 |
Page 4 of 8
« Previous Page Next Page »
New to this release of Security Suite is LANDesk’s Trusted Access technology, which helps LANDesk identify and quarantine
infected client PCs. It also works with Cisco NAC and other third-party access control systems for better end point management.
LANDesk does not include anti-virus protection, but it will manage and make sure Symantec, McAfee, and Trend Micro anti-virus
engines are up-to-date.
Real-time protection was better than average, allowing only one piece of adware to slip through and blocking all others. It
ran well alongside Norton AntiVirus and behind the Windows XP firewall. When malware is found on a client PC, it -- like Trend
Micro Anti-Spyware for Small Business -- takes two passes to clean a system. The first job is to detect the malware; the second
is actually to clean it from the PC. To test LANDesk’s cleaning ability, I created a repair task based on the spyware detected
on my client, and set it to run at a specific time. Like clockwork, the repair job ran and removed the spyware from my PC.
Security Suite uses 17MB of RAM on a client and 20MB with 35 percent CPU utilization during a scan or repair operation.
LANDesk’s reporting system is one of the best available. There are scores of predefined reports, and each one can be customized
and saved for reuse later. I like that I can save my reports as HTML, Microsoft Word and Excel, PDF, and even rich text. Reports
include categories such as spyware detection, vulnerabilities, and security compliance.
For anyone already familiar with LANDesk Management Suite, the capabilities of LANDesk Security Suite should come as no surprise.
Security Suite is a truly enterprise-class management tool with good spyware protection and terrific reporting, but for the
untrained it offers a confusing and unintuitive administration interface.
McAfee VirusScan Enterprise 8.0 with Anti-Spyware Enterprise Module 8.0
The latest release of McAfee VirusScan Enterprise sees the addition of Anti-Spyware support bundled tightly with it. Part
of the overall McAfee enterprise family of products, VirusScan with the Anti-Spyware module scales to exceptional heights
and provides one of the most robust platforms to secure the enterprise. Its real-time virus and anti-spyware protection are
only average, but its reporting is the best of the group.
Installation of VirusScan on my Windows 2000 Server went smoothly. VirusScan and the Anti-Spyware module are all managed through
McAfee’s ePolicy Orchestrator (ePO). This provides a single console for all of your McAfee enterprise products, and even some
non-McAfee products.
Using the Getting Started Wizard, I went through the process of creating a VirusScan deployment task to get agents installed
on my Windows XP PCs. Then, I was able to create and update policies based on directory, groups, and PC. Admins have to import
AD information into ePO; ePO doesn’t directly support Active Directory.
Policy creation in VirusScan is similar to that in LANDesk Security Suite: easy if you know what you’re doing. After I understood
how the policies are nested and what to do, management went from seemingly impossible to just laborious. Also like LANDesk,
the number of configurations possible and the true enterprise scalability of ePO means spending some time understanding how
everything works together to get the most out of it.
Real-time protection for VirusScan stopped all of the viruses cold but did allow a couple of crafty adware pieces through.
Much like the real-time protection in Trend Micro Anti-Spyware for Small and Medium Business, VirusScan waits for a write
operation to inspect the file. Although it was able to stop most of the attacks, it didn’t stop them all.
To check VirusScan’s cleaning ability, I created an on-demand scan job and launched it from ePO. The scan located and cleaned
the pesky programs and returned the system to a clean state. One nice feature in VirusScan’s cleaning utility is its capability
to mark a file for removal later; for instance, during an overnight scan. This feature helps eliminate system hangs during
a clean operation or a pesky reboot in the middle of a workday.
VirusScan’s resource usage was on par with most other products, chewing up about 62MB of RAM at rest, and 78MB and 98 percent
CPU utilization during a scan-and-clean operation. In fact, one time the system became so unresponsive during a scan that
the only way I could regain control was to power-cycle the system.
Computer Associates eTrust PestPatrol Anti-Spyware Corporate Edition r5
Computer Associates, ca.com
|
| Good 7.6 |
|
| criteria |
score |
weight |
| Effectiveness |
8 |
50% |
 |
| Management |
7 |
20% |
|
| Reporting |
6 |
10% |
|
| Setup |
9 |
10% |
|
| Value |
7 |
10% |
|
|
|
Cost:
For 100 users, $39.95 per user
Platforms:
Compatible with Windows 98 and later
Bottom Line:
Computer Associate’s eTrust PestPatrol provides very good detection and removal of installed spyware. Its administrative UI
is easy to install, maintain, and use, but its reporting is very limited. Real-time detection and prevention of initial spyware
installation is very weak: It allows spyware to install but prevents the processes from running.
