Changing IT support (current left, new IT support)

EFFECTIVE security is a LAYERED strategy.  Antivirus is necessary.  USER EDUCATION is necessary.  Web Filtering is necessary.  Intrusion Prevention is necessary.  Intrusion Detection is necessary.  Least privilege access is necessary.  Strong passwords are necessary.  

If you want to protect the client, you want as many defenses as you can get.

That said, Windows has a built in antivirus.  All antivirus stinks, so it doesn't matter if you buy a third party or use the built in one, because it can block/detect SOME things, you should be using something, even if it's the built in product.

Just to add on to what Lee was saying - I would say that 3rd party security software is usually better than the Windows antivirus simply because it covers different TYPES of scenarios. The quality of the antivirus definitions is pretty similar but threats aren't always straightforward.

I've tried a bunch of different security software, and while it's not my favorite, Comodo's internet security package saved my bacon once. Even though I'm very careful with everything and I don't visit any suspect sites, I accidentally double-clicked on the wrong file (which was a guaranteed zero-day trojan that I was researching at the time) and Comodo's sandbox ended up running the software and prevented the infection.

Most of the other 3rd party software (BitDefender, Kaspersky, etc) simply have a more comprehensive toolkit. Kaspersky had a webcam usage detector so I could know if a program was using my webcam without my authorization (and I could lock it down), and there's often things like automatic removable drive scanning, web proxies, protected browsers, IM scanning, ransomware detection and lockdown, HIPS, and so on.

So in my opinion, there is definite value in 3rd party security software above what Windows defender offers 

Upload suspicious files to virustotal and watch 70-90% of the antivirus products MISS the malware.  They all suck.  And the ones that catch it change with each flavor of malware.

ok thanks @Lee and @gr8gonzo 

I get the points, so the bottom line is leave the Sophos and still get an antivirus on each computers (ie: paid ESET) or leave Windows built AV?

I would agree to go with a third party AV (paid version, my prefer is ESET)...

let me know please. 

Yeah, I would go with a paid 3rd party AV on each PC and leave Sophos in place. That's my personal opinion.

ok agree...

Thanks @gr8gonzo...

One more question and this is very important as well. They currently have a pirated version of Windows Server 2019 running on a PC (alongside with the Sophos firewall). 

The reason for the windows server PC running in their network so they can host and share POS and sharedfiles within the network. 

My first step would be to apply the genuine license key to the current OS (W.Server.2019).

So here is my thoughts. I have told the client (remember 14 computers + sophos firewall)...not to get the Windows Server computer rather invest into an 4TB to 8 TB QNAP NAS so its cheaper. Speaking on the $$$ sign, how much normally an hardware computer server 2019 costs?

Reason being, I have told my client to invest into the QNAP nas since they already have the Sophos Firewall in place - really there is no point in getting the Windows Server 2019 since the current one is currently housing the hosting on files storage - perhaps just need to license the current Windows Server with a genuine license so it receives updates and securities from Microsoft - or remove the Windows Server PC and get the NAS. what is the best moving forward

Summary: (my proposals to the client)

(1) Current Windows Server 2019 is not genuine - solution to license it (I can provide a genuine license from our supplier)

(2) Sophos 107 Security Appliance used for Firewall (already established and setup from previous IT, leave it as is)

(3) Propose to the client to invest into getting an ESET Antivirus (Eset Endpoint Server + Client), ESET Endpoint to install onto the Windows Server 2019 PC and Eset client to install onto the 14 computers. 

(4) Leave the current Windows Server 2019 - just give the license genuinely or remove it (Windows Server 2019 PC) and propose to the client to invest in the QNAP or just leave the windows server and license with genuine?

Please let me know your recommendations so I can write the proposals to the client...

Thanks

Anyway's, please can you 

If that's their only server, I would make absolutely certain that they're not using the Windows Server machine for anything else (domain controller / auth / DNS / mail / etc). In small, startup companies, you usually try to squeeze everything you can out of the resources you have, and there's often poor documentation of internal infrastructure. 

That often results in people using the server for unexpected reasons or -thinking- they don't use it for anything else when they actually do. I'm not sure if you're talking about a full-blown Server 2019 license or just an "Essentials" license (which is basically deprecated in favor of Azure / 365...)? 

I would lean more towards licensing the server anyway, if for no other reason that having a central, general-purpose server provides some flexibility when growing. On top of that, it sounds like it's working for them at the moment, so "don't fix what ain't broken" (except for the license issue). 

A NAS is fine when every other need is met and you simply need dedicated storage. 

> Speaking on the $$$ sign, how much normally an hardware computer server 2019 costs?

I'm not sure what you're asking. Are you asking about the cost of the raw hardware? If so, it all depends on the hardware you're getting. Or are you asking about licensing cost?

Very detailed and straight to my point gr8gonzo - yes I will check once again what version of the Windows Server they are currently using...then I can provide the license accordingly so the OS is legit (need to contact my supplier for how much the license worth once I found out). 

> Speaking on the $$$ sign, how much normally an hardware computer server 2019 costs? - yes am asking both, hardware and OS...

Note: the company is currently running on a Google Business for email.

For hardware $$$, it all depends on the hardware. For startups and small companies, I've seen older hardware work just fine. It's pretty common for small shops to buy retired servers from bigger companies and you can find used PowerEdges and so on for the cost of a cheap desktop. I ran a few moderately-busy web sites in a small colocated rack on a pair of old PowerEdge 2950s which I bought used on eBay for about $400 a piece. Saved me thousands in dedicated hosting costs in the long run. But that's not for everyone and some people have had bad experiences with used hardware (I bought two specifically in case the first one died). Plus there's usually no warranty or support on used equipment.

If you want that support and some better reliability, then you'd be better off just pricing a server on a manufacturer site. You won't get any significant discounts as a small business but you also don't usually need a lot of power, so you probably aren't going to be spending $6,000 on the server.

The nice thing about getting it new, straight from a manufacturer is that they'll probably price it with the server OS license and sometimes there's a discount by doing that 

The alternative is to look at a reliable retailer like NewEgg. You can't customize much, if anything, but they usually have good prices 

Thank you very much gr8gonzo - you have been very helpful. 

My client have asked me to quote them a second hand Computer Server with Windows Server 2019. Please can you share me some links from reliable source online so I can make some comparison?

Perhaps one brand new one and one second hand. 

Thank you and appreciate the support. 

Hi Bakaka,

Here's the server & workstation section from NewEgg: 

https://www.newegg.com/p/pl?N=100283198 

There's a "Condition" filter on the left that will let you filter down to new / refurbished / used / open box.

I had a friend who ordered a few second-hand servers from ServerMonkey.com. He's never complained about them, so I presume they worked out well for him.

Or you can build and buy direct from a manufacturer like Dell:

https://www.dell.com/en-us/shop/servers-storage-networking/sf/poweredge-rack-servers

Just a disclaimer - I simply have worked with a lot of Dell PowerEdge servers, which is why I keep referring to them. I know there are other good brands like HP and so on, but I've just never personally worked with their server hardware. 

Thanks - I probably would recommend a Virtual server than of a Physical server. 

So what would be your recommendation for the 14 computers - its a small business and considering a virtual server - would this be https://www.newegg.com/p/2NS-000M-05HA4?quicklink=true enough or we need a high end one?

Thanks