exchange 2000 problem
Discussion
TheHobbit said:
of course, not having an AV product installed directly on the server removes these problem. to avoid a shameless plug, and risk breaking the rules, I will simply say that I work for an e-mail security company that sorts AV, anti-spam, anti-porn, content filtering etc at the internet level, removing the worry of patch updates etc from your mail infrastructure 
this does *not* mean you should not have AV protection on your workstations to prevent virus infiltration from floppies/cds etc
And you've got a clever heuristics engine which finds viruses before anything else, have a 100% success record etc etc. I'm sure I've heard all that stuff somewhere before! www.messagelabs.com ?
edited to add: My only concern with stuff like that is if a virus is introduced into the system by an internal user (because their AV definitions aren't as good as yours, right) then there's no easy way to cleanse the Exchange databases so the virus keeps coming back.
>> Edited by _DJ_ on Wednesday 7th January 15:06
TheHobbit said:
of course, not having an AV product installed directly on the server removes these problem. to avoid a shameless plug, and risk breaking the rules, I will simply say that I work for an e-mail security company that sorts AV, anti-spam, anti-porn, content filtering etc at the internet level, removing the worry of patch updates etc from your mail infrastructure
this does *not* mean you should not have AV protection on your workstations to prevent virus infiltration from floppies/cds etc
anti porn?!?! god forbid!
tell me about the anti spam etc though as will be buying filtering software next week. think an outsourced deal will be too much though but will be interesting to see. send me some details at bill@oddpost.com if u can thanks
_DJ_ said:
And you've got a clever heuristics engine which finds viruses before anything else, have a 100% success record etc etc. I'm sure I've heard all that stuff somewhere before! <a href="http://www.messagelabs.com">www.messagelabs.com</a> ?
yep.
_DJ_ said:
edited to add: My only concern with stuff like that is if a virus is introduced into the system by an internal user (because their AV definitions aren't as good as yours, right) then there's no easy way to cleanse the Exchange databases so the virus keeps coming back.
agreed. we *do* state that you should have AV protection internally, preferably of the tamperproof variety where users do not have admin rights over their local machines..... all user bases are different, so there is no blanket "good for everyone" desktop AV measure. saves you getting snookered by SoBig etc. you modify your mx records to get mail redirected through us, and then change your firewall to only allow tcp/25 from us, rather than the world..... protects you from DOS/spam floods etc as we absorb it.
oh, and its not so much that "their" sigs are not as good as ours, but we have the horse power to run 3 commercially available scanners as well as our patented heuristics scanner. the 3 commercial scanners are best of breed and are chosen to complinent each other. sigs are updated every 10 mins. our heuristics monitor mail through our infrastructure (millions of emails per hour) and pick up on "bad stuff"
more scanners = more ability to pick up "bad stuff"
billb said:
anti porn?!?! god forbid!
I know!
billb said:
tell me about the anti spam etc though as will be buying filtering software next week. think an outsourced deal will be too much though but will be interesting to see. send me some details at bill@oddpost.com if u can thanks
YHM
I know, I know - heard the sales pitch (many times) before. 'We' do have the horsepower (and run 3 virus engines through Sybari) and I believe we hosted one of the ML towers at one point. However, we chose not to use it for our Exchange environment due to the reasons mentioned (without complete control of the clients I'd prefer to have a mail system that could scan the mailstores and rid them of viruses instead of not knowing whether they was infected or not). We also used Linux as a mail relay so the Exchange servers weren't exposed and offloaded the virus scanning duties to an Exchange front end server farm.
I'm sure messagelabs has its uses, but for very small companies it's probably not economically viable (we'll see with the 250 users mentioned earlier).
I'm sure messagelabs has its uses, but for very small companies it's probably not economically viable (we'll see with the 250 users mentioned earlier).
_DJ_ said:
I know, I know - heard the sales pitch (many times) before. 'We' do have the horsepower (and run 3 virus engines through Sybari) and
_DJ_ also said:
I believe we hosted one of the ML towers at one point.
oh, who do you work for then?
_DJ_ said:
However, we chose not to use it for our Exchange environment due to the reasons mentioned (without complete control of the clients I'd prefer to have a mail system that could scan the mailstores and rid them of viruses instead of not knowing whether they was infected or not). We also used Linux as a mail relay so the Exchange servers weren't exposed and offloaded the virus scanning duties to an Exchange front end server farm.
sorry
got carried away.... _DJ_ said:
I'm sure messagelabs has its uses, but for very small companies it's probably not economically viable (we'll see with the 250 users mentioned earlier).
we do have lots of small customers with 250-500 users, but I agree, some people still like having the stuff running locally.
>> Edited by TheHobbit on Wednesday 7th January 16:02
) Gassing Station | Computers, Gadgets & Stuff | Top of Page | What's New | My Stuff