[THIN] Re: Trend - scanning on citrix
- From: Andy <andysideas@xxxxxxxxx>
- To: thin@xxxxxxxxxxxxx
- Date: Thu, 23 Mar 2006 07:04:15 +0000
You need to make an assesment on how files can get to the server in the
first place.
At our place the other way to get unknown files is from the internet and
email. We use Trend Antiviris gateway to scan and in some cases block(mp3,
exe) files. No client drives are mapped and of course no usb access.
Email is also scanned, so we are pretty safe having NO antivirus running in
realtime. However I do run a scan just after the server reboot script kick
in.
On 3/22/06, Rick Mack <Rick.Mack@xxxxxxxxxxxxxx> wrote:
>
> Hi Ronnie,
>
> i/o tends to be skewed towards mostly read activity.
>
> If you checked on write to make sure no virus was written to the disk how
> else is it going to get there?
>
> If you want to be paranoid do a nightly scan as well, the only thing
> you'll accomplish in checking on read is to slow your systems down. Disk i/o
> (and network i/o) are the most common system bottlenecks already, why make
> it any worse than you have to.
>
> regards,
>
> Rick
>
> Ulrich Mack
> Volante Systems
>
> ________________________________
>
> From: thin-bounce@xxxxxxxxxxxxx on behalf of Hamilton, Ronnie
> Sent: Thu 23/03/2006 0:15
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Trend - scanning on citrix
>
>
>
> Hi,
>
> I am currently moving all my citrix servers to the new OfficeScan v7 from
> Server Protect.
>
> Question:
>
> Currently some of the servers were set to set to incoming only and
> others were set to incoming & outgoing.
>
> My thinking would be to use incoming and outgoing as this would be
> more secure, but there may be processing overheads.
>
>
> Has anyone any thoughts on this?
>
> Thanks
>
> Ronnie
>
> Visit our website : www.ltai.ie
>
>
>
>
> **********************************************************************************
>
> This email and any files transmitted with it are confidential and
>
> intended solely for the use of the individual or entity to whom they
>
> are addressed. If you have received this email in error please notify
>
> the system manager.
>
>
>
>
> **********************************************************************************
>
>
>
>
>
> #####################################################################################
> This e-mail, including all attachments, may be confidential or
> privileged. Confidentiality or privilege is not waived or lost because this
> e-mail has been sent to you in error. If you are not the intended recipient
> any use, disclosure or copying of this e-mail is prohibited. If you have
> received it in error please notify the sender immediately by reply e-mail
> and destroy all copies of this e-mail and any attachments. All liability
> for direct and indirect loss arising from this e-mail and any attachments is
> hereby disclaimed to the extent permitted by law.
>
> #####################################################################################
>
>
Other related posts:
