[Suspected Spam]RE: Corporate Antivirus Systems

["Valentin Fernandez Bolland" <vfernandez () juvaca com mx>]

Come on Jason, each manufacturer has his own "independent benchmark" as we
all know (on the one you mention, Av-Comparatives, appear several "mistakes"
a mention to MS tools already disappeared or Symantec/Norton domestic/home
versions, not the Corporate one's... so which comparison is this? Apples vs
flowers?) the ! Ask each for one and you'll have it accordingly to his own
interest!

What I think it must provide is, I mean in terms of Corporate AntiMalware:

1. Easy to manage
2. Easy to deploy
3. Effectiveness against new threads
4. Time to solve new REAL threads
5. Support
6. Support when shit appears
7. Real Support, no matter -at least- what it takes, you need a service
security level, isn't it?

And at last, but not least: which services will you be receiving from your
local supplier/VAR/reseller?

With new threads having an updated/managed AV is not enough as Confiker
probes; I mean It was necessarily to have also an specific MS Hot Fix
installed, and also a drive config addition was required (autorun.inf folder
on each accessing drives) in order to be safe... so solution scope were more
complex, reason why those services or value added services MUST be placed on
deciding which AV/AntiMalware choice...

In some cases, with real customers, we use, in order to eradicate Confiker a
mix of Kaspersky, NOD32 and Symantec EndPoint Protection (Ver 11 SR4) as
base platform... but also vulnerability remediation tools (Retina, Nessus)
and local manual procedures...

Cheers,

Valentín Fernández Bolland

-----Mensaje original-----
De: listbounce () securityfocus com [mailto:listbounce () securityfocus com] En
nombre de Jason Hurst
Enviado el: martes, 14 de julio de 2009 12:08 p.m.
Para: Andrew Kuriger; kurt.buff () gmail com; ramiro.caire () gmail com
CC: security-basics () securityfocus com
Asunto: RE: Corporate Antivirus Systems

Hi everyone,

I would suggest doing some research into selecting an appropriate anti-virus
first. It doesn't matter how good of a management console you have, if the
anti-virus can't catch viruses. :-)

Av-Comparatives has recently released its annual comparison in May, located
here:
http://www.av-comparatives.org/images/stories/test/ondret/avc_report22.pdf

Virus-Bulletin also has its own comparatives, which get awarded its VB100
award, located here:
http://www.virusbtn.com/vb100/archive/results?display=summary (Free
registration is required to view)

Based on our research, we selected Eset NOD32 as our Anti-virus, and use
their remote administrator server and console.

However, their remote administrator server still has some bugs and requires
some polish.
 
Jason Hurst
Sr. Network Security Administrator
Panda Restaurant Group
jason.hurst () pandarg com
Please consider the environment before printing this email


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Andrew Kuriger
Sent: Tuesday, July 14, 2009 7:48 AM
To: kurt.buff () gmail com; ramiro.caire () gmail com
Cc: security-basics () securityfocus com
Subject: Re: Corporate AntiVirus Systems


Hello Ramiro,

We have been using Trend Micro Office scan for our
deployments/monitoring. It is all centralized and can be incorporated
into AD deployments fairly easily. It also has a central console that
allows you to view the hostnames/IPs of the devices that have a malware
infection, real-time updates, and SMS/E-mail alerts depending on how you
set the console up. We have about 3500 hosts and this is an extremely
manageable system for us.

My 2c.

Have a great day!
~A

On 7/14/2009, "Kurt Buff" <kurt.buff () gmail com> wrote:

> On Mon, Jul 13, 2009 at 12:14, Ramiro Caire<ramiro.caire () gmail com> wrote:
> > Hi,
> >
> > can you recommend me some corporate AV system? I mean systems that
> > consist in a server with a management console
> > and agents in the clients, which provide easy deployment and maintenance.
> > I remember one product of McAfee (I can't remember the name right now),
> > similar to "ePolicy Orchestrator Console". That software
> > allowed to install agents in PC clients through the AD-based domain.
> >
> > I'm looking for products like that.
> >
> > TIA
> > cheers
> > Ramiro
>
> Hopefully you're looking for something better than ePO. Heh.
>
> We use, and like a lot, the Sunbelt Software solution - VIPRE
> Enterprise - at $WORK. Moved away from McAfee.
>
> Trend and several others also have similar solutions, including, IIRC,
> Kaspersky and Norman and even (ptui) Symantec.
>
> Perhaps AVG does also, but I'm not at all current on their offerings.
>
> Kurt
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate.  We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f72
7d1
> ------------------------------------------------------------------------

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate.  We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727
d1
------------------------------------------------------------------------


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate.  We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727
d1
------------------------------------------------------------------------




------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------