[Suspected Spam]RE: RE: Corporate Antivirus Systems

["Valentin Fernandez Bolland" <vfernandez () juvaca com mx>]

Hi Jason:

I understand your point and may say agree with it, as my say is more a "reasonable conclusion/subjective approach" 
which I get from my several years of experience on IT business, where I've found several cases like mentioned.
Anyway, my position remains for the comment of an irregular, partial, not objective comparison when a benchmark 
includes not the natural competitors to evaluate, but not adequate -equal focused- applications versions to remark 
benefits for some, like in the initial discussion case (Av-Comparatives), on which can be READ, as mentioned, both 
DOMESTIC Home users versions, (without several features/managing capabilities, etc., etc.) with other Corporate 
applications focused. The document talks for itself (please review it).
Please do not be reactive, as this forum, as I understand, is more focused on reality, probable, experienced, technical 
concerns, than some others, more commercial oriented, as the question we're talking is.
My point goes for the firsts, talking of second ones. The second report included on first mail, from Virus Bulletin I 
may say, is much more realistic and can be used as a good benchmark.
Obviously all this under my very particular point of view.
Hope to have cleared enough the point.

All the best,

Valentín Fernández Bolland
 Antes de imprimir este mensaje, piensa dos veces si es necesario que gastes una hoja de papel.
      Before printing this message, please be sure it is necessary.

-----Mensaje original-----
De: Jason Hurst [mailto:Jason.Hurst () PandaRG com] 
Enviado el: miércoles, 15 de julio de 2009 01:07 p.m.
Para: Valentin Fernandez Bolland; Andrew Kuriger; kurt.buff () gmail com; ramiro.caire () gmail com
CC: security-basics () securityfocus com
Asunto: RE: [Suspected Spam]RE: Corporate Antivirus Systems

Hi Valentín,

If you have some proof as to the lack of integrity of any of these independent review sites, then I would encourage you 
to share it with the rest of us.

As to whether an individual should accept the legitimacy of any specific review site, all researchers must decide for 
themselves which references they will accept or reject, and then use sound good judgment before selecting the products 
that best represent the needs of their respective organization.

However, that careful research and reference material is essential to establishing a foundation of good decision making.

Jason Hurst
Sr. Network Security Administrator
Panda Restaurant Group
jason.hurst () pandarg com
Please consider the environment before printing this email

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Valentin Fernandez Bolland
Sent: Tuesday, July 14, 2009 11:12 AM
To: Jason Hurst; 'Andrew Kuriger'; kurt.buff () gmail com; ramiro.caire () gmail com
Cc: security-basics () securityfocus com
Subject: [Suspected Spam]RE: Corporate Antivirus Systems

Come on Jason, each manufacturer has his own "independent benchmark" as we
all know (on the one you mention, Av-Comparatives, appear several "mistakes"
a mention to MS tools already disappeared or Symantec/Norton domestic/home
versions, not the Corporate one's... so which comparison is this? Apples vs
flowers?) the ! Ask each for one and you'll have it accordingly to his own
interest!

What I think it must provide is, I mean in terms of Corporate AntiMalware:

1. Easy to manage
2. Easy to deploy
3. Effectiveness against new threads
4. Time to solve new REAL threads
5. Support
6. Support when shit appears
7. Real Support, no matter -at least- what it takes, you need a service
security level, isn't it?

And at last, but not least: which services will you be receiving from your
local supplier/VAR/reseller?

With new threads having an updated/managed AV is not enough as Confiker
probes; I mean It was necessarily to have also an specific MS Hot Fix
installed, and also a drive config addition was required (autorun.inf folder
on each accessing drives) in order to be safe... so solution scope were more
complex, reason why those services or value added services MUST be placed on
deciding which AV/AntiMalware choice...

In some cases, with real customers, we use, in order to eradicate Confiker a
mix of Kaspersky, NOD32 and Symantec EndPoint Protection (Ver 11 SR4) as
base platform... but also vulnerability remediation tools (Retina, Nessus)
and local manual procedures...

Cheers,

Valentín Fernández Bolland

-----Mensaje original-----
De: listbounce () securityfocus com [mailto:listbounce () securityfocus com] En
nombre de Jason Hurst
Enviado el: martes, 14 de julio de 2009 12:08 p.m.
Para: Andrew Kuriger; kurt.buff () gmail com; ramiro.caire () gmail com
CC: security-basics () securityfocus com
Asunto: RE: Corporate Antivirus Systems

Hi everyone,

I would suggest doing some research into selecting an appropriate anti-virus
first. It doesn't matter how good of a management console you have, if the
anti-virus can't catch viruses. :-)

Av-Comparatives has recently released its annual comparison in May, located
here:
http://www.av-comparatives.org/images/stories/test/ondret/avc_report22.pdf

Virus-Bulletin also has its own comparatives, which get awarded its VB100
award, located here:
http://www.virusbtn.com/vb100/archive/results?display=summary (Free
registration is required to view)

Based on our research, we selected Eset NOD32 as our Anti-virus, and use
their remote administrator server and console.

However, their remote administrator server still has some bugs and requires
some polish.
 
Jason Hurst
Sr. Network Security Administrator
Panda Restaurant Group
jason.hurst () pandarg com
Please consider the environment before printing this email


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Andrew Kuriger
Sent: Tuesday, July 14, 2009 7:48 AM
To: kurt.buff () gmail com; ramiro.caire () gmail com
Cc: security-basics () securityfocus com
Subject: Re: Corporate AntiVirus Systems


Hello Ramiro,

We have been using Trend Micro Office scan for our
deployments/monitoring. It is all centralized and can be incorporated
into AD deployments fairly easily. It also has a central console that
allows you to view the hostnames/IPs of the devices that have a malware
infection, real-time updates, and SMS/E-mail alerts depending on how you
set the console up. We have about 3500 hosts and this is an extremely
manageable system for us.

My 2c.

Have a great day!
~A

On 7/14/2009, "Kurt Buff" <kurt.buff () gmail com> wrote:

> On Mon, Jul 13, 2009 at 12:14, Ramiro Caire<ramiro.caire () gmail com> wrote:
> > Hi,
> >
> > can you recommend me some corporate AV system? I mean systems that
> > consist in a server with a management console
> > and agents in the clients, which provide easy deployment and maintenance.
> > I remember one product of McAfee (I can't remember the name right now),
> > similar to "ePolicy Orchestrator Console". That software
> > allowed to install agents in PC clients through the AD-based domain.
> >
> > I'm looking for products like that.
> >
> > TIA
> > cheers
> > Ramiro
>
> Hopefully you're looking for something better than ePO. Heh.
>
> We use, and like a lot, the Sunbelt Software solution - VIPRE
> Enterprise - at $WORK. Moved away from McAfee.
>
> Trend and several others also have similar solutions, including, IIRC,
> Kaspersky and Norman and even (ptui) Symantec.
>
> Perhaps AVG does also, but I'm not at all current on their offerings.
>
> Kurt
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate.  We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f72
7d1
> ------------------------------------------------------------------------

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate.  We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727
d1
------------------------------------------------------------------------


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate.  We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727
d1
------------------------------------------------------------------------




------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------




------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------