[RTC List] Choice of antivirus protection

robert beckerdite robert at beckerdite.com
Mon Aug 4 18:52:08 PDT 2008 

All,
 
   I have recently seen organizations concerned about Instant messaging as a vector for threats. Whichever AntiVirus is chosen for an organization should match the specific requirements for the business. Each provider has different strengths,  Performance, Cost, Email (outlook, POP3, IMAP and HTTP), Instant Messaging, Spyware (if that is a consideration),Rootkits, Keyloggers etc.   I would not underestimate the challenge in choosing a solution in the modern environment as i have seen standup providers i have recommended in the past (Symantec & Mcafee) struggle to integrate these functions and have a significant negative impact on a computers performance and staff productivity. 
  It is important to have a client firewall (windows, ZoneAlarm,etc.) and a solid patching solution.  A "hardware" firewall does nothing to protect a portable computer or a computer that encounters other computers  through off channel methods (peerware, bluetooth, vpn, visitors,wifi etc.).   Port 80 (HTTP) has become the highway for all different kind of modern exploits and a good "hardware" firewall should include application layer inspection to mitigate common exploits but that really may not be the case.  I would love to start a local discussion on this topic. There are computing baselines provided by software vendors but they may not align with our local computing requirements.  It might be worth it being a RTC project to publish a baseline recommendation to the community on an annual or quarterly basis. 
P.S.  I am suspicious that Windows Defender will not be a very strong solution if you are using Firefox as your browser.  I have recently been considering Webroot SpySweeper as a solution for shops that use Firefox.  There was a recent evaluation done by PC Magazine that ranked a couple of other spyware solutions higher.  
P.S.S.  Your backup solution is your number one security tool. Antivirus software rarely works against Zero Day exploits and it is important to have a backup solution that mitigates the virus that makes it past your antivirus. 
 
Rob Beckerdite
Beckerdite Consulting
 



> Date: Sun, 3 Aug 2008 16:00:37 -0700> To: list at redwoodtech.org> From: sb at igc.org> Subject: Re: [RTC List] Choice of antivirus protection> > Hi Pat. Sounds like a marketing blurb. ;^)}}}> > The folks that I know that "upgraded" to AVG 8, uninstalled and went back to AVG 7, even though it is not being supported. AVG 7 is still updating virus definitions, but it gives me occasional reminders to upgrade, which I likely will never do. Once AVG 7 dies, I will be searching for another product. I miss the Grisoft attitude.> > I highly recommend against "do everything" security programs. Historically, they often create problems and slowdowns that can be difficult to track down.> > Here is my own security solution for Win XP:> 1. AVG 7 free > 2. Windows Defender> 3. Hardware (router) firewall, turn off Windows firewall & uninstall any others> 4. Firefox 3 browser> 5. Anything but Internet Exploder, Outhouse, or Entourage for email clients> > Pat Bitton wrote at 03:16 PM 8/3/2008:> > >Well, given that AVG is my client, I kind of have to recommend them :-)> > > >Seriously, though, AVG 8 is the only a-v product to provide up-to-the-minute protection against drive-by downloads and other threats embedded in otherwise-trustworthy web pages. Different approach than Site Advisor et al ...> > > >Pat Bitton> >Partner, Euresto Partners Inc> >Sales & Marketing Strategies for Technology Startups> >+1 707 268 8968/+1 408 464 0829 cell> ><http://www.eurestopartners.com/>www.eurestopartners.com> > > _______________________________________________> List mailing list> List at redwoodtech.org> http://redwoodtech.org/mailman/listinfo/list_redwoodtech.org
_________________________________________________________________
Express yourself with gadgets on Windows Live Spaces
http://discoverspaces.live.com?source=hmtag1&loc=us
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://redwoodtech.org/pipermail/list_redwoodtech.org/attachments/20080805/d3ddc9ab/attachment.html

More information about the List mailing list