The greater the flexibility of the tool, the less tools you need to manage your security.
Relying on 1 tool is not wise, but having to manage 12 slightly overlapping tools is its own nightmare. Getting it down to 3 or 4 tools is useful. * * *ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of Technology for the SMB market… * On Tue, Nov 15, 2011 at 10:46 AM, Joseph Heaton <[email protected]> wrote: > Would it be better to have a tool that only does whitelisting, or a > software more like Viewfinity, where you can do both white and black lists, > and also elevate permissions for applications that aren't on either list, > but are needed by a few people, which wouldn't warrant putting it on the > whitelist? > > >>> Stu Sjouwerman <[email protected]> 11/14/2011 2:16 PM >>> > > Thanks Micheal. Anyone experience with any of the Whitelisting products > in this InfoWorld Review?**** > > ** ** > > > http://www.infoworld.com/d/security-central/test-center-review-whitelisting-security-offers-salvation-835? > **** > > ** ** > > ** ** > > *Bit9 Parity Suite 5.01* > > *10* > > *8* > > *9* > > *9* > > *10* > > *9.4* > > *EXCELLENT* > > *30%* > > *15%* > > *25%* > > *10%* > > *20%* > > *CoreTrace Bouncer 5* > > *9* > > *9* > > *9* > > *8* > > *9* > > *8.9* > > *VERY GOOD* > > *30%* > > *15%* > > *25%* > > *10%* > > *20%* > > *Lumension Application Control* > > *8* > > *9* > > *8* > > *9* > > *9* > > *8.5* > > *VERY GOOD* > > *30%* > > *15%* > > *25%* > > *10%* > > *20%* > > *McAfee Application Control 5.0* > > *9* > > *9* > > *9* > > *8* > > *8* > > *8.7* > > *VERY GOOD* > > *30%* > > *15%* > > *25%* > > *10%* > > *20%* > > *SignaCert Enterprise Trust Services 3.0* > > ** ** > > ** ** > > ** ** > > *From:* Micheal Espinola Jr [mailto:[email protected]] > *Sent:* Monday, November 14, 2011 5:10 PM > *To:* NT System Admin Issues > *Subject:* Re: Whitelisting Pros & Cons?**** > > ** ** > > Whitelisting is the future IMHO. You cant trust anything anymore. Faith > doesnt cut it. You have to protect yourself and your assets, and > whitelisting is the best way to do it. > > -- > Espi**** > > ** ** > > ** ** > > > > **** > > On Mon, Nov 14, 2011 at 8:48 AM, Stu Sjouwerman <[email protected]> > wrote:**** > > I'm referring to Whitelisting in the context of security. About 10 years > ago, the ratio > "Good code" versus malware was perhaps 90 good 10 bad. In that scenario, > it makes > sense to keep the bad code out. But over the last 10 years, with automated > malware > variant generation, the tables have turned, and there is actually more > malware than > good code out there. So in -that- scenario it might make sense to only > allow "good code" > and implement application control. Only that which is allowed, will run. > > I'd like your feedback - input - discussion on this ! > > Warm regards, > > Stu**** > > > -----Original Message----- > From: Matthew W. Ross [mailto:[email protected]] > Sent: Monday, November 14, 2011 11:22 AM > To: NT System Admin Issues**** > > Subject: Re: Whitelisting Pros & Cons? > > Are you asking about web content filtering, email filtering, or some other > type of "whitelisting?" > > > --Matt Ross > Ephrata School District > > > ----- Original Message ----- > From: Stu Sjouwerman > [mailto:[email protected]] > To: NT System Admin Issues > [mailto:[email protected]] > Sent: Mon, 14 Nov 2011 > 08:14:57 -0800 > Subject: Whitelisting Pros & Cons? > > **** > > > Guys, I am writing an article for WServerNews, and would like your > > public input. > > > > What is your experience with Whitelisting, which products you > > tried/use, and what experience you are having with this, likes and hates > are all welcome !! > > > > Warm regards, > > > > Stu > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
