I guess the snark wasn't obvious. The AV is tolerable as long as you have ePO going. However, my "enlightenment" happened when there was a fast moving version of sdbot which snuck by and I had to user higher tiered support. They identified it with Kaspersky.
We were going to use ironmail (another company) but decided against it after hearing the announcement..... -----Original Message----- From: Kurt Buff [mailto:[email protected]] Sent: Monday, January 30, 2012 4:28 PM To: NT System Admin Issues Subject: Re: The Security Earthquake That Nobody Felt Well, yes, actually, and they are part of Intel, and have been acquiring companies for themselves - for instance, Secure Computing a few years ago, for their Sidewinder firewalls (which are now McAfee Secure Enterprise Firewalls), among others. I still don't like their AV product, but they haven't yet ruined the firewall... Kurt On Mon, Jan 30, 2012 at 15:57, Mathew Shember <[email protected]> wrote: > Mcafee is stillll in business? > > ----- Original Message ----- > From: Stu Sjouwerman [mailto:[email protected]] > Sent: Monday, January 30, 2012 02:46 PM > To: NT System Admin Issues <[email protected]> > Subject: The Security Earthquake That Nobody Felt > > * The Security Earthquake That Nobody Felt > > Wow, this is actually major security news. I found this on the blog > from Coretrace, and they said: "This week, McAfee, one of the two > dominant forces in reactive, blacklist-based endpoint security, > actively and unequivocally endorsed Application Whitelisting. > Ironically, in hard coverage of Symantec's recent problems with > pcAnywhere, the industry is actively recommending application whitelisting > too." Here is the link: > http://www.coretraceblogs.com/2012-01/security-earthquake-that-nobody- > felt-mcafee-endorses-application-whitelisting/ > > So, what is the big news? It turns security on its head. Instead of > keeping bad code out, with application whitelisting (also known as > Application Control) you only allow known-good code to run. That's > really a 180, and very, very interesting from a system admin perspective. > > I have done some research in this area and have written a whitepaper > about whitelisting, and why as a system admin you should look into > this for the near future. This is a new security layer for your > 'defense-in-depth'. You will hear more from me about whitelisting this year: > http://www.knowbe4.com/resources/the-endpoint-security-advantages-of-w > hitelisting-a-whitepaper-for-system-administrators/ > > Warm regards, > > Stu > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
