Eset NOD32 Antivirus System may not be in anyone’s top five list of products to consider, but given a more comprehensive administration
UI, it could become a major player in the anti-malicious program market. I like the way Eset integrates the various monitors,
and the Remote Administration console nearly makes up for the other rough edges.
F-Secure Anti-Virus Client Security 6
F-Secure Anti-Virus Client Security has one of the best, most comprehensive security bundles available, although it suffers
a bit from a disjointed administration user interface. One of three anti-spyware solutions in this review that includes anti-virus
capabilities in the same package, Anti-Virus Client Security’s real-time protection stopped all attempts to infect my test
clients. Reporting is browser-based and provides ample predefined templates. Because of its awesome real-time protection
and overall performance, Anti-Virus Client Security 6 received the highest score of the ten products reviewed.
Anti-Virus Client Security is a complete anti-virus, anti-spyware, intrusion prevention and detection, and personal firewall
system bundled in one tight package. There are a lot of moving parts that make Anti-Virus Client Security work, and they all
come together in the F-Secure Policy Manager Console. Installation of the console on my Windows 2003 Server took little time
to complete, and the auto-discovery of my client PCs was quick. I pushed out an installation package to a Windows XP Professional
PC without a hitch.
Creating a policy for my domain took slightly longer than other products due to odd organization in the Policy Manager. I
was constantly jumping back and forth between tabs, trying to make sure I knew what I was selecting. Deploying a policy required
clicking on yet another tab and then clicking the Update icon. My issues with the UI are purely personal; all of the options
and choices are clearly marked with helpful descriptions. After an hour of working with it, I was more comfortable with the
Policy Manager UI, but never at ease.
Because of all of the included features, there are a lot of choices to make when creating a policy. It is with the wealth
of choices that Client Security overcomes its UI. One unique feature is the different security levels available in Client
Security. Administrators can create one security policy for “office” users, and another for “everywhere else,” each with its
own specific security settings. For instance, office users may have the personal firewall feature turned off, whereas a mobile
user’s policy may enable the personal firewall when connected at a Wi-Fi hotspot.
With Client Security active and with all features enabled, there were 18 processes listed in Task Manager, consuming at a
minimum 55MB of RAM. Unlike CounterSpy Enterprise and Tenebril SpyCatcher, there is no way to throttle up or down Client Security’s
CPU usage. Whenever I launched a scan of my client PC, Client Security’s processes took up nearly 80 percent of processor
time, greatly reducing system response.
The reporting engine was one of the stronger implementations in the group, coming in just behind McAfee’s system. F-Secure’s
Web-enabled reporter worked easily and allowed me to slice and dice the collected data quickly to monitor activity on my network.
Overall, I found the combination of anti-virus and anti-spyware effective at preventing infection and at removing traces if
a PC was already infected. The real-time scanner was adept at stripping both virus and malware out of the HTTP stream. With
the real-time scanner enabled, I was never able to sneak anything past it.
LANDesk Security Suite 8.6
Long known as an enterprise management company, LANDesk aims to become known as an enterprise security company. Easily one
of the most complex and scalable products in this roundup, LANDesk Security Suite 8.6 includes end point security, patch management,
and security compliance with very good malware and spyware protection. Real-time protection was above average, blocking most
attempts, and reporting was excellent.
Installation on my Windows 2000 Server was straightforward, with the tough part to come. Unlike Sunbelt CounterSpy, getting
agents deployed and policy configured took quite some time and a bit of trial and error. By default, Security Suite doesn’t
download all of the necessary spyware and malware definitions. I had to create an update task and choose what I wanted to
retrieve. Next, I had to define my default Windows configuration, then assign PCs to that configuration. Finally I had to
create a task to push this configuration information out to my clients.
I understand why LANDesk is designed the way it is: It’s hugely scalable. By making me define all of those items, it provides
a multitude of configuration choices, with different policies and definitions for different workgroups or domains. My biggest
knock against the UI is that while the tasks did indicate when a job was active or pending, some jobs took a while to complete,
and I often wondered whether things were really happening. A progress indicator might be nice. A pop-up monitor provides some
feedback, but it, too, leaves something to be desired.
Bottom Line: Computer Associate’s eTrust PestPatrol provides very good detection and removal of installed spyware. Its administrative UI
is easy to install, maintain, and use, but its reporting is very limited. Real-time detection and prevention of initial spyware
installation is very weak: It allows spyware to install but prevents the processes from running.
Platforms: Windows 95 and later, Linux OS Linux (Kernel 2.2.x, 2.4.x and 2.6.x, glibc 2.2.5 or higher); Novell NetWare 4.x and later
Bottom Line: NOD32 Antivirus System has the potential to be a major anti-spyware player with a few enhancements, such as smoother, more
streamlined installation. Policies are flexible but building them is a chore. Reporting is very strong, allowing for many
different views into workstation histories. Detection and prevention is merely average: A small group of spyware slipped through.
