Hi,

Just wondering if anyone has Sophos installed and what their experiences of it are like? In particular i'm looking at installing Sophos End Point Security into our environment of about 300 machines and would be very interested to hear if anyone else has it and how well it manages their clients, virus detection, application control, etc?

Thanks in advance.

There are better AV's out there other than Sophos to many false postives.

-{ Quote: "ESET NOD32 Antivirus 4 Business Edition
Management Console | Antivirus | Antispyware

ESET NOD32 Antivirus combines powerful management tools, ease of use for end users, impressive performance, and state-of-the-art proactive threat detection. It is the effective antivirus protection for your business' valuable data assets while ensuring regulatory compliance.

The Business Edition of ESET NOD32 Antivirus includes all the features and benefits described above, but has additional functionality and flexibility that every growing business requires:
Additional Benefits

Supports Complex Compliance Requirements — ESET NOD32 Antivirus adds critical features, such as external drive access control and scanning, Cisco Network Admission Control (NAC) compatibility, as well as enhanced logging and reporting functions to support your compliance initiatives.

Host-based Intrusion Prevention System — Unauthorized attempts to modify your OS or applications are actively blocked through a combination of advanced behavioral analysis and network filtering that monitor your system processes, files, and registry keys. HIPS protects against modern blended threats that may have bypassed your network perimeter security.

Easy to Manage — ESET Remote Administrator provides a single management console to control an entire network from a single screen—supporting tens to thousands of computers. Installation, updates, alerts and other tasks are all easily managed from these intuitive screens. Integrated SysInspector makes it easier for IT administrators to diagnose and resolve problems. To effectively manage your networked systems, the updated console smooths Active Directory integration and simplifies policy creation. With support for Oracle, MySQL and MS-SQL databases, it also handles increasingly large deployments and runs significantly faster.

Usability Improvements For administrators, version 4 offers:

* License Manager with simplified tools to manage multiple licenses with different terms
* Read-only access for Management Console which enables multiple administrators to share tasks without risk of overwriting configurations
* Notification Manager to keep administrators informed of all key events with customizable alerts
* Full support of Cisco Network Admission Control (NAC) compliance initiatives
* More efficient use of network bandwidth and improved log storage scalability
* Advanced Protection status screen that informs you of threat detections
* Password protection that prevents ESET NOD32 Antivirus from being uninstalled by unauthorized employees or visitors

System Requirements

Processors supported: Intel or AMD x86/x64
Operating Systems: Microsoft Windows 2000, Microsoft Windows XP (32- and 64-bit editions), Microsoft Windows Vista (32- and 64-bit editions), Microsoft Windows Server 2000 (32- and 64-bit editions), Microsoft Windows Server 2003 (32- and 64-bit editions), Microsoft Windows Server 2008 (32- and 64-bit editions)
Memory: 44 MB
Disk Space (download): 28 MB
Disk Space (installation): 35 MB
http://www.eset.com/products/nod32.php#nod32_business
" }-

And you can also check out Prevx Edge http://www.prevx.com/businessuser.asp

TH

Thanks for the reply & view, I know ESET's NOD32 engine is unquestionably superior but Sophos does have some things going for it in terms of 24/7 support, very good firewall and a better centralisation console from what i've seen comparing the 2 products so far.

Still interested to hear from anyone who runs Sophos in a 'live' environment.

Thanks

Not a problem! ;)

-{ Quote: "Thanks for the reply & view, I know ESET's NOD32 engine is unquestionably superior but Sophos does have some things going for it in terms of 24/7 support, very good firewall and a better centralisation console from what i've seen comparing the 2 products so far.

Still interested to hear from anyone who runs Sophos in a 'live' environment.

Thanks" }-

Can't comment on Sophos FW since I've never used it. Posts would have to be over in other firewalls threads. Did you do a search here on it?

I'd wait for Stem's view on it myself.

-{ Quote: "Thanks for the reply & view, I know ESET's NOD32 engine is unquestionably superior but Sophos does have some things going for it in terms of 24/7 support, very good firewall and a better centralisation console from what i've seen comparing the 2 products so far.

Still interested to hear from anyone who runs Sophos in a 'live' environment.

Thanks" }-

Hiya,

We run Sophos on our network (500+ machines) and really- it does what it says on the tin. To be quite honest, the false positive thing isn't an issue in the corporate environment because most of the things that are flagged as being packed or suspicious you wouldn't want on your network anyway (keygens, security tools). You are right regarding the Sophos enterprise console- it really is quite easy to deploy, use, manage and get an overview of your network of specific computers. Combined with our user account policy and other security arrangements we have yet to have a major infection deal any damage to our data or computers. The only cases when this has happened was when a laptop has gone AWOL for a large amount of time and it hasn't logged into the domain to be updated with the latest group policy and Sophos settings. Can't really comment on the firewall as we only use the AV part. The only thing I would do is be weary of activating any of the HIPS objects network wide at first...perhaps set up a new "test" policy on a test OU to see how it reacts to the software installed...we had a bit of a hiccup with itunes and some other programs when testing (HIPS/Regmod etc)

Support is friendly, responsive and any missed samples etc are dealt with in a timely manner.

Shop around but Sophos is a fair bet especially considering the price we got it for :)

@ Baz_kasp, thats great thanks very much for info. I've sent you a PM asking a few more detailed questions. Cheers.

Unfortunately the FP'S also include such things as Your Uninstaller. After repeated contacts over a 9 month period they still hadn't corrected it.

-{ Quote: "Unfortunately the FP'S also include such things as Your Uninstaller. After repeated contacts over a 9 month period they still hadn't corrected it." }-

You should be able to authorize PUA's & Adware flagged up in the scans through the policy so they are excluded from the scan?