GFI Software

Welcome to the GFI Software community forum! For support please open a ticket from https://support.gfi.com.

Home » GFI User Forums » Kerio Connect » Sophos AV - why am I paying for this?
Re: Sophos AV - why am I paying for this? [message #122374 is a reply to message #122369] Thu, 25 June 2015 18:07 Go to previous messageGo to previous message
Maerad is currently offline  Maerad
Messages: 275
Registered: August 2013
MarkK wrote on Thu, 25 June 2015 17:46

But like Fort Knox, doesn't matter how much security you have in place, if a user opens a door for someone, a hole in the security has been opened up. Regardless of how much you hammer in to your users about what to look for, it is those targeted spear phishing emails that users are most likely to fall prey to. The crook knows his audience and how to possible get that door opened just enough to slip something in.

There was a time that you had your firewall on your network's edge and that was good enough. Those days are gone. Now you need a firewall and Intrusion Prevention system at the network edge (even more options is better); firewall, antivirus, and intrusion prevention on your mail server; and firewall, intrusion detection, antimalware/antivirus on your workstation. This is why we are paying for Sophos AV.


I really agree with you. And I never said to go without any kind of antivirus.

I just say, it's a fatal flaw to trust the antivirus system. It doesn't matter who made the antivirus, there will never be a 100% security on a program side.

You need to combine everything and still, that might not be enough. That's where the users comes into play. With appropriate training, the users can identify 90% of spam, viruses or phishing attempts.

Today we had another case with a infected supplier of us. We talk about a company here with around 500 ppl in office, with gateway deep paket protection including intrusion detection, antivirus, data steam analyses etc.

Not to mention the anti virus clients, the server mail protection, special restrictions for the users in the company, a knowing IT department... and still, one pc got infected today. Was an attachment to a mail the user opened and got infected. The gateway protection is a hardware system and really expensive, same goes for the antivirus on the exchange and of course the clients.

They couldn't find the virus, it was just too new and the heuristic wasn't able to see it.

When we had exchange with eset protection, we also had some viruses coming tru. IMHO sophos on kerio detects more then enough and with the new "delete attachments if disallowed extention is in .zip" we didn't have a virus in weeks.

Report message to a moderator

[Message index]
 
Read Message icon8.gif
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: Manually zipping emails to archive
Next Topic: Authenticate users to AD from DMZ
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Sun Sep 24 15:38:00 CEST 2023

Total time taken to generate the page: 0.03502 seconds
.:: Contact :: Home :: Acceptable Use Policy ::.

Powered by: FUDforum 3.0.9.
Copyright ©2001-2022 FUDforum Bulletin Board Software