This approach presumes updates are infrequent (> 1hr apart), and/or
innacurate or expensive proactive detection is employed. The cost/benefit
of relying on on-access scanning (esp. for client machines) vs. costly and
redundant scheduled scanning is almost always in the end user's favor.
FYI, best practices differ based on the engineering of AV software, and a
particular vendor's global response capability to emerging threats.
Suffice to say, no two AV are alike.
Kyle Moffitt
Sophos, Inc.
"Bruce Martins"
<BMartins@extend.
COM> To
<dfox168@hotmail.com>,
12/29/2005 09:59 <focus-virus@securityfocus.com>
AM cc
Subject
Re: Do we still need scheduled
scan?
You should still run a scheduled scan sometimes things are missed in
between dat file updates, if you run the scan late at night there should be
minimal impact.
Bruce Martins
Systems Administrator
EXTEND>>MEDIA
190 Liberty Street
Toronto, Ontario
Canada
M6K 3L5
_______________________
e:bmartins@extend.com
t: (416) 535-4222 ext. 2307
f: (416) 535-1201
http://www.extend.com
--------------------------
Sent from my BlackBerry Wireless Handheld
-----Original Message-----
From: Doug Fox <dfox168@hotmail.com>
To: focus-virus@securityfocus.com <focus-virus@securityfocus.com>
Sent: Wed Dec 28 17:28:04 2005
Subject: Do we still need scheduled scan?
If we have already implemented virus scan at the gateway, on the mail
server, on individual servers, and real time scan on workstations/laptops,
do we still need scheduled, e.g., weekly, scan on workstations and laptops
as well as servers?
Schdeuled scans really slow down some machines.
Any comments are appreciated.
Thanks,
Doug
--
Kyle Moffitt
Senior Account Executive, Sophos
Tel: 781 973 0110
Web: www.sophos.com
Sophos - integrated threat management