|
|
About our Reviews and Scoring Methodology
|
|
Eset NOD32 2.5 Antivirus System
Eset, eset.com
|
| Good 7.2 |
|
| criteria |
score |
weight |
| Effectiveness |
7 |
50% |
|
| Management |
7 |
20% |
|
| Reporting |
9 |
10% |
|
| Setup |
7 |
10% |
|
| Value |
7 |
10% |
|
|
|
Cost:
$2,060 for 100 enterprise users
Platforms:
Windows 95 and later, Linux OS Linux (Kernel 2.2.x, 2.4.x and 2.6.x, glibc 2.2.5 or higher); Novell NetWare 4.x and later
Bottom Line:
NOD32 Antivirus System has the potential to be a major anti-spyware player with a few enhancements, such as smoother, more
streamlined installation. Policies are flexible but building them is a chore. Reporting is very strong, allowing for many
different views into workstation histories. Detection and prevention is merely average: A small group of spyware slipped through.
|
|
About our Reviews and Scoring Methodology
|
|
F-Secure Anti-Virus Client Security 6
F-Secure, f-secure.com
|
| Excellent 9.3 |
|
| criteria |
score |
weight |
| Effectiveness |
10 |
50% |
|
| Management |
8 |
20% |
|
| Reporting |
9 |
10% |
|
| Setup |
9 |
10% |
|
| Value |
9 |
10% |
|
|
|
Cost:
For 100 users, $29.75 per user
Platforms:
Server: Windows 2000/XP/2003; client: Windows 2000/XP, F-Secure Policy Manager Console
Bottom Line:
F-Secure has rolled anti-virus, anti-spyware, and personal firewall protection into a single package. It has the best real-time
protection of any products in this roundup, stopping all attempts. On previously infected systems, detection and removal were
also first rate. Reporting is excellent, but it suffers from some organizational issues in the administrative UI.
|
|
About our Reviews and Scoring Methodology
|
|
LANDesk Security Suite 8.6
LANDesk, landesk.com
|
| Excellent 8.7 |
|
| criteria |
score |
weight |
| Effectiveness |
9 |
50% |
|
| Management |
8 |
20% |
|
| Reporting |
10 |
10% |
|
| Setup |
8 |
10% |
|
| Value |
8 |
10% |
|
|
|
Cost:
For 100 users, $5,900 for the first year, $2,900 each year after
Platforms:
Server: Windows 2000/2003 Server; client: Windows 95 and later, Mac OS 9.22 and later, HP-UX, IBM AIX 5.1, NetWare 6.0, 6.5,
Red Hat Linux 7.3, 8.0, 9.0, Solaris 8, Suse Linux 9.
Bottom Line:
LANDesk Security Suite scales to any size and complements the already strong LANDesk product family. It has very good detection
and remediation, and its real-time protection is above average, although an IE toolbar did slip through. Reporting is top
notch but administrative overhead is considerable.
|
|
About our Reviews and Scoring Methodology
|
|
McAfee VirusScan Enterprise 8.0 with Anti-Spyware Enterprise Module 8.0
McAfee, mcafee.com
|
| Very Good 8.2 |
|
| criteria |
score |
weight |
| Effectiveness |
8 |
50% |
|
| Management |
8 |
20% |
|
| Reporting |
10 |
10% |
|
| Setup |
8 |
10% |
|
| Value |
8 |
10% |
|
|
|
Cost:
For 100 users, $16 per user with 1-year support
Platforms:
Server: Windows NT 4 Server, Windows 2000/2003 Server; client: Windows NT 4, Windows 2000/2003/XP
Bottom Line:
The addition of Anti-Spyware Enterprise Module to VirusScan Enterprise provides a very scalable platform for protecting your
network from spyware and viruses. Reporting capabilities are excellent, but real-time protection is only average. Administration
is more difficult than that of most of the other products.
|
|
About our Reviews and Scoring Methodology
|
|
Sunbelt CounterSpy Enterprise 1.5
Sunbelt Software, sunbelt-software.com
|
| Very Good 8.5 |
|
| criteria |
score |
weight |
| Effectiveness |
8 |
50% |
|
| Management |
9 |
20% |
|
| Reporting |
9 |
10% |
|
| Setup |
9 |
10% |
|
| Value |
9 |
10% |
|
|
|
Cost:
For 100 users, $17.95 per user
Platforms:
Server: Windows 2000 and later; client: NT4 SP6a, Windows 98SE and later
Bottom Line:
CounterSpy Enterprise was one of the easiest products to install and maintain. Its real-time protection allows spyware to
install before terminating it, but its on-demand detection and remediation is very good. Reporting is good, but not as strong
as that of some others in this roundup.
|
|
About our Reviews and Scoring Methodology
|
|
SurfControl Enterprise Protection Suite - Enterprise Threat Shield
SurfControl, surfcontrol.com
|
| Very Good 8.3 |
|
| criteria |
score |
weight |
| Effectiveness |
8 |
50% |
|
| Management |
9 |
20% |
|
| Reporting |
8 |
10% |
|
| Setup |
9 |
10% |
|
| Value |
8 |
10% |
|
|
|
Cost:
For 100 users, $1,530 for a perpetual, one-time purchase. Annual subscription to the Threat Shield databases, $1,874
Platforms:
Server: Windows Server 2000/2003; client: Windows 98/ME and later
Bottom Line:
SurfControl Enterprise Threat Shield is straightforward to install, and administration isn’t overly complex. Real-time protection
proved better than average. It relies, however, on being connected to a management server, so disconnected users lose some
protection. It has a very small memory footprint, even during an on-demand scan. Its reporting engine is very capable.
|
|
About our Reviews and Scoring Methodology
|
|
Tenebril SpyCatcher 4.0 Beta
Tenebril, tenebril.com
|
| Beta |
|
Cost:
For 100 users, $26.40 per user.
