Sophos End Point Security

Discussion in 'other anti-virus software' started by BRACdude, Mar 11, 2009.

Thread Status:
Not open for further replies.
  1. BRACdude

    BRACdude Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    16
    Hi,

    Just wondering if anyone has Sophos installed and what their experiences of it are like? In particular i'm looking at installing Sophos End Point Security into our environment of about 300 machines and would be very interested to hear if anyone else has it and how well it manages their clients, virus detection, application control, etc?

    Thanks in advance.
     
  2. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    There are better AV's out there other than Sophos to many false postives.

    And you can also check out Prevx Edge http://www.prevx.com/businessuser.asp

    TH
     
  3. BRACdude

    BRACdude Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    16
    Thanks for the reply & view, I know ESET's NOD32 engine is unquestionably superior but Sophos does have some things going for it in terms of 24/7 support, very good firewall and a better centralisation console from what i've seen comparing the 2 products so far.

    Still interested to hear from anyone who runs Sophos in a 'live' environment.

    Thanks
     
  4. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    Not a problem! ;)
     
  5. Escalader

    Escalader Registered Member

    Joined:
    Dec 12, 2005
    Posts:
    3,710
    Location:
    Land of the Mooses
    Can't comment on Sophos FW since I've never used it. Posts would have to be over in other firewalls threads. Did you do a search here on it?

    I'd wait for Stem's view on it myself.
     
  6. Baz_kasp

    Baz_kasp Registered Member

    Joined:
    May 1, 2008
    Posts:
    593
    Location:
    London
    Hiya,

    We run Sophos on our network (500+ machines) and really- it does what it says on the tin. To be quite honest, the false positive thing isn't an issue in the corporate environment because most of the things that are flagged as being packed or suspicious you wouldn't want on your network anyway (keygens, security tools). You are right regarding the Sophos enterprise console- it really is quite easy to deploy, use, manage and get an overview of your network of specific computers. Combined with our user account policy and other security arrangements we have yet to have a major infection deal any damage to our data or computers. The only cases when this has happened was when a laptop has gone AWOL for a large amount of time and it hasn't logged into the domain to be updated with the latest group policy and Sophos settings. Can't really comment on the firewall as we only use the AV part. The only thing I would do is be weary of activating any of the HIPS objects network wide at first...perhaps set up a new "test" policy on a test OU to see how it reacts to the software installed...we had a bit of a hiccup with itunes and some other programs when testing (HIPS/Regmod etc)

    Support is friendly, responsive and any missed samples etc are dealt with in a timely manner.

    Shop around but Sophos is a fair bet especially considering the price we got it for :)
     
  7. BRACdude

    BRACdude Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    16
    @ Baz_kasp, thats great thanks very much for info. I've sent you a PM asking a few more detailed questions. Cheers.
     
  8. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    971
    Location:
    Paris
    Unfortunately the FP'S also include such things as Your Uninstaller. After repeated contacts over a 9 month period they still hadn't corrected it.
     
  9. BRACdude

    BRACdude Registered Member

    Joined:
    Feb 20, 2009
    Posts:
    16
    You should be able to authorize PUA's & Adware flagged up in the scans through the policy so they are excluded from the scan?
     
Loading...
Thread Status:
Not open for further replies.