Re: [fw-wiz] OT: Av and Gartner...

From: Paul A. Henry (phenry_at_cyberguard.com)
Date: 07/31/03

  • Next message: Kang Choo Kai: "[fw-wiz] Public conferences"
    To: "John Keeton" <jkeeton@nettoxin.net>, <firewall-wizards@honor.icsalabs.com>
    Date: Wed, 30 Jul 2003 21:16:28 -0400
    
    

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    I look at antivirus as more of a policy issue (or lack thereof) why
    would any sane person allow every user in a company to receive emails
    with every possible kind of attachment? I like to define explicitly
    in the SMTP proxy exactly what attachments I will allow - to which
    users and /or groups.... That said those emails with attachments that
    are permitted still go through an antivirus server via CVP that is
    isolated on it's own segment prior to forwarding the email and
    respective attachment to the client behind the firewall. We handle
    FTP and HTTP downloads via proxy in a similar manner at the
    gateway....

    Naturally this can not replace desktop antivirus it is intended to
    complement it.....you need both

    Paul A. Henry

    - ----- Original Message -----
    From: "John Keeton" <jkeeton@nettoxin.net>
    To: <firewall-wizards@honor.icsalabs.com>
    Sent: Wednesday, July 30, 2003 7:09 PM
    Subject: [fw-wiz] OT: Av and Gartner...

    > Slightly OT here.
    >
    > In corporate land, where does everyone have AV installed?
    > Currently, we have desktop, NT servers, and email gateway. I am
    > thinking that we need http/ftp scanning via ICAP from our proxy,
    > but Gartner[1] says http/ftp scanning is uneeded. I don't know if
    > I agree.. -OR- Are people installing malicious code detection
    > software, like www.finjan.com??
    >
    > Also, anyone have any experiance with Garner regarding security
    > items? This AV answer, joined with their latest magic quad. for
    > firewalls and ids is just plain scary. I don't know if I even want
    > to put an ounce of faith in them anymore.
    >
    > Thanks,
    > -jkeeton
    >
    > [1] At my employ Gartner is god.
    > _______________________________________________
    > firewall-wizards mailing list
    > firewall-wizards@honor.icsalabs.com
    > http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

    -----BEGIN PGP SIGNATURE-----
    Version: PGP 8.0.2

    iQA/AwUBPyht6jTD/30HfPX3EQIRLgCeIdL2elMcQ6RADSYeFLGbaDlORIAAoJnK
    x/dneFyRB6F7q1hpiLVJx2tV
    =yG9u
    -----END PGP SIGNATURE-----

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards


  • Next message: Kang Choo Kai: "[fw-wiz] Public conferences"