malicious code web browsing protection..suggestions please
24 September 2001, 07:51 PM
#1
Scooby Regular
Thread Starter
Join Date: May 2001
Location: Scotland
Posts: 4,580
Likes: 0
Received 0 Likes
on
0 Posts
Anyone out there using content checking, such as websweeper or finjan to check web browsing content for malicious code?
I need to come up with a network solution to stop the likes of nimda through web browsing..
I need to come up with a network solution to stop the likes of nimda through web browsing..
25 September 2001, 08:26 AM
#2
Scooby Regular
Thread Starter
Join Date: May 2001
Location: Scotland
Posts: 4,580
Likes: 0
Received 0 Likes
on
0 Posts
Got a Packetshaper on the pipe so will be able to gather some stats soon 
, looking at around 3000 potential web users though.
Its just required for http.
Cheers
, looking at around 3000 potential web users though.Its just required for http.
Cheers
25 September 2001, 09:18 AM
#3
Scooby Senior
Why not roll it all into one, we do a rack mount that will handle your web traffic and scan POP and SMTP, as a guide this thing can scan 120,000 average size email msgs an hour.
Once you get some results I can get someone to spec product if you like.
Once you get some results I can get someone to spec product if you like.
25 September 2001, 05:48 PM
#6
Scooby Regular
Join Date: Nov 2001
Location: Leeds - It was 562.4bhp@28psi on Optimax, How much closer to 600 with race fuel and a bigger turbo?
Posts: 15,239
Likes: 0
Received 1 Like
on
1 Post
We use websweeper.. but it didnt get nimda... our networks team installed and configured it.. I'm now sort of taking responsibility for it(removed their admin rights..) it was configured to scan using netshield, but It was also running ods as well... hence using 1gb of ram, and making the internet slow...
Got to recommend what jack is on about as when I went to nai to do the course we got a demo of it... runs customized linux... zero admin if I remember rightly...
I was just starting to evaluate surfcontrol the other day but I dont think that can scan for viruses...
Let me know what you decide, as our internet gateways are our weak points at the moment.
David
Got to recommend what jack is on about as when I went to nai to do the course we got a demo of it... runs customized linux... zero admin if I remember rightly...
I was just starting to evaluate surfcontrol the other day but I dont think that can scan for viruses...
Let me know what you decide, as our internet gateways are our weak points at the moment.
David
25 September 2001, 08:19 PM
#7
Scooby Regular
Thread Starter
Join Date: May 2001
Location: Scotland
Posts: 4,580
Likes: 0
Received 0 Likes
on
0 Posts
I managed to get the httpurlpattern.cf file edited on our Raptor firewall today, added scan for *.ida and *.idq(string) and *.eml files on the http rule, tests show this seems to work a treat 
placed an eml file on a web server and I can't download it now 
I'm going to install FinJan surfgate in the morning and test that on a 30 day eval I've been told websweeper needs a server per 500 users, FinJan state a reasonable server can handle 4000 users..
Jack what product do you sell? mail me if you want
Cheers
John
placed an eml file on a web server and I can't download it now I'm going to install FinJan surfgate in the morning and test that on a 30 day eval I've been told websweeper needs a server per 500 users, FinJan state a reasonable server can handle 4000 users..
Jack what product do you sell? mail me if you want
Cheers
John
Trending Topics
25 September 2001, 08:27 PM
#8
Scooby Regular
Join Date: Mar 2001
Location: Berkshire
Posts: 5,528
Likes: 0
Received 0 Likes
on
0 Posts
<BLOCKQUOTE><font size="1" face="Verdana, Arial">quote:<HR>Originally posted by JackClark:
<B>Why not roll it all into one, we do a rack mount that will handle your web traffic and scan POP and SMTP, as a guide this thing can scan 120,000 average size email msgs an hour.
Once you get some results I can get someone to spec product if you like.[/quote]
Jack
Can you let me know some more details about this box, like what it is, OS, etc. Am very interested !!
Dave
<B>Why not roll it all into one, we do a rack mount that will handle your web traffic and scan POP and SMTP, as a guide this thing can scan 120,000 average size email msgs an hour.
Once you get some results I can get someone to spec product if you like.[/quote]
Jack
Can you let me know some more details about this box, like what it is, OS, etc. Am very interested !!
Dave
25 September 2001, 10:15 PM
#9
Scooby Senior
mega_stream, I don't sell any products, I work in Product Management/Marketing as a general gob shi*e for McAfee part of Network Associates. I do visit our Slough - armpit of England - offices quite often, that place is infested with salesoids who'd love a chat.
Dave, full details of this box are available on our web site at
Dave, full details of this box are available on our web site at
26 September 2001, 07:51 AM
#10
Scooby Regular
Join Date: Mar 2001
Location: NZ
Posts: 767
Likes: 0
Received 0 Likes
on
0 Posts
seems part of the solution is instal the latest version of Internet Explorer (version 6.0 or if on an old OS, try IE 5.5 with SP2); they are claimed to be more resilient to attack ...... (?nimda wouldn't have got thru).
regards
regards
Thread
Thread Starter
Forum
Replies
Last Post
Mattybr5@MB Developments
Full Cars Breaking For Spares
12
18 November 2015 07:03 AM
Sam Witwicky
Engine Management and ECU Remapping
17
13 November 2015 10:49 AM