Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Security software recommendation 1
- Thread starter seaport
- Start date
happyhacker
Technical User
I am a bit green at this and seeking the same advice. I have already purchased Norton Enterprise 11 and was installing it on the clients but this does not cover Exchange 2007 just the file systems (server 2008) on SBS. This software also has a management side which if installed on the server allows all the clients (updates etc.) to be managed automatically. Norton also do a Small Business package that covers the clients (note that the server file systems is also a client from this point of view as far as I can tell) and the Exchange 2007 server. Of course it all goes to slow the beast down and that's one of my main worries.
Norton have a good site for asking such questions. I know I'm plugging Norton but only because I'm sort of committed with 20 licenses unused! Others will have their own ideas.
Thanks for your time.
Norton have a good site for asking such questions. I know I'm plugging Norton but only because I'm sort of committed with 20 licenses unused! Others will have their own ideas.
Thanks for your time.
NetworkTek
IS-IT--Management
Trend Micro Worry Free Business Advanced has worked well for me on SBS2k8 installations
Network+
Inet+
MCP
MCSA 2003
MCTS
Network+
Inet+
MCP
MCSA 2003
MCTS
-
1
- #6
I'll second NetworkTek's recommendation of Trend Micro. They have a full suite that can protect SBS 2008/Exchange and the clients.
To BobMCT; Security Essentials (the free version) is not legally allowed to be used in a business environment. This is typically the case with any free aV product such as AVG. However, MS recently released a EULA update that allows it to be used in a small/home business with 10 or less end points.
I would also go with a layered approach to security. For example,
1. I would use a hosted Spam solution. Trend Micro Worry-Free Advanced includes this feature. Or you can use AppRiver or Postini.
2. I would implement Gateway security with AV/AS/IDS/Content Filtering with something from SonicWALL: with CGSS / Total Secure.
3. I would implement Internet Security at the endpoints. Trend Micro would cover this since it has AV/ASpyware/IDS Firewall/URL & Content Filter.
To BobMCT; Security Essentials (the free version) is not legally allowed to be used in a business environment. This is typically the case with any free aV product such as AVG. However, MS recently released a EULA update that allows it to be used in a small/home business with 10 or less end points.
I would also go with a layered approach to security. For example,
1. I would use a hosted Spam solution. Trend Micro Worry-Free Advanced includes this feature. Or you can use AppRiver or Postini.
2. I would implement Gateway security with AV/AS/IDS/Content Filtering with something from SonicWALL: with CGSS / Total Secure.
3. I would implement Internet Security at the endpoints. Trend Micro would cover this since it has AV/ASpyware/IDS Firewall/URL & Content Filter.
ShackDaddy
MIS
I frequently use TrendMicro WorryFree for internal AV on workstations and the server, but I also use McAfee/MXLogic's filtering service for both inbound and outbound mail. I love it. Reflexions is another major player in that mail filtering market worth looking into.
For an additional layer of prevention, I'd suggest you look into OpenDNS's web filtering services: if you forward your DNS queries to them, they automatically keep a database of sites infested with malware and they won't return the DNS results to clients who might accidentally go to them or load ads from them. You can also expand the filtering to cover content, but filtering for hazardous sites is a helpful minimum.
I personally don't like having highly complex third-party security software running on my servers or workstations. I would rather push the security boundary out a bit to a place that's managed by other people, and where it won't affect my user's ability to access resources on my server. It also makes things easier to troubleshoot, since you can easily tell whether the issue is local on the server or outside in the cloud. Then you aren't uninstalling\reinstalling\rebooting your server trying to resolve things that aren't the server's problem.
Dave Shackelford MVP
ThirdTier.net
TrainSignal.com
For an additional layer of prevention, I'd suggest you look into OpenDNS's web filtering services: if you forward your DNS queries to them, they automatically keep a database of sites infested with malware and they won't return the DNS results to clients who might accidentally go to them or load ads from them. You can also expand the filtering to cover content, but filtering for hazardous sites is a helpful minimum.
I personally don't like having highly complex third-party security software running on my servers or workstations. I would rather push the security boundary out a bit to a place that's managed by other people, and where it won't affect my user's ability to access resources on my server. It also makes things easier to troubleshoot, since you can easily tell whether the issue is local on the server or outside in the cloud. Then you aren't uninstalling\reinstalling\rebooting your server trying to resolve things that aren't the server's problem.
Dave Shackelford MVP
ThirdTier.net
TrainSignal.com
happyhacker
Technical User
Well, as I said above I am commited to SEP 11 which does not cover the Exchange part. My conclusion is because I am using POP3 and sending to a smart host then I am covered for the Exchange storage of emails. Now, if the client has Outlook and the client is running the Symantec endpoint software then the client is protected. The only weak area is those users who are using OWA where I assume that the emails would be opened on the server. Is this a problem using OWA in this scenario?
Thanks for your time.
Thanks for your time.
Thanks to all for your helpful comments. I think the general consensus is that Trend Micro has the best overall protection at a reasonable cost, although one has to continue to research this on a semi-continual basis. I went with Rising AV, another free based solution that works on servers. I don't necessarily consider it a long term solution but cost is an issue right now. As the economy improves I will probably either upgrade to a paid solution with Rising AV if their solution works well, or go with the Trend Micro.
DELLtechProfessional
Technical User
I can recommend to you the KASPERSKY antivirus software because no one can remote access of your computer just like hackers usually do.satisfaction guaranteed to this security software.tested and proven
DELLtechProfessional
Technical User
You know what? there are a lot of issue concerning Trend Micro. it will blocks other programs that you want to install in the computer and aside from that, if you're getting a virus infection, you're computer will mess up automatically. You made a horrible decision buddy in using this trend micro.
happyhacker
Technical User
I wonder if Seaport got the information sought from this post! It seems everyone has their own opinion about which is the best A/V it almost boils down to "try it and see"!
Thanks for your time.
Thanks for your time.
- Thread starter
- #13
Hi, everyone,
Here is an update on my project. I eventually went for the NOD32 (server edition) from ESET. I never used the PC edition but I used ESET's online scanner a lot and liked it. So far everything work wells.
As far as I know, Windows Security Essential does not work on a Windows Server and MS did that for the obvious reason. Before using NOD32 I used one workstation's Security Essential to scan the shared folder on the server. Certainly this cannot be a long-term solution.
Regarding the Spam solution, Gmail is my email service provider and it does a really good job on it.
Thanks for all the inputs.
Here is an update on my project. I eventually went for the NOD32 (server edition) from ESET. I never used the PC edition but I used ESET's online scanner a lot and liked it. So far everything work wells.
As far as I know, Windows Security Essential does not work on a Windows Server and MS did that for the obvious reason. Before using NOD32 I used one workstation's Security Essential to scan the shared folder on the server. Certainly this cannot be a long-term solution.
Regarding the Spam solution, Gmail is my email service provider and it does a really good job on it.
Thanks for all the inputs.
- Status
Similar threads
- Locked
- Question
- Locked
- Question