Security Basics mailing list archives
[Suspected Spam]RE: RE: Corporate Antivirus Systems
From: "Valentin Fernandez Bolland" <vfernandez () juvaca com mx>
Date: Wed, 15 Jul 2009 15:06:20 -0500
Hi Jason: I understand your point and may say agree with it, as my say is more a "reasonable conclusion/subjective approach" which I get from my several years of experience on IT business, where I've found several cases like mentioned. Anyway, my position remains for the comment of an irregular, partial, not objective comparison when a benchmark includes not the natural competitors to evaluate, but not adequate -equal focused- applications versions to remark benefits for some, like in the initial discussion case (Av-Comparatives), on which can be READ, as mentioned, both DOMESTIC Home users versions, (without several features/managing capabilities, etc., etc.) with other Corporate applications focused. The document talks for itself (please review it). Please do not be reactive, as this forum, as I understand, is more focused on reality, probable, experienced, technical concerns, than some others, more commercial oriented, as the question we're talking is. My point goes for the firsts, talking of second ones. The second report included on first mail, from Virus Bulletin I may say, is much more realistic and can be used as a good benchmark. Obviously all this under my very particular point of view. Hope to have cleared enough the point. All the best, Valentín Fernández Bolland Antes de imprimir este mensaje, piensa dos veces si es necesario que gastes una hoja de papel. Before printing this message, please be sure it is necessary. -----Mensaje original----- De: Jason Hurst [mailto:Jason.Hurst () PandaRG com] Enviado el: miércoles, 15 de julio de 2009 01:07 p.m. Para: Valentin Fernandez Bolland; Andrew Kuriger; kurt.buff () gmail com; ramiro.caire () gmail com CC: security-basics () securityfocus com Asunto: RE: [Suspected Spam]RE: Corporate Antivirus Systems Hi Valentín, If you have some proof as to the lack of integrity of any of these independent review sites, then I would encourage you to share it with the rest of us. As to whether an individual should accept the legitimacy of any specific review site, all researchers must decide for themselves which references they will accept or reject, and then use sound good judgment before selecting the products that best represent the needs of their respective organization. However, that careful research and reference material is essential to establishing a foundation of good decision making. Jason Hurst Sr. Network Security Administrator Panda Restaurant Group jason.hurst () pandarg com Please consider the environment before printing this email -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Valentin Fernandez Bolland Sent: Tuesday, July 14, 2009 11:12 AM To: Jason Hurst; 'Andrew Kuriger'; kurt.buff () gmail com; ramiro.caire () gmail com Cc: security-basics () securityfocus com Subject: [Suspected Spam]RE: Corporate Antivirus Systems Come on Jason, each manufacturer has his own "independent benchmark" as we all know (on the one you mention, Av-Comparatives, appear several "mistakes" a mention to MS tools already disappeared or Symantec/Norton domestic/home versions, not the Corporate one's... so which comparison is this? Apples vs flowers?) the ! Ask each for one and you'll have it accordingly to his own interest! What I think it must provide is, I mean in terms of Corporate AntiMalware: 1. Easy to manage 2. Easy to deploy 3. Effectiveness against new threads 4. Time to solve new REAL threads 5. Support 6. Support when shit appears 7. Real Support, no matter -at least- what it takes, you need a service security level, isn't it? And at last, but not least: which services will you be receiving from your local supplier/VAR/reseller? With new threads having an updated/managed AV is not enough as Confiker probes; I mean It was necessarily to have also an specific MS Hot Fix installed, and also a drive config addition was required (autorun.inf folder on each accessing drives) in order to be safe... so solution scope were more complex, reason why those services or value added services MUST be placed on deciding which AV/AntiMalware choice... In some cases, with real customers, we use, in order to eradicate Confiker a mix of Kaspersky, NOD32 and Symantec EndPoint