Definitely a YMMV. As stated in other AV threads, I run Vipre at two clients (7 and 18 seats), Trend WorryFree at another (60 seats), and McAfee at %dayjob% (525 seats and counting). A year ago Vipre regularly ate Outlook.exe at one client
From: Joseph L. Casale [mailto:[email protected]] Sent: Friday, November 11, 2011 8:11 AM To: NT System Admin Issues Subject: RE: Antivirus Recommendations? Our Open Value gets us Forefront and we are reverting back when its convenient. I'm typing this from my wkst that has SBAMsvc using 1.5 Gig? I have trouble with false positives for files like svchost.exe, really? I recently allowed vnc and yesterday it yanked it out of the recyclebin corrupting the bin and I lost everything in it? I thought I allowed it? It was running fine after I allowed it? Their support has always been a problem for me the few times I have asked for help. Their sales didn't seem to be organized what so ever. The service crashes often on my vanilla 08r2 servers, I suspect this is typical, why else would a "recovery" service be needed (except if you don't know how to set recovery options for the service). I don't know what to say, I have tried to like it, but I just don't think the quality is there. Of course, ymmv... From: David Lum [mailto:[email protected]]<mailto:[mailto:[email protected]]> Sent: Friday, November 11, 2011 8:51 AM To: NT System Admin Issues Subject: RE: Antivirus Recommendations? I can tell you a former %nightjob% client went from Vipre (from when I managed them) to Security Essentials (new support shop) and they certainly get more malware than when they had Vipre. It's not because they're a former client as it's my wife's work so no "sour grapes" involved in my observation. My wife wishes they'd go back to Vipre... Dave From: Cameron [mailto:[email protected]]<mailto:[mailto:[email protected]]> Sent: Friday, November 11, 2011 7:14 AM To: NT System Admin Issues Subject: Re: Antivirus Recommendations? I'm using Vipre here and like it. Centralized, easy management...AND....support is good! People that you can understand and are NOT reading from cue cards! On Fri, Nov 11, 2011 at 9:26 AM, Jim Holmgren <[email protected]<mailto:[email protected]>> wrote: Still does require RPC - you also have to turn on Remote Registry service to deploy automagically on Win7 clients. We built an SCCM package for client deployment rather than use the Sophos console. On the positive side, it does an AWESOME job removing Symantec automatically. Jim Jim Holmgren Director of Technology Infrastructure XLHealth Corporation The Warehouse at Camden Yards 351 West Camden Street, Suite 100 Baltimore, MD 21201 410.625.2200<tel:410.625.2200> (main) 443.524.8573<tel:443.524.8573> (direct) 443-506.2400<tel:443-506.2400> (cell) www.xlhealth.com<http://www.xlhealth.com/> From: Erik Goldoff [mailto:[email protected]<mailto:[email protected]>] Sent: Friday, November 11, 2011 9:18 AM To: NT System Admin Issues Subject: Re: Antivirus Recommendations? don't know about now, but a few years back Sophos did depend on RPC for deployment from the console On Fri, Nov 11, 2011 at 8:33 AM, Harry Singh <[email protected]<mailto:[email protected]>> wrote: Looking at Sophos now and hope to migrate off SAV Q1 of next year. Not keen on delivering a/v over GPO, I'm hoping Sophos built-in delivery doesn't use SMB. On Friday, November 11, 2011, Rod Trent <[email protected]<mailto:[email protected]>> wrote: > Incidentally, Truesec has LMS which allows management of Forefront without > SCCM: > > > > http://lms.truesec.se/ > > > > From: James Rankin > [mailto:[email protected]<mailto:[email protected]>] > Sent: Friday, November 11, 2011 8:06 AM > To: NT System Admin Issues > Subject: Re: Antivirus Recommendations? > > > > Oh right. That's a bit more slippery. > > On 11 November 2011 13:01, Michael B. Smith > <[email protected]<mailto:[email protected]>> wrote: > > No, you don't have to use SCCM to deploy, but SCCM provides the management of > it. if you install it managed, then you need SCCM (or my previously mentioned > third-party product). You can also install it unmanaged. > > > > Regards, > > > > Michael B. Smith > > Consultant and Exchange MVP > > http://theessentialexchange.com/ > > ________________________________ > > From: James Rankin [[email protected]<mailto:[email protected]>] > > Sent: Friday, November 11, 2011 7:36 AM > > To: NT System Admin Issues > Subject: Re: Antivirus Recommendations? > > > > SCCM to deploy it? Didn't realise that. Nasty. > > > > I'm still a fan of Vipre, and Trend's offering isn't too bad, although the > detection rates were not vastly impressive. I tend to look at things from a > XenApp/RDS point of view though so I may dismissing some products that would > be perfectly fine for you on a traditional fat client machine. > > On 11 November 2011 12:27, Paul Hutchings > <[email protected]<mailto:[email protected]>> wrote: > > We actually have Forefront licenses via an MS agreement, I just don't think I > want to try and get my teeth into SCCM right now just to administer it (I > appreciate that SCCM does all manner of things but YKWIM, it's a bit of a > monster). > > > > We do all the defence in depth stuff regards perimiter scanning, URL blocking > etc. > > From: James Rankin > [mailto:[email protected]<mailto:[email protected]>] > Sent: 11 November 2011 12:20 > To: NT System Admin Issues > Subject: Re: Antivirus Recommendations? > > > > I haven't dealt much with AV over the last year, but I liked Vipre Enterprise > last time I did. However