On 06/10/2013 12:08 PM, Mack Rhinelander wrote:
I'm deploying antivirus in our small office, and I'm researching best practices.Is antivirus appropriate for Mac's/OS X? Is antivirus appropriate for any unix varieties? Mack Rhinelander
Do you work in a heavily regulated industry? If so, there will be many white papers that you can reference for best practices. Other than that, it depends.
If the users are technical and reasonably well versed in safe email and surfing, you may not even need anything other than making sure systems and software are regularly patched (you have a reasonably accurate inventory and a policy against users installing software without permission, right?)
If users are not technical, you may want a multi-tier protection scheme, which may include anti-virus, anti-malware, web filtering, proxy server, etc.
If you're in a single OS environment it's likely an easier choice than mixed. Windows tend to be the most vulnerable, although MacOS is starting to become a bigger target. Linux/Unix is still much tougher to infect if systems are patched and users don't run as root.
In our case, all our desktops are Windows which run Sophos anti-virus. Windows servers also run Sophos. We have the Sophos console installed that does the downloads and clients all pull from that central server. Nice reports for management too. Our Linux servers don't have any AV, with the exception of the mail server that has clamav installed to scan incoming email. Of course, none of our machines are directly accessible on the Internet so have a lower risk profile.
If I was running a mixed environment, I would use AV on the Apple products as well. I've had too many users click on attachments to be comfortable without something on the clients.
Hope this helps, KouroshG
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Discuss mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
