Network Virus Protection

[merx]

Hi



Our office is currently using Norton Antivirus 2000 and 2002 (single desktop
versions) on our 9 workstations and on our single server. This seems to
provide good virus protection as we haven't had a virus on our system in the
3 years I've been there and viruses are regularly quarantined. What I was
wondering is if we are really fully protected from viruses or whether we
need to go to a network virus protection product like Norton Antivirus
Enterprise Edition. I realise that this sort of product provides central
control of the antivirus settings and updates but does it actually fill any
gaps in our current arrangement?



(Our server is running Windows 2000 Server and we have a broadband
connection to the internet via a gateway router. The server holds all data
and email)



Thanks for any help you can provide.

 

[Mark Renoden [MSFT]]

Hi Merx

The choice of Antivirus software would depend on the features different
products offer and where you think you're vulnerable. AV software should
play just one part in your overall strategy. Keep in mind that if the AV
software detects a virus, it's because there's a weakness in the environment
that's allowed it to get in. This might be as simple as a laptop belonging
to someone outside the business connecting to the network for a powerpoint
presentation. You'll probably want to think about:

a. A good firewall that only allows the specific traffic to and from the
internet that's required in your environment.

b. A good patch management strategy that ensures all servers and clients
have the latest security updates as they become available. Software Update
Services would be suitable for an environment of your size:

http://www.microsoft.com/windowsserversystem/sus/default.mspx

c. A strong password policy. With the latest approaches to password
cracking, 10 - 12 characters is a good starting point. Think about
educating users to use a "passphrase" instead of a "password". For example
"This is a strong password!" (without quotes) could be used. Spaces are
valid in passwords.

d. Restricting how and when foreign machines can connect to the environment.

There are many other considerations in securing an environment. A good
starting point is for your own research:

http://www.microsoft.com/security/default.mspx

Kind regards
--
Mark Renoden [MSFT]
Windows Platform Support Team
Email: (e-mail address removed)

Please note you'll need to strip ".online" from my email address to email
me; I'll post a response back to the group.

This posting is provided "AS IS" with no warranties, and confers no rights.