Educause Security Discussion mailing list archives

Re: A Real-Time malware antivirus console

From: "Stanclift, Michael" <michael.stanclift () ROCKHURST EDU>
Date: Thu, 18 Jun 2009 09:02:35 -0500

I would check Kaspersky too. No experience with them in the enterprise, outside of some small business consulting I've 
done, but the performance and detection rates are pretty strong in my opinion.


Michael Stanclift
Network Analyst
Rockhurst University

http://help.rockhurst.edu
(816) 501-4231

Think before you print!

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of King, 
Ronald A.
Sent: Thursday, June 18, 2009 7:59 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] A Real-Time malware antivirus console

We performed a similar test.  I would recommend including Sophos in your
testing.  They like to wheel and deal, have a good product and have been
very responsive with regard to support.  The testing we ran had Sophos,
McAfee and Symantec very close in performance and detection.  The management
piece is what sold us.  In your testing, I suggest including an enterprise
management comparison.

Ronald King
Security Engineer
Norfolk State University
Marie V. McDemmond Center for Applied Research 
Suite 401 
700 Park Ave.
Norfolk, Virginia  23504
Phone:  757-823-3918
Fax: 757-823-2128
Email: raking () nsu edu
http://security.nsu.edu


-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of reflect ocean
Sent: Wednesday, June 17, 2009 10:46 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] A Real-Time malware antivirus console

Thank you everyone for the great inputs.I've recently been assigned
information security duties and everything comes as a challenge.
I will probably be testing NOD32,McAfee and Kaspersky but rather than
having to trust in third-party AV reviews , i would like to conduct
one myself.I've googled it and I found a basic model as a
reference.Any recommendation to do this? Some of the parameters to be
measured: load on cpu and mem, detection effectiveness,administration
console,antivirus & malware functions.Specially on this last
parameter,i wonder how accurate this malware detection is when having
to deal with thousands a obscure phishing sites of a bank in the other
side of the world?
I'd appreciate any comment on the above mentioned AV.

Thanks,

Reflect



On Wed, Jun 17, 2009 at 6:17 PM, Eric Case<ecase () email arizona edu> wrote:

At 06:13 PM 6/17/2009 -0500, Curt Wilson wrote:


Relying on reactive security schemes?! Never! All of us in .edu-land are
ALWAYS able to get the staff and other resources to implement proactive
security schemes, right? :>


Nuking from orbit is more proactive than scrap and reuse.  ;)
-Eric



Eric Case, CISSP  <ecase () Arizona edu>
Information Security Officer
College of Engineering   <http://www.Engr.Arizona.edu>
1127 E James E. Rogers Way Room 200
Tucson, AZ 85721-0020
Mobile Phone 520-275-6436

Current thread:

Re: A Real-Time malware antivirus console, (continued)
- Re: A Real-Time malware antivirus console Stanclift, Michael (Jun 17)
- Re: A Real-Time malware antivirus console Robert Clifford (Jun 17)
- Re: A Real-Time malware antivirus console Basgen, Brian (Jun 17)
- Re: A Real-Time malware antivirus console Curt Wilson (Jun 17)
- Re: A Real-Time malware antivirus console Valdis Kletnieks (Jun 17)
- Re: A Real-Time malware antivirus console Curt Wilson (Jun 17)
- Re: A Real-Time malware antivirus console Eric Case (Jun 17)
- Re: A Real-Time malware antivirus console reflect ocean (Jun 17)
- Re: A Real-Time malware antivirus console Gary Flynn (Jun 18)
- Re: A Real-Time malware antivirus console King, Ronald A. (Jun 18)
- Re: A Real-Time malware antivirus console Stanclift, Michael (Jun 18)