Re: adding another defence layer against viruses/worms

[aditya mukadam <aditya.mukadam () gmail com>]

Juan,

I would highly recommend you few solutions as below :

1) End point Security Check : You can enforce strict PC/Laptop policy
(which would make sure that every PC/Laptop has AV/Personal Firewall).
Devices like UAC/NAC, can perform end point security check on
PC/Laptps while it connects to the network. This will atleast make
sure every user has an AV.
2) (Standalone) Content/Protocol Filtering: With this solution, you
can make sure that the user traffic passes through an application,
which filters the content of the traffic and also does protocol
filtering (Example: Websense)
3) Proxy Content Filtering : Since you mentioned that you don't have
control this solution would not fit in however its worth considering
for future usage. Example: BlueCoat Proxy
4) IPS : I would recommend Tipping Point IPS, Juniper IDP.

Hope this helps.

Thanks,
Aditya Govind Mukadam
CISSP,CEH,JNSA-Advanced Security, JNCIA-UAC, JNCIA_SSL, CQS-PIX,CQS-VPN
 http://in.linkedin.com/in/adityamukadam



On Tue, Nov 24, 2009 at 7:33 PM, Juan B <juanbabi () yahoo com> wrote:
> Hi all,
>
> I'm doing some security consulting for a client. this client have around 30 remote branches connected to his core. 
> the problem is that sometimes the AV fails to detect new viruses/worms coming from those branches so those 
> viruses/worms mess up his LAN.another problem is that the the client doesn't have much of control over the remote PCs 
> in the branches. so I thought about adding another layer of defence in which we will add an IPS (which Ips detects 
> also viruses/worms??) which will filter and scan all traffic coming from the branches.
>
> I just wonder if you guys agree with my suggestion.
>
> any comments will be welcomed.
>
> BTW,
>
> any recomendations for the IPS?
>
> thanks a lot
> juan
>
>
>
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
> how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
> purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
> set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
> certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
> ------------------------------------------------------------------------

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------