Re: Anti-Virus Updates - How?

[Miguel Tubía <migueltubia () gmail com>]

Hi!
in my opinion, AV are not the only defense against malware. I agree
Eric with his 5 points. There are more security practices you should
have into account, the AV is not the answer to all.
If you have secure practices and policies (the users are not
administrators, perimeter security, applications/services run with the
lowest permissions possible, etc), you can plan a AV update better.
For example, what do you need to update? Maybe the workstations don't
need an daily update, but the laptops which are out the office need
it. You should perform a "risk analysis" and then know the elements
that have more risk. Then you can update them first, and create a
"Window update" to update the rest.
In some companies, i have seen that some users were "test users" (like
guinea pigs, not sure if in english exist this expression :P ), and
they had the updates first. If all were ok in a few hours, the updates
were deployed to the first level of priority, like laptop users. And
if all were ok, then the updates were deployed to all the systems.
Well, this is what i have seen, hope it will help... and sorry my
english, bad day today to think correctly...
Regards
Miguel.


2009/7/13 Adam Mooz <adam.mooz () gmail com>:
> On Mon, Jul 13, 2009 at 1:48 PM, Francois Yang<francois.y () gmail com> wrote:
> > In the past I've setup the a group of power users to get the updates
> > first then everyone else a day after.
> > The hope was for the power users to let you know if something went
> > wrong with the update.
> > This setup might or might not work for you, but you could consider
> > doing something similar.
> >
> > Frank
> >
> > On Fri, Jul 10, 2009 at 9:49 AM, Ian Bradshaw<ian () ianbradshaw net> wrote:
> > > Hi,
> > >
> > > Just wondering if anyone has a plan for deployment of AV updates?
> > >
> > > There have been a couple of AV updates that have trashed systems recently
> > > (one from CA and one from McAfee).
> > >
> > > Neither of these have affected me (fortunately) but we do have all our
> > > systems set to update to the latest definitions - so guess it will happen at
> > > some point.
> > >
> > > The problem is, in a small IT department (4 staff with ~5,000 pcs/laptops
> > > over 10 geographic locations - we don't have much spare time!), what is the
> > > best way to deploy AV updates?
> > >
> > > Given the number of updates sent out, it's not feasible to test them all
> > > when they are released.
> > >
> > > So, leave auto-update on or hold back and test say once a week and update
> > > then, or what?
> > >
> > > Any thoughts? / how do people do it at the moment?
> > >
> > > Cheers
> > >
> > > I.
> > >
> > >
> > >
> > >
> > >
> > >
> > > ------------------------------------------------------------------------
> > > Securing Apache Web Server with thawte Digital Certificate
> > > In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
> > > how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
> > > purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
> > > set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
> > > certificates.
> > >
> > > http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
> > > ------------------------------------------------------------------------
> >
> >
> >
> > --
> > If you spend more on coffee than on IT security, you will be hacked.
> > What's more, you deserve to be hacked. — White House Cybersecurity
> > Advisor, Richard Clarke
> >
> > ------------------------------------------------------------------------
> > Securing Apache Web Server with thawte Digital Certificate
> > In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
> > how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
> > purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
> > set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
> > certificates.
> >
> > http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
> > ------------------------------------------------------------------------
>
> You'll want an app with a centralized server of some kind.  Cisco's
> Ironport has some pretty sleek looking abilities if you have the
> finances for it.  Each major vendor has some software suite to
> centralize management of AV updates; just pick your favourite/current
> vendor and call 'em up.
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
> how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
> purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
> set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
> certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
> ------------------------------------------------------------------------



-- 
Miguel Tubía
www.zero-day.info

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------