Jeff
Tue Oct 07 17:17:14 CDT 2003
A virus scanning plugin on your mail server is also an extremely good idea.
Virus scanning on the desktop may sometimes fail if the program crashes or
if it is not up to date, which can happen easily if your users do not inform
you of such failures. But blocking incoming virii at the server provides an
extra line of defense before the desktop.
I'd hate to think of what the headaches I would have if my mail servers
didn't automatically block executable attachments when the last few
outbreaks occured.
--
Jeff Umbach
"Steven L Umbach" <n9rou@comcast.net> wrote in message
news:n0hgb.51442$%h1.34264@sccrnsc02...
> I agree. Just to add, if anyone does not mind a little inconvenience, they
could also
> consider hardening their Internet Explorer settings to use the Internet
Explorer
> Enhanced Security Configuration that Windows 2003 uses by default.
Basically all
> internet browsing is treated as being in the restricted sites Web Content
Zone and a
> few configuration changes to advanced settings. Then you add your most
frequently
> visited sites that you trust to the trusted internet zone. Occasionally
you will need
> to relax settings if a particular site does not work correctly or add it
to the
> trusted zone. See KB link below for more information. ---- Steve
>
>
http://support.microsoft.com/default.aspx?scid=kb;en-us;815141
>
>
> "Leythos" <void@nowhere.com> wrote in message
> news:MPG.19eb60eb4110ec15989d2d@news-server.columbus.rr.com...
> > While the tracker idiot posts about how things don't work I thought I
> > might pass this along:
> >
> > 1) All client/friends computers under my control have Norton AV products
> > installed, it's never let me down at any time.
> >
> > 2) All of them have some form of blocking device - meaning they use a
> > Linksys router (or a LAN modem) or a software firewall of some type (or
> > they use a hardware based firewall device - PIX, Watchguard, Sonic,
> > etc...)
> >
> > 3) Dial-up or always-on is treated the same - there isn't really any
> > difference once they connect
> >
> > 4) All security patches are applied nightly where automated and weekly
> > if it requires manual intervention - if something hits the web and looks
> > bad we apply the patch immediately
> >
> > NONE of the computers have been compromised and none have required the
> > disabling of any of the services.
> >
> > Even the ones running IIS 4 and 5 have not been compromised.
> >
> > Don't believe Tracker - All you need to do is understand how they get
> > into your computer, and how to eliminate those points of entry.
> >
> > For the most part, if you have an updated Antivirus program (something
> > good, not some freeware), apply the Microsoft security patches (they
> > won't email them to you) using Windows Update (daily), and install some
> > form of inbound filter (Linksys, Tiny, Zone Alarm, etc...) your computer
> > will be safe.
> >
> > As a last measure, I suggest that you also install and run Spybot Search
> > & Destroy weekly - it's amazing what it finds on peoples computers :-)
> >
> > Following these methods I can honestly say that since 1974 not one
> > computer/system under my control has ever been compromised. I would also
> > like to point out that 75% of those computers were/are using Microsoft
> > based operating systems and applications.
> >
> > Tracker provides nothing to this group except spam and a moving target
> > for the flamers - remember, when you reply to her posts, remove her web
> > site information.
> >
> >
> > --
> > --
> > spamfree999@rrohio.com
> > (Remove 999 to reply to me)
>
>