RE: Anti-Virus on web facing servers??

• Previous message: Juan B: "Can snort cut off connections ?"
• In reply to: Jared Rowling: "Anti-Virus on web facing servers??"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "'Jared Rowling'" <rowlingj@stedwards.oxon.sch.uk>, <security-basics@securityfocus.com>
Date: Tue, 13 Jul 2004 08:57:33 +1000

In addition to that you can also install ISAPI real time filters. They're
designed to be fast and can be configured to scan stuff being uploaded to
the server. Norman Virus Control for IIS (not Norton)
(http://www.norman.com/Product/Corporate/Servers/Virus_Control/10801/en )
has a solution that does this with ISAPI filters. Or you could write your
own ISAPI extension that calls a third party virus engine like Sohpos SAVI,
or Symantec Scan Engine.

They're pretty fast and can scan about 50 files a second, so the overhead
isn't significant.

RH

-----Original Message-----
From: Jared Rowling [mailto:rowlingj@stedwards.oxon.sch.uk]
Sent: Monday, 12 July 2004 10:29 PM
To: security-basics@securityfocus.com
Subject: Anti-Virus on web facing servers??

A hardware firewall is a good guard, when configured properly, but I'd
say it's a good idea to run up to date Anti-Virus software on any
server.

If it's a web server you may not want to run any heuristic scanning as
that could affect performance, but a scheduled scan when hits are low
would provide peace of mind at least (especially as it's Windows)

regards

Jared

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

• Previous message: Juan B: "Can snort cut off connections ?"
• In reply to: Jared Rowling: "Anti-Virus on web facing servers??"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]