Sophos End Point Security

Hi,

Just wondering if anyone has Sophos installed and what their experiences of it are like? In particular i'm looking at installing Sophos End Point Security into our environment of about 300 machines and would be very interested to hear if anyone else has it and how well it manages their clients, virus detection, application control, etc?

Thanks in advance.

 

There are better AV's out there other than Sophos to many false postives.

And you can also check out Prevx Edge http://www.prevx.com/businessuser.asp

TH

 

Thanks for the reply & view, I know ESET's NOD32 engine is unquestionably superior but Sophos does have some things going for it in terms of 24/7 support, very good firewall and a better centralisation console from what i've seen comparing the 2 products so far.

Still interested to hear from anyone who runs Sophos in a 'live' environment.

Thanks

 

Not a problem!

 

Can't comment on Sophos FW since I've never used it. Posts would have to be over in other firewalls threads. Did you do a search here on it?

I'd wait for Stem's view on it myself.

 

Hiya,

We run Sophos on our network (500+ machines) and really- it does what it says on the tin. To be quite honest, the false positive thing isn't an issue in the corporate environment because most of the things that are flagged as being packed or suspicious you wouldn't want on your network anyway (keygens, security tools). You are right regarding the Sophos enterprise console- it really is quite easy to deploy, use, manage and get an overview of your network of specific computers. Combined with our user account policy and other security arrangements we have yet to have a major infection deal any damage to our data or computers. The only cases when this has happened was when a laptop has gone AWOL for a large amount of time and it hasn't logged into the domain to be updated with the latest group policy and Sophos settings. Can't really comment on the firewall as we only use the AV part. The only thing I would do is be weary of activating any of the HIPS objects network wide at first...perhaps set up a new "test" policy on a test OU to see how it reacts to the software installed...we had a bit of a hiccup with itunes and some other programs when testing (HIPS/Regmod etc)

Support is friendly, responsive and any missed samples etc are dealt with in a timely manner.

Shop around but Sophos is a fair bet especially considering the price we got it for

 

@ Baz_kasp, thats great thanks very much for info. I've sent you a PM asking a few more detailed questions. Cheers.

 

Unfortunately the FP'S also include such things as Your Uninstaller. After repeated contacts over a 9 month period they still hadn't corrected it.

 

You should be able to authorize PUA's & Adware flagged up in the scans through the policy so they are excluded from the scan?