My first post to this forum, thanks.
Understand the paranoia! Last September-October, our small company (11 users) paid over $5000 in IT time due to Nimda et al. What a pain. Our live update missed by a few hours or we may have been protected by NAVCE 7.5.
In retrospect, our IT consultants made things so much more complicated hat they had to be.
Anyway, after I threw them out and assumed control of matters, here is what I did.
1. Turned off the back-up domain controller; the PDC has raid 5 and tapes, why need a BDC? It also became corrupted.
2. Eradicated anything that had to do with Exchange server and returned to my easy to manage, non-virus spreading client-server e-mail program from Captaris (formerly Infinite Technologies)on both the server (Interchange) and client sides (Express-it 2000).
3. Re-did all clients to managed NAVCE with lunch-time auto-scans.
Now, at most, an e-mail ends up in quanratine during over-night scanning and is erased. Even Klez did ZERO damage (so far).
Here is the question:
Our programs are a server-side DOS-based piece that runs in a CMD window on the client, the aforementioned e-mail, internet using IE6 through proxy server over T1, and some local programs like labels and Crystal.
How much real-time protection do we need to run to be secure without slowing down the service? As it is, we are excluding the DOS piece from real-time.
Thanks for following along,
Brad
Understand the paranoia! Last September-October, our small company (11 users) paid over $5000 in IT time due to Nimda et al. What a pain. Our live update missed by a few hours or we may have been protected by NAVCE 7.5.
In retrospect, our IT consultants made things so much more complicated hat they had to be.
Anyway, after I threw them out and assumed control of matters, here is what I did.
1. Turned off the back-up domain controller; the PDC has raid 5 and tapes, why need a BDC? It also became corrupted.
2. Eradicated anything that had to do with Exchange server and returned to my easy to manage, non-virus spreading client-server e-mail program from Captaris (formerly Infinite Technologies)on both the server (Interchange) and client sides (Express-it 2000).
3. Re-did all clients to managed NAVCE with lunch-time auto-scans.
Now, at most, an e-mail ends up in quanratine during over-night scanning and is erased. Even Klez did ZERO damage (so far).
Here is the question:
Our programs are a server-side DOS-based piece that runs in a CMD window on the client, the aforementioned e-mail, internet using IE6 through proxy server over T1, and some local programs like labels and Crystal.
How much real-time protection do we need to run to be secure without slowing down the service? As it is, we are excluding the DOS piece from real-time.
Thanks for following along,
Brad