Discussing Microsoft Forefront security attempt

---

• From: "WALI" <hkhasgiwale@xxxxxxxxx>
• Date: Sat, 22 Dec 2007 19:33:45 +0400

---

Hi Guys

We have long used netcache as our web cache and deployed inbuilt websense/webwasher for content filtering. Now is the time to move on for the product is old and no longer suppported. Had a look at Bluecoat but that's prohibitively priced.

I was starting to wonder, how about shifting into old Microsoft camp? They are starting to market their forefront security in a pretty big way. has anyone tried their hand on it? ISA Server 2006 promises a good proxy but I wonder if it can do content filtering. Somewhere else they have mentioned "Microsoft’s Intelligent Application Gateway (IAG) 2007 with Application Optimizers provides secure socket layer (SSL) virtual private network (VPN), a Web application firewall, and endpoint security management that enable access control, authorization, and content inspection for a wide variety of line-of-business applications." ISA Server 2006, combined with IAG 2007, serves the need for network separation and full control of inbound and outbound content and adds significant edge security functionality to address a broad range of Internet threats.

http://www.microsoft.com/forefront/edgesecurity/iag/overview.mspx

This sounds cool in words. I see a huge savings for we already hold Enterprise Agreement license from Micorosft but I was wondering, if spending time to explore these technologies, would be worth it. The current need is to have an affordable content filtering/web caching solution in place.

Any suggestions?

---

• References:
  • Re: Information Security
    • From: Matthew Webster
  • Policy enforcement- Admin accounts
    • From: WALI
  • Re: Policy enforcement- Admin accounts
    • From: mgk.mailing

• Prev by Date: RE: Disable Flash memory
• Next by Date: Re: Recommendations for a non-technical book on cyber counter-terrorism and computer security
• Previous by thread: Re: Policy enforcement- Admin accounts
• Next by thread: RE: Policy enforcement- Admin accounts
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Restrict by UserAgent ... any header data as you have noted). ... when talking about "security" it tends to be more like the ... >> more I think about it, the less effective filtering by UserAgent becomes ... (microsoft.public.inetserver.iis.security) Re: BlackIce (with 3/2002 defs) / Sygate Pro does not detect Nimda ... filtering what traffic is put into the memory that BI allocates and then ... turning off all ip filters for this single program. ... or responding to single packets based on packet header information alone. ... can totally compromise your security if you fail to use it with care. ... (comp.security.firewalls) Re: [RFC 1/1] seccomp: Add bitmask of allowed system calls. ... the seccomp + filter engine based filtering method does not ... itself below any existing security context, in a hierarchical way, ... sandboxing concept: under seccomp v1 the task would be able to write ... (Linux-Kernel) Re: [fw-wiz] State of security technology for the enterprise ... Build in security zones, dmz, transit, low to high zones. ... Content filtering on the firewall ... (Firewall-Wizards) Re: How block socket ports ... I would advise against the IPsec filtering that comes with Windows 2000 as ... install all microsoft security patches, sign up for the microsoft newsletter ... on ports basis. ... (microsoft.public.win2000.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > security-basics  > 2007-12