Re: RE: Anit-Virus Software

["Ian" <e2chameleon () btopenworld com>]

I haven't used any of these but have stumbled upon them while looking for
other things.

Ositis have an appliance called eShield with Antivirus (used to be called
AVStripper). You have a choice of using McAfee, Sophos, Trend or Panda for
your AV solution and it is set to automatically update every hour. I'm not
sure if you can use a multiple AV products together (like in MIMEsweeper
from Clearswift).  It works with HTTP, FTP, SMTP, NNTP, IMAP, POP3 and
SOCKS. They also have appliances that that includes AntiVirus, AntiSpam and
web filtering. It works with a number of protocols (for both web and email).
You can get more info at
http://www.ositis.com/english/products/eShield/pd_eshield_en.asp.

Panda do an appliance using their own scanning engine which works with HTTP,
FTP, SMTP, NNTP, IMAP, POP3 and SOCKS. Updates are daily. More info
at(http://www.pandasoftware.com/products/appliance/).

FortiNet have a couple of content security appliances that include
antivirus, Firewall / IDS / IPS / VPN and web filtering. It looks like it's
their own AV solution. More info at
(http://www.fortinet.com/enterprise.html).

ServGate (http://www.servgate.com/content.asp?page_id=12) also do a multiple
solution appliance but use McAfee as the scanning product.

McAfee Webshield includes limited content checking with along with virus
scanning for SMTP, HTTP, FTP and POP3. More info at
(http://www.networkassociates.com/us/products/mcafee/antivirus/internet_gate
way/ws_appliances.htm).

Aladdin eSafe (anti-virus and content security for email)  is available on a
number of hardware appliances and as a "virtual appliance". You take an old
server a install and hardened Linux OS and the eSafe product onto it
(http://www.esafe.com/esafe/eSafe4_faster.asp?cf=tl).

SurfinGate for Email from Finjan
(http://www.finjan.com/products/surfingate_mail.cfm) includes an appliance
option and uses both its own heurustics engine and the McAfee scanning
engine.

I'm sure that there are a few others out there too.


Ian.

e2chameleon Information Security Resource.
http://www.e2chameleon.btinternet.co.uk





-------Original Message-------

From: Storch, Beau
Date: 07 August 2003 22:57:39
To: 'Greg Hall'; security-basics () securityfocus com
Subject: RE: Anit-Virus Software

On another similar note, does anyone have any recommendations for a AV
appliance to sit next to my firewall?

-----Original Message-----
From: Greg Hall [mailto:ghall () thecomputerguys biz]
Sent: Thursday, August 07, 2003 7:56 AM
To: security-basics () securityfocus com
Subject: RE: Anit-Virus Software


I would defiantly concur, I run a company that sets up business networks and
supports them. I have tried every package I could get my hands on. Trend
Micro over all leads the pack. Theirs is a three tiered package Sever
protect, Office Scan, and Scan mail all of which run scheduled and real time
scans, and couldn't be easier to administer. The only complaint I have so
far is the add-on package they offer for filtering spam.

-----Original Message-----
From: Brian Whitehead [mailto:brian () whiteheadconsulting com]
Posted At: Wednesday, August 06, 2003 3:14 PM
Posted To: Security
Conversation: Anit-Virus Software
Subject: RE: Anit-Virus Software

I have to second this. I have used McAfee, CA Etrust, Norton, and Trend
Micro. I have to say that I prefer Trend Micro over all of the others.
It is much easier to manage and causes the least number of problems on the
client machines. Stay away from CA's Etrust product. It is by far the
worst anti-virus product I've ever used. Users that had this always
complained of slowness, random crashes and lockups, etc.. Check out Trend
Micro, they just changed their pricing structure last month and it costs per
license rather than buying a large bundle. They also have
client/server/messaging suites that provide everything necessary for a
company.

Brian W.



JAVIER OTERO said:
> Try Trend Micro, has the features you ask.
>
> Ing. Fco. Javier Otero De Alba
> Grupo Smartekh
> Antivirus Expertos
> Bussiness Continuity
> Inftegrity
> 5243-4782 al 84 Ext.300
> México, D.F.
>
>
>
> -----Mensaje original-----
> De: John Roberts [mailto:roberts () tridecap com]
> Enviado el: Martes, 05 de Agosto de 2003 02:29 p.m.
> Para: security-basics () securityfocus com
> Asunto: Anit-Virus Software
>
>
> I need to set up some anti-virus software for our company. We have
> about 15 people running windows, a windows 2003 file server and
> possibly and exchange server, and over the next two years we will grow
> to around 100 employees. Basically, I want virus software that I can
> manage from one console, and will do a good job of finding viruses.
> I'd prefer to have the file server and exchange server be able to be
> managed by the same console, but if not I can live with it. I've been
> looking at Norton and Panda, but am looking for some real world
> opinions.
>
> John roberts
>
>
>
> ----------------------------------------------------------------------
> -----
----------------------------------------------------------------------------
> ----------------------------------------------------------------------
> -----
----------------------------------------------------------------------------
>


-- 
Brian Whitehead - A+, LCP, RHCE
Systems Administrator - Linux Consultant
Direct: 816.512.9417
Mobile: 816.510.3996
mailto:brian () whiteheadconsulting com

Whitehead Consulting Group, L.L.C.
1505 Bradford Drive
Greenwood, MO 64034
Phone: 816.537.7170
http://www.whiteheadconsulting.com



---------------------------------------------------------------------------
----------------------------------------------------------------------------


---------------------------------------------------------------------------
----------------------------------------------------------------------------



Important Warning: This message is intended for the use of the person or
entity to which it is addressed and may contain information that is
privileged and confidential, the disclosure of which is governed by
applicable law. If the reader of this message is not the intended
recipient, or the employee or agent responsible to deliver it is the
intended recipient, you are hereby notified that any dissemination,
distribution or copy of this information is STRICTLY PROHIBITED. If you
have received this message by error, please notify us immediately by calling
(310) 423-6428 and destroy the related message. Thank you for your
cooperation.



---------------------------------------------------------------------------
----------------------------------------------------------------------------

.


____________________________________________________
  IncrediMail - Email has finally evolved - Click Here


---------------------------------------------------------------------------
----------------------------------------------------------------------------