Solved

Does McAfee Host Intrusion Prevention for desktops need ePolicy?

Posted on 2008-06-23
3
1,560 Views
Last Modified: 2013-12-09
Hi,

      I am not clear on McAfee's Host Intrustion Prevention software. Our company is running XP machines without a client\server environment. This particular LAN does not connect to the Internet. We were advised to use McAfee's HIPS solution version 6.1 however this requires ePolicy loaded on a Win2k or Win2k3 server.  Then HIPS send\recieves logs etc with the ePolicy server.
My question is:
Is there another product from McAfee that offers HIPS protection without the ePolicy module? I have found McAfee Host Intrusion Protect for desktops. Does this package offer security against hackers, worms etc without a client server environment? For instance, a user inserts a thumb drive with a virus.

Thank You, Missymadi
0
Comment
Question by:missymadi
  • 2
3 Comments
 
LVL 16

Expert Comment

by:legalsrl
ID: 21853454
Hi Missymadi

McAfee HIPS is exactly what it says on the tin, it's basically software based intrusion prevention

You can install the client files on your machines without ePO but there will be no reporting

If you want to protect against viruses then you would need a combination of VirusScan Enterprise and AntiSpyware which can be purchased as part of the Total Protection of Small Business or Enterprise packages available on the market today.

HIPS won't protect you from viruses, but it will protect you from hackers

Hope this helps
Thanks
Simon
0
 

Author Comment

by:missymadi
ID: 21855608
Hi Simon,

      Just to be clear to the auditors......I can install HIPS client w\o ePolicy and it will protect against hackers but there will not be any reporting to ePolicy of attempted intrusion attacks.

Thanks, MIssyMadi
0
 
LVL 16

Accepted Solution

by:
legalsrl earned 50 total points
ID: 21855660
Hi MissyMadi,

Yes, that's correct, you can install HIPS client without ePO

It will protect against hackers and buffer overflow attacks, but not viruses

Cheers
Si
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

PREFACE The purpose of this guide is to explain what the SEPC Status Utility is and how it works. I have written the utility using AutoIt and have included the source code for your review. You are welcome to modify the code to your liking, but I wi…
The purpose of this Article is to provide information for a newly released variant of malware – with the assumption that many EE Members will have need of the information. According to “Computerworld”, well over one million web sites have been co…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question