Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Checking for AV software on students' machines

From: Shawn Kohrman <skohrman () HONEYNET APU EDU>
Date: Thu, 10 Jun 2004 06:28:25 -0700
We are in the process of deploying a Perfigo solution on our Reznet and
dorm networks which handles this.  Perfigo requires the installation of
their CleanMachines client which looks for registry keys to verify that
all systems patches are current and that the AV software provided to our
students is installed and up-to-date.  Perfigo also runs nessus scans on
the system to check for known vulnerabilities.


Shawn Kohrman, CISSP
Lead Network Administrator
Azusa Pacific University
901 E. Alosta Ave.
Azusa, CA  91702
http://www.apu.edu/

Nathan Hall wrote:

Now that we have found a way to check students' machines for missing
patches before they are allowed on the network, we are looking to expand
to checking for the presence of updated anti-virus software. This
requires access to the students' machines, so we are looking at using a
web page with a .NET component to perform the check. A few questions:

1) Is anyone else doing something like this currently?
2) How have you implemented this (web page w/ ActiveX/.Net, downloadable
program...)?
3) What do you look for to determine if AV software is present (registry
entries, services, running processes...)?
4) How successful has it been?
5) Pitfalls?

Any other input would be appreciated too. Thanks in advance.

Nathan Hall
System Administrator
SUNY Oneonta
Oneonta, NY 13820
(607) 436-2708

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.


**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.
Previous By Date Next
Previous By Thread Next

Current thread: