Antivirus on POS: What to use?

I've had great experiences with Symantec Antivirus. We use the Client/Server Corporate version at all of our stores, covering about 10 machines per store plus three domain controllers. The SAV Server automatically pushes down new virus definitions and alerts the sys admin if someone's LiveUpdate isn't working. I've scheduled all the LiveUpdates to run at night when everyone is off work so the only time the user sees anything to do with the antivirus is when their machine is actually infected. As far as reporting goes, I haven't really played with it enough to know much about SAV's abilities. It's something I keep meaning to do but I never really get around to it.

Hope this helps!

-- Shaun Mart> We are currently running a variety of AV applications in our 20-store

Thanks Shaun, I too have never had a bad experience with Symantec. I particularly like being able to point the client at the server and then just leave it alone. Right now I definitely worry a lot more about my remote stores than any of the servers, in terms of risk. Do let me know how you feel about their licensing scheme as I've never had to take care of the licensing.

I'm starting to look pretty seriously at NOD32 after checking out the results at av-comparatives, URLs below for the two most recent (reports apparently have to be taken in concert as they are separate tests for different parameters):

Also, have you experienced any major outbreaks either with Symantec or any other product since you've been running MSPOS?

Thanks for your input!

Brandon

Forkbeard wrote:

I never liked norton that much. I had it on several machines at work. All were kept fully updated. Just recently I switched them all to Trend Micro and found several virus entries that norton missed. Nothing major, but anything is too much for me. NOD32 and Kasperky are probably the best you can get but I tested them along with others on our systems and they caused quite a bit of slowdown when opening an application. So it's a trade off on that. Trend Micro has done quite well with minimal slowdown, but it has a crappy firewall.

We had one outbreak amongst the Grisoft AVG protected machines. Outbreak is probably too harsh a term though. AVG was able to quarantine and contain the viruses but couldn't actually clean the infected files. After a little coaxing, Symantec spotted and cleaned the files that AVG had quarantined. I've never ahd to deal with the licensing personally, so I couldn't offer an opinion on that. NOD32 seemed to perform really well, definitely worth getting a quote on. I'd never heard of them before seeing those PDFs.

-- Shaun Mart> Thanks Shaun,

2 advantages of AVG are: 1) low overhead, doesn't slow machines down 2) better license pricing.

Go hardware! We're running Fortigate 60 routers that scan all inbound and outbound traffic for viruses in real time. Automatic updates. When you factor in the cost of AV software, etc., the TCO is better than a cheap Linksys/Netgear/D-Link router.

Bonus! I have no A/V software to deal with anymore except for the few laptops in the company. We're using NAV on the laptops - it's not the greatest but it's OK. I'll probably switch to Trend or Comodo with future laptop purchases or sooner--when NAV subscriptions expire.

Tom

"El Borba" wrote:

In my opinion you are playing with fire. Suppose a laptop is used in a hotel, has dated defs and gets infected. The user brings the laptop back onto your network and infects every computer because you have no AV installed. Fortigate themselves do not support running without Antivirus software when using their products. At least you won't be sending the virus outbound thanks to Fortigate.

Layers of protecti> Go hardware! We're running Fortigate 60 routers that scan all inbound and

Since I starded this thread I just wanted to post an update.

I have gotten through the testing on ESET's NOD32 and Avast!, both were the enterprise versions of the product. I have to say that I really like the protection provided by NOD32 compared to any other product and the configuration options are infinite. By and large this advanced degree of configurability will appeal to the geek in you. There is more that you can do with ESET than you can with Avast!. I wasn't happy at all with NOD's documentation, I don't think they've hired a tech writer to comb over their procedures or their grammar. It will have you going in circles. As the counterpoint Avast! is super-easy to install and get up and running. Sure, it doesn't ask you if you want to configure 200 different options prior to building your first remote installation package but then it took me 10 minutes to get there rather than 1.5 days for NOD32. I haven't gotten back the pricing on Avast yet, and I'm going to get to Kapersky soon as I have another test platform built out... we're growing too fast to keep machines on the floor. Now you ask, if they're growing so fast what are they doing running MS RMS?!?!

More later,

Brandon

Brandon,

You also might take a look at the new MS Forefront. Its just going into beta;