we did move from Symantec so anything would probably > have been a vast improvement. > > > > I notice a lot of people are fans of the MS offerings now (Forefront, > Security Essentials, etc, don't know the exact current brand names). Truth be > known is that no AV can provide 100% coverage, and the ones that provide > advanced heuristic detection are usually the ones with the bigger footprints. > I'm personally a fan of coupling up your reactive AV with something like > AppLocker from MS, if you're an AD shop, and obviously some good event log > monitoring procedures. Defense-in-depth is usually the only way to stay > fairly safe. > > > > YMMV, etc. > > On 11 November 2011 12:11, Paul Hutchings > <[email protected]<mailto:[email protected]>> wrote: > > Our Avira Antivir license is up for renewal in a couple of months. Whilst > we've had no significant issues, I want to look at a couple of other options > so that even if we stay with Avira it's for the right technical reasons. > > > > We have around 550 PC's, a mix of Windows XP, Windows Vista, Windows 7, > predominantly 32bit with some x64. > > > > I'd be looking for a mixture of good centralised management (this almost > always seems to rule out many vendors) combined with low client footprint - > and something that is totally "hands off" from the end user perspective and > that "just works". > > > > Suggestions? > > > > Thanks, > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to > [email protected]<mailto:[email protected]> > with the body: unsubscribe ntsysadmin > > > -- > "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the > machine wrong figures, will the right answers come out?' I am not able > rightly to apprehend the kind of confusion of ideas that could provoke such a > question." > > ***** IMPORTANT INFORMATION/DISCLAIMER ***** > > This document should be read only by those persons to whom it is addressed. > If you have received this message it was obviously addressed to you and > therefore you can read it, even it we didn't mean to send it to you. However, > if the contents of this email make no sense whatsoever then you probably were > not the intended recipient, or, alternatively, you are a mindless cretin; > either way, you should immediately kill yourself and destroy your computer > (not necessarily in that order). Once you have taken this action, please > contact us.. no, sorry, you can't use your computer, because you just > destroyed it, and possibly also committed suicide afterwards, but I am > starting to digress...... > > The originator of this email is not liable for the transmission of the > information contained in this communication. Or are they? Either way it's a > pretty dull legal query and frankly one I'm not going to dwell on. But should > you have nothing better to do, please feel free to ruminate on it, and please > pass on any concrete conclusions should you find them. However, if you pass > them on via email, be sure to include a disclaimer regarding liability for > transmission. > > In the event that the originator did not send this email to you, then please > return it to us and attach a scanned-in picture of your mother's brother's > wife wearing nothing but a kangaroo suit, and we will immediately refund you > exactly half of what you paid for the can of Whiskas you bought when you went > to Pets At Home yesterday. > > We take no responsibility for non-receipt of this email because we are > running Exchange 5.5 and everyone knows how glitchy that can be. In the event > that you do get this message then please note that we take no responsibility > for that either. Nor will we accept any liability, tacit or implied, for any > damage you may or may not incur as a result of receiving, or not, as the case > may be, from time to time, notwithstanding all liabilities implied or > otherwise, ummm, hell, where was I...umm, no matter what happens, it is NOT, > and NEVER WILL BE, OUR FAULT! > > The comments and opinions expressed herein are my own and NOT those of my > employer, who, if he knew I was sending emails and surfing the seamier side > of the Internet, would cut off my manhood and feed it to me for afternoon tea. > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to > [email protected]<mailto:[email protected]> > with the body: unsubscribe ntsysadmin > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to > [email protected]<mailto:[email protected]> > with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin CONFIDENTIALITY NOTICE: This email, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and/or protected health information. Under the Federal Law (HIPAA), the intended recipient is obligated to keep this information secure and confidential. Any disclosure to third parties without authorization from the affiliate or as permitted by law is prohibited and punishable under Federal Law. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. NOTA DE CONFIDENCIALIDAD: Este mensaje incluyendo cualquier anejo es para uso exclusivo del (los) destinatario (s) y puede incluir información confidencial y/o información de salud protegida. La Ley Federal (HIPAA) establece que el destinatario está obligado a mantener la información confidencial y sequra. HIPAA prohíbe y castiga cualquier divulgación a terceras personas sin autorización del afiliado o permitido por ley. Si usted no es el destinatario, redirija esta mensaje al remitente, y destruye cualquier copia existente del mensaje original. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
