Solved

Bigfix  and Smtp port

Posted on 2010-11-27
3
562 Views
Last Modified: 2013-11-22
I would like to know where in Bigfix console can I configure the anti virus not to scan any smtp inbound/outbound messages.

Thanks
0
Comment
Question by:jskfan
  • 2
3 Comments
 
LVL 61

Accepted Solution

by:
btan earned 500 total points
ID: 34224498
There is
a) BigFix Client Manager for Endpoint Protection (CMEP), it is intended to supersede the BigFix Client Manager for Anti-Virus (CMAV)
b) BigFix/Trend Micro Endpoint Protection

For (a), check out it user guide. Pg 27 stated additional scan options that enable you to select scan inclusions and exclusions, specify advanced scan options, specify virus detection options, specify destination options for unwanted programs, and specify log file options. Typically fixlet should handle those tasks but if it need to achieve what you want, you may have to engage with BigFix (and AV) support as it may eventually required that certain option that the AV can take in as configuration (or even sending a one time patch to achieve it (maybe to edit some registry depending on the AV).

For the supported AV, see pg 4 - 5. It include vendors such as McAfee, Symantec, IBM and Trend Micro
@ http://support.bigfix.com/product/documents/CMEP/CMEP_Users_Guide_80.pdf

For (b), it is inherently scanning client hard drives, files and/or the boot sector. There is no check on the Smtp scanning option though. There is the firewall that protect against both inbound and outbound port violations on your endpoints, but it may not be what you are looking out for
@ http://support.bigfix.com/product/documents/core/CPM_Users_Guide_80.pdf
0
 
LVL 61

Assisted Solution

by:btan
btan earned 500 total points
ID: 34224619
Just some thought, it would be best to check if the AV vendor even support it via their centralised mgmt console, if so, chances are higher for customised fixlet
0
 

Author Closing Comment

by:jskfan
ID: 34273384
thanks
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Malicious software is nothing new. Viruses have been created and spread since before physical networks became popular; back then viruses spread via floppy disk and modem connections with shared systems. Viruses weren't so rampant and protecting your…
Cybersecurity has become the buzzword of recent years and years to come. The inventions of cloud infrastructure and the Internet of Things has made us question our online safety. Let us explore how cloud- enabled cybersecurity can help us with our b…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now