Preventing 0 day Threats.
Created: 16 Aug 2009 | 2 comments
I was just wondering when you would have a product that blocks unknown or new threats. BluePoint Security has a product like this and a very easy to use console. I know mcafee bought a company that had a whitelisting approach. It seem to be where the industry is going. BluePoint Security has both personal and enterprise versions of whitelisting and av technology.
idea Filed Under:
Comments
The Proactive Threat
The Proactive Threat Protection feature of SEP does the same thing. Which version of SEP are you running?
When you say 'symantec
When you say 'symantec proactive threat protection does the same thing' I think you mean that Proactive Threat Protection checks the "performs zero day protection" box. It doesn't really perform it well in my opinion. For that you need application whitelisting.
While Symantec offers the capability to allow or disallow applications from running in SEP11 this process is quite tedious. It would be better to purchase something like Bit9 that will provide up to date lists of valid applications. So could then ALLOW firefox, and bit9 would keep track of updates, and I wouldn't have to rush out and make sure each subsequent release of firefox is hashed and put on a whilte list.
With a username like Bluepoint security, I find myself wondering if this user is just here to spam about bluepoint security or he/she is a legitimate Symantec customer.
Would you like to reply?
Login or Register to post your comment.