Skip to main content
Question

Endpoint Protection, What are you using? and why?

  • November 24, 2015
  • 35 replies
  • 126 views
Show first post

35 replies

G
Forum|alt.badge.img+16
  • gachowski
  • Honored Contributor
  • November 27, 2015

I haven't checked in a year, but back then Microsoft client only checked for windows stuff...

C

Chris_Hafner
Forum|alt.badge.img+27
  • Chris_Hafner
  • Jamf Heroes
  • November 30, 2015

We're Sophos Cloud, mostly to make sure we kill any windowsy infected file and or genio like things. That said, I am really really tempted to forego the whole lot if I wasn't scared of 'future possibilities'.

F
Forum|alt.badge.img
  • Flopik
  • New Contributor
  • February 13, 2016

For those with EcatService running, if you have admin right, try pausing the process using process hacker

D
Forum|alt.badge.img+1
  • deadlift
  • New Contributor
  • August 1, 2016

@gachowski I find that interesting, and I keep hearing that. I was on a mac at IBM from 2011 until this spring. The workstation security rules said we had to run SEP, and i'm pretty sure the managed client I had last summer forced SEP installs. I heard this rumor again last week, and checked with two old colleagues. One still had SEP installed on his mac, and the other checked the security rules and said yup, still need SEP..

Which macs are not getting antivirus again?

J
Forum|alt.badge.img+7
  • jonlju
  • Valued Contributor
  • August 1, 2016

@deadlift I used to work for IBM as well and think the whole company had to run SEP, regardless of if you were a Windows, Linux och OSX user. We had monthly checks run to ensure compliancy having SEP installed.

At my current workplace we use F-Secure on both OSX and Windows (I'd say it's a 50/50 split here).

G
Forum|alt.badge.img+16
  • gachowski
  • Honored Contributor
  • August 1, 2016

@deadlift

I am just repeating what IBM said publicly here

https://www.jamfsoftware.com/resources/mac-ibm-zero-to-30000-in-6-months-video/

And that was confirmed in questions session here...

https://docs.google.com/document/d/1ufpf_yfXpRD7Qcid4ft2c-cGd_6XgYEZy_FPP78lXQQ/edit

C

D
Forum|alt.badge.img+1
  • deadlift
  • New Contributor
  • August 1, 2016

It may be posted, there, and I've since left IBM, but I had two friends still there with mac check. Still have SEP. Literally seen it on the managed MacBooks.

donmontalvo
Forum|alt.badge.img+36
  • donmontalvo
  • Hall of Fame
  • August 1, 2016

Liability and accountability are things.

Large enterprise requires that all workstations/servers are protected. Doesn't mean you have to live with "We don't understand Apple so out-of-box settings will have to do".

In every large company where we've managed Macs, part of our job is to teach/guide the company. This includes collaborating with the folks who manage SEP, ePO, etc., so exclusions are right, etc.

Its an inconvenient reality in large enterprise environments. Companies that are side stepping this requirement might want to shop for a big-@$$ diaper, and review their resumes, in case the platform is compromised.

That is if you're still employable after failing to protect big enterprise.

--https://donmontalvo.com
G
Forum|alt.badge.img+16
  • gachowski
  • Honored Contributor
  • August 1, 2016

@donmontalvo

That reads like you are implying that IBM and Apple don't understand Apple "don't understand Apple so out-of-box settings will have to do".

That is surely not fair, to IBM and Apple...

C

donmontalvo
Forum|alt.badge.img+36
  • donmontalvo
  • Hall of Fame
  • August 2, 2016

If a company requires antivirus protection, most complaints stem from bad (out of box) exclusions, etc.

When exclusions etc. are set up properly, requirements can be met without putting the company at risk.

--https://donmontalvo.com
Terms & ConditionsCookie settingsAccessibility statement