Re: Is this a new trend?

From: Mike (wmrobins_at_verizon.net)
Date: 03/16/04


Date: Tue, 16 Mar 2004 05:38:41 GMT

Jim Watt wrote:

> On Mon, 15 Mar 2004 11:55:25 GMT, Leythos <void@nowhere.com> wrote:
>
>
>>Symantec SBE 8.1 has never let us down, have stopped many things before
>>they got started, and even stopped web browsers from being compromised
>>by scripts on the sites that are visited.
>>
>>If there is one thing that should not be under appreciated, it's the
>>quality AV software running on every machine. It doesn't matter how good
>>your border is, you are going to get hit sooner or later.
>>
>>Have you considered all the people that use YIM, MIM, etc.. and move
>>files that are not blocked by a border? What about web mail?
>
>
> We have had to reload the system on some machines which have been
> screwed by NAV - its almost as bad as a virus.
>
> On our mail server, which is also used by clients, all executables and
> .zips are deleted.
>
> Perhaps theres scope for a program that monitors what executables
> are loaded, in the same way tha ZA does with Internet access,
> rather than checking for every executable being a virus.
>
> WTF is YIM MIM ? we block access to yahoo, hotmail and the
> other common webmail services.
>
> --
> Jim Watt
> http://www.gibnet.com

What about floppys, thumb drives, CD-Rs, encrypted files, executables
with their extensions changed, iPods and other devices with significant
memory? I could see stopping these in a high security installation, but
not in an average corporation.

Mike