Platforms:
Server: Windows 2000/XP/20003; client: Windows 2000/XP/2003
Bottom Line:
SpyCatcher is an easy-to-deploy-and-administer anti-spyware solution with great detection and remediation. Real-time protection
doesn’t block spyware installations but does stop any process from launching. Reporting is good, but it lacks customization.
|
|
About our Reviews and Scoring Methodology
|
|
Trend Micro Anti-Spyware for Small and Medium Business 3.0
Trend Micro, trendmicro.com
|
| Very Good 8.1 |
|
| criteria |
score |
weight |
| Effectiveness |
8 |
50% |
|
| Management |
8 |
20% |
|
| Reporting |
8 |
10% |
|
| Setup |
9 |
10% |
|
| Value |
8 |
10% |
|
|
|
Cost:
For 100 users, $17.85 per user
Platforms:
Server: Windows XP/2000/20003; client: Windows XP/2000/2003
Bottom Line:
Anti-Spyware for Small and Medium Business likely will be one of the best anti-spyware products available, once it matures
a little more. Real-time protection allows spyware to install before clamping down on it. On-demand scans and cleans work
well and remove any traces of spyware from a PC. Reporting could be made a little stronger if there were customization options.
|
|
About our Reviews and Scoring Methodology
|
|
Webroot Spy Sweeper Enterprise 2.5
Webroot, webroot.com
|
| Excellent 8.8 |
|
| criteria |
score |
weight |
| Effectiveness |
9 |
50% |
|
| Management |
9 |
20% |
|
| Reporting |
8 |
10% |
|
| Setup |
9 |
10% |
|
| Value |
8 |
10% |
|
|
|
Cost:
For 100 clients, $25.97 per client
Platforms:
Server: Windows NT 4.0 and later; client: Windows 98SE and later
Bottom Line:
Spy Sweeper is one of the best all-around anti-spyware tools. It offers good real-time protection and excellent detection
and remediation. Spy Sweeper is flexible enough that administrators can easily create policies based on specific needs. Reporting
would be better if it allowed for customizable reports.
|
|
About our Reviews and Scoring Methodology
|
|
|
|
Keith Schultz is president of NetData Consulting Services.
|
|
|
|
- Special Advertising Partners -
|
|
|
|
|
WHITE PAPERS
|
|
|
|
|
|
-
Protecting Microsoft(R) Applications - Microsoft Exchange, SQL, Active Directory, and SharePoint have quickly risen to mission-critical status in many companies...
-
Reduce Recovery Times and Tape Costs - Today's enterprises face a data protection challenge: how to optimize the backup and recovery of business-critical data ...
-
Secure, recover, and archive critical information - Today's businesses must keep their infrastructures up and running 24x7. That means that the physical systems, the operating...
-
Consolidating Workloads onto Mainframes - The flexibility, efficiency, and reduced cost of ownership virtualization provides makes it extremely compelling to large...
-
Transformational Analytics: Virtualizing IT Environments - The overwhelming complexity of the modern data center compounds the problem of how to safely virtualize IT environments....
-
Wide Area Data Services - Finally - some clarity in the application acceleration and WAN optimization space. Find out how WAFS, WAN optimization, ...
Technology White Papers by Topic |
|
Technology White Papers E-mail Alert |
|
|
|
Find out when the latest white paper is available:
|
|
|
|
|
|
|
INFOWORLD MARKETPLACE
|
|
|
|
|
|
» BUY A LINK NOW
|
|
|
|
|
|
| FIND PRODUCTS AND COMPANIES |
|
|
What's the 411 on GOOG-411?
Just as Google has become synonymous with "performing a Web search," 411 is understood to mean "information" -- as in "what's the 411?" I was thus surprised to discover, from a billboard, no less, that the king of search is taking on the ...
Apple HTML source reveals 'iPhone Extreme'
"This one's a stretch..." reports AppleInsider.
Um, yeah. Reporting on HTML code sightings of product names could be called a stretch, but iPhone Extreme has a ring to it.
Now, that sounds like the product Apple should have released first, rather ...
Open Sources 
Product Management
When I joined MySQL four years ago, there was quite a lot of debate about product management. We didn't actually have ...
Zero Day
Botnet herders tending smaller flocks
New research backs up the theory that botnet operators are keeping their networks smaller in a continued effort to keep ...
ADVERTISEMENT
|
E-mail
Printer Friendly
Reprints
(InfoWorld) - In the litigious world we live in, deploying a unified communications platform in your enterprise could...