Re: [fw-wiz] OT: Av and Gartner...
From: Paul A. Henry (phenry_at_cyberguard.com)
To: "John Keeton" <email@example.com>, <firstname.lastname@example.org> Date: Wed, 30 Jul 2003 21:16:28 -0400
-----BEGIN PGP SIGNED MESSAGE-----
I look at antivirus as more of a policy issue (or lack thereof) why
would any sane person allow every user in a company to receive emails
with every possible kind of attachment? I like to define explicitly
in the SMTP proxy exactly what attachments I will allow - to which
users and /or groups.... That said those emails with attachments that
are permitted still go through an antivirus server via CVP that is
isolated on it's own segment prior to forwarding the email and
respective attachment to the client behind the firewall. We handle
FTP and HTTP downloads via proxy in a similar manner at the
Naturally this can not replace desktop antivirus it is intended to
complement it.....you need both
Paul A. Henry
- ----- Original Message -----
From: "John Keeton" <email@example.com>
Sent: Wednesday, July 30, 2003 7:09 PM
Subject: [fw-wiz] OT: Av and Gartner...
> Slightly OT here.
> In corporate land, where does everyone have AV installed?
> Currently, we have desktop, NT servers, and email gateway. I am
> thinking that we need http/ftp scanning via ICAP from our proxy,
> but Gartner says http/ftp scanning is uneeded. I don't know if
> I agree.. -OR- Are people installing malicious code detection
> software, like www.finjan.com??
> Also, anyone have any experiance with Garner regarding security
> items? This AV answer, joined with their latest magic quad. for
> firewalls and ids is just plain scary. I don't know if I even want
> to put an ounce of faith in them anymore.
>  At my employ Gartner is god.
> firewall-wizards mailing list
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2
-----END PGP SIGNATURE-----
firewall-wizards mailing list