win, which is a windows port of Clam AV.  I've always had 
> good luck with Panda.  McAfee, no matter what I do, seems to want to 
> remove NMAP, but we run an enterprise version of McAfee.  Given the new 
> release about Symantec and their root-kit, I'd not recommend purchasing 
> anything Norton for a good long time.

Regarding McAfee, that's a feature.  :-)

I manage a Windows environment where we have McAfee v8.something 
deployed to hundreds of desktops.  The "central control" software from 
McAfee, ePolicy Orchestrator, is absolutely wonderful.  Since a large 
number of the aforementioned desktops are used almost exclusively by 
"untrusted users" (a.k.a. students), we try to lock 'em down pretty 
good.  Turning on policies in ePO to block nmap and the like is nice, to 
me.  On the other hand, we have other policies set on my department's 
machines, so we can freely run such utils without any issues whatsoever.

Do you have administrative privileges over McAfee?  If so, you can turn 
that feature off.

-j

--
Jeremy L. Gaddis, GCWN, Linux+, Network+
LinuxWiz Consulting
http://www.linuxwiz.net/



---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree 
customizations including Emergency Management, Business Continuity Planning, 
Computer Emergency Response Teams, and Digital Investigations. 

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------