Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Virus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: AV Testing

from [Evan Mann] Network Security [Permanent Link]
Subject: RE: AV Testing
Date: Mon, 5 Feb 2007 09:56:00 -0500 
I have not tested or used F-Secure, NOD32, ESET, or Kaspersky.  I don't
hear those names come up to frequently in medium-to-large enterprise
deployments.  My environment is very similar to yours in size.

I have used extensively Symantec over many versions, and have since
switched to McAfee after testing Trend Micro OfficeScan and McAfee to
determine my new AV vendor of choice.

I found Trend and McAfee to be pretty similar all around when it came to
impact on systems/network, but McAfee has a more robust management
product with ePolicy Orchestrator.  You can get an Anti-Spyware add-on
module that installs as a plugin, and with the recent release of v8.5i,
it does an extremely good job IMO.  McAfee's biggest downfall is their
support, but I haven't had to use it for anything critical.

That being said, I do not like McAfee GroupShield, and opted to get
Trend Micro's ScanMail product for Exchange, which I am very pleased
with.  I actually liked the Symantec Mail Security product for Exchange
a lot as well, but in the newer versions, they started to dumb down the
configuration options which turned me off from it. 

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of Richard Whitworth
Sent: Monday, February 05, 2007 3:43 AM
To: focus-virus@securityfocus.com
Subject: AV Testing

Hi,

I am in the process of evaluating software from various AV vendors to
roll out across my organisation. The product will be installed on up to
1500 desktops/laptops, around 100 servers including Exchange and ISA
proxies. 

As part of the process I want to measure the impact of the software on
key systems and services. Has anyone gone through this process before
and if so can you provide any tips or testing ideas? 

For Exchange database aware AV I was considering using the Exchange Load
Generator utility from MS, however I am not sure how accurately this
will generate loading on the AV software. 

I am going to be evaluating F-Secure, NOD32 from ESET, Kaspersky and
McAfee's Enterprise solution. What have people's experiences been with
these products - any good/bad experiences to be aware of?

TIA,

Richard

------------------------------------------------------------------------
---
This list is sponsored by: ByteCrusher

Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.

http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetec
t
------------------------------------------------------------------------
---


---------------------------------------------------------------------------
This list is sponsored by: ByteCrusher

Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.

http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  AV Testing, Richard Whitworth
Next by Date:  RE: AV Testing, Alex Ackley
Previous by Thread:  AV Testing, Richard Whitworth
Next by Thread:  RE: AV Testing, Alex Ackley
Indexes:  [Date] [Thread] [Top] [All Lists]