Platforms: Server: Windows 2000/XP/2003; client: Windows 2000/XP, F-Secure Policy Manager Console
Bottom Line: F-Secure has rolled anti-virus, anti-spyware, and personal firewall protection into a single package. It has the best real-time
protection of any products in this roundup, stopping all attempts. On previously infected systems, detection and removal were
also first rate. Reporting is excellent, but it suffers from some organizational issues in the administrative UI.
Cost: For 100 users, $5,900 for the first year, $2,900 each year after
Platforms: Server: Windows 2000/2003 Server; client: Windows 95 and later, Mac OS 9.22 and later, HP-UX, IBM AIX 5.1, NetWare 6.0, 6.5,
Red Hat Linux 7.3, 8.0, 9.0, Solaris 8, Suse Linux 9.
Bottom Line: LANDesk Security Suite scales to any size and complements the already strong LANDesk product family. It has very good detection
and remediation, and its real-time protection is above average, although an IE toolbar did slip through. Reporting is top
notch but administrative overhead is considerable.
Cost: For 100 users, $16 per user with 1-year support
Platforms: Server: Windows NT 4 Server, Windows 2000/2003 Server; client: Windows NT 4, Windows 2000/2003/XP
Bottom Line: The addition of Anti-Spyware Enterprise Module to VirusScan Enterprise provides a very scalable platform for protecting your
network from spyware and viruses. Reporting capabilities are excellent, but real-time protection is only average. Administration
is more difficult than that of most of the other products.
Platforms: Server: Windows 2000 and later; client: NT4 SP6a, Windows 98SE and later
Bottom Line: CounterSpy Enterprise was one of the easiest products to install and maintain. Its real-time protection allows spyware to
install before terminating it, but its on-demand detection and remediation is very good. Reporting is good, but not as strong
as that of some others in this roundup.
Cost: For 100 users, $1,530 for a perpetual, one-time purchase. Annual subscription to the Threat Shield databases, $1,874
Platforms: Server: Windows Server 2000/2003; client: Windows 98/ME and later
Bottom Line: SurfControl Enterprise Threat Shield is straightforward to install, and administration isn’t overly complex. Real-time protection
proved better than average. It relies, however, on being connected to a management server, so disconnected users lose some
protection. It has a very small memory footprint, even during an on-demand scan. Its reporting engine is very capable.
Platforms: Server: Windows 2000/XP/20003; client: Windows 2000/XP/2003
Bottom Line: SpyCatcher is an easy-to-deploy-and-administer anti-spyware solution with great detection and remediation. Real-time protection
doesn’t block spyware installations but does stop any process from launching. Reporting is good, but it lacks customization.
Platforms: Server: Windows XP/2000/20003; client: Windows XP/2000/2003
Bottom Line: Anti-Spyware for Small and Medium Business likely will be one of the best anti-spyware products available, once it matures
a little more. Real-time protection allows spyware to install before clamping down on it. On-demand scans and cleans work
well and remove any traces of spyware from a PC. Reporting could be made a little stronger if there were customization options.
Platforms: Server: Windows NT 4.0 and later; client: Windows 98SE and later
Bottom Line: Spy Sweeper is one of the best all-around anti-spyware tools. It offers good real-time protection and excellent detection
and remediation. Spy Sweeper is flexible enough that administrators can easily create policies based on specific needs. Reporting
would be better if it allowed for customizable reports.
» Judge grants RIM a stay in Visto patent trial
Trial delayed from beginning next week while patent office studies validity of certain parts of e-mail provider Visto's patents as requested by RIM
» Developers satisfied with Apple's enterprise work
Mac developers feel that Apple shouldn't try to make a broad attempt to win over enterprises and should instead focus on certain areas within the enterprise
Are you ready for event-driven business?
"Faster than a speeding bullet" doesn't just refer to superheroes anymore, it's the velocity your business needs to compete. In this webcast you will learn strategies you can implement today that will keep your systems ahead of the increased business velocity. Sponsor: Progress Sonic
The Silver Lining: Cloud Computing
This IT Strategy Guide digs deep into cloud computing helping put you ahead of the curve on this hot topic. It explores the differences between cloud computing, grid computing and utility computing and then helps you see where and how each applies to your business. Sponsored by Box.net
Measuring mobile productivity - Companies must be able to measure productivity gains from mobile working. Productivity is notoriously difficult to measure...
Thinking about IMS - IMS's increased flexibility and the potential it offers for new services will create a fundamental shift in the way that...
What's the 411 on GOOG-411? Just as Google has become synonymous with "performing a Web search," 411 is understood to mean "information" -- as in "what's the 411?" I was thus surprised to discover, from a billboard, no less, that the king of search is taking on the ...
Apple HTML source reveals 'iPhone Extreme' "This one's a stretch..." reports AppleInsider.
Um, yeah. Reporting on HTML code sightings of product names could be called a stretch, but iPhone Extreme has a ring to it.
Now, that sounds like the product Apple should have released first, rather ...
Open Sources Product Management
When I joined MySQL four years ago, there was quite a lot of debate about product management. We didn't actually have ...
E-mail
Printer Friendly
Reprints
(InfoWorld) - In the litigious world we live in, deploying a unified communications platform in your enterprise could...