Protection (Ver 11 SR4) as base platform... but also vulnerability remediation tools (Retina, Nessus) and local manual procedures... Cheers, Valentín Fernández Bolland -----Mensaje original----- De: listbounce () securityfocus com [mailto:listbounce () securityfocus com] En nombre de Jason Hurst Enviado el: martes, 14 de julio de 2009 12:08 p.m. Para: Andrew Kuriger; kurt.buff () gmail com; ramiro.caire () gmail com CC: security-basics () securityfocus com Asunto: RE: Corporate Antivirus Systems Hi everyone, I would suggest doing some research into selecting an appropriate anti-virus first. It doesn't matter how good of a management console you have, if the anti-virus can't catch viruses. :-) Av-Comparatives has recently released its annual comparison in May, located here: http://www.av-comparatives.org/images/stories/test/ondret/avc_report22.pdf Virus-Bulletin also has its own comparatives, which get awarded its VB100 award, located here: http://www.virusbtn.com/vb100/archive/results?display=summary (Free registration is required to view) Based on our research, we selected Eset NOD32 as our Anti-virus, and use their remote administrator server and console. However, their remote administrator server still has some bugs and requires some polish. Jason Hurst Sr. Network Security Administrator Panda Restaurant Group jason.hurst () pandarg com Please consider the environment before printing this email -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Andrew Kuriger Sent: Tuesday, July 14, 2009 7:48 AM To: kurt.buff () gmail com; ramiro.caire () gmail com Cc: security-basics () securityfocus com Subject: Re: Corporate AntiVirus Systems Hello Ramiro, We have been using Trend Micro Office scan for our deployments/monitoring. It is all centralized and can be incorporated into AD deployments fairly easily. It also has a central console that allows you to view the hostnames/IPs of the devices that have a malware infection, real-time updates, and SMS/E-mail alerts depending on how you set the console up. We have about 3500 hosts and this is an extremely manageable system for us. My 2c. Have a great day! ~A On 7/14/2009, "Kurt Buff" <kurt.buff () gmail com> wrote:
On Mon, Jul 13, 2009 at 12:14, Ramiro Caire<ramiro.caire () gmail com> wrote:Hi, can you recommend me some corporate AV system? I mean systems that consist in a server with a management console and agents in the clients, which provide easy deployment and maintenance. I remember one product of McAfee (I can't remember the name right now), similar to "ePolicy Orchestrator Console". That software allowed to install agents in PC clients through the AD-based domain. I'm looking for products like that. TIA cheers RamiroHopefully you're looking for something better than ePO. Heh. We use, and like a lot, the Sunbelt Software solution - VIPRE Enterprise - at $WORK. Moved away from McAfee. Trend and several others also have similar solutions, including, IIRC, Kaspersky and Norman and even (ptui) Symantec. Perhaps AVG does also, but I'm not at all current on their offerings. Kurt ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f72
7d1
------------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727 d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727 d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Re: Corporate AntiVirus Systems, (continued)
- Re: Corporate AntiVirus Systems Kurt Buff (Jul 14)
- Re: Corporate AntiVirus Systems Ryan Greenier (Jul 14)
- Re: Corporate AntiVirus Systems Andrew Kuriger (Jul 14)
- RE: Corporate Antivirus Systems Jason Hurst (Jul 14)
- RE: Corporate Antivirus Systems Andrew Kuriger (Jul 14)
- Re: Corporate Antivirus Systems Jeffrey Walton (Jul 14)
- RE: Corporate Antivirus Systems Ramki B Ramakrishnan (Jul 16)
- Re: Corporate Antivirus Systems Sandeep Cheema (Jul 14)
- [Suspected Spam]RE: Corporate Antivirus Systems Valentin Fernandez Bolland (Jul 14)
- Message not available
- RE: [Suspected Spam]RE: Corporate Antivirus Systems Jason Hurst (Jul 15)
- [Suspected Spam]RE: RE: Corporate Antivirus Systems Valentin Fernandez Bolland (Jul 15)
- Re: Corporate AntiVirus Systems Kurt Buff (Jul 14)
- Re: Corporate Antivirus Systems Chris (Jul 15)
- RE: Corporate Antivirus Systems Mark A. Prescott (Jul 16)
- Corporate AntiVirus Systems M Hasan (Jul 15)
- RE: Corporate AntiVirus Systems Mark A. Prescott (Jul 15)