|
Posted by Winged on September 30, 2005, 7:25 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> No, it's not done every morning, but it is at least done once, when they
> arrive on campus. They even supply AV to those students without (on our
> site license). That way they can at least _start_ the academic year
> without the network coming under attack.
>
> Students are also not allowed to plug their laptops into the normal
> campus sockets - they are only allowed to plug in to a special network
> (colour coded patresses).
>
> Steve
>
> Geir Holmavatn wrote:
>
>>
>>
>>>Geir Holmavatn wrote:
>>>
>>>
>>>
>>>>We cannot check their anitvirus maintenance etc centrally.
>>>
>>>Why not? An educational institution that I know has grown so concerned
>>>that they are checking a huge number (into 4 figures) of student
>>>machines, and not a single student will have their services enabled
>>>until they can prove that they have a clean machine with up-to-date
>>>anti-virus software fitted.
>>
>>
>>OK, do you know how they practically do this? Employ staff who check it
>>every morning...?
>>
>>Geir
>>
>>
Or you can employ CE edition with slight markup for students and deploy
corporate edition with a console..even with the markup..cost will be
lower to students than COTS product will cost students. Additional
bonus is AV won't time out during year and leave you a vulnerability
hole. Set it up so it checks when student logs on for current defs and
centrally get virus reports and whose av is operational. This also
reduces bandwidth requirements as defs are retrieved from internal
server. Server doesn't need to be much more than dedicated hardened pc.
Mark up CE licenses say by 10$ and you should be able to cover cost of
pc and service.,depending on number of students involved. This will
cost student about half of traditional cots av/firewall package. The
console will highlight issues and client rules can be centrally
controlled with minimal effort. Add one of several open source packages
to push patches or ensure that win update is turned on..and your 90%
there. Several Linux flavors also have auto update capabilities, but
don't know influence you have for Linux boxes.
The eliminates major staff effort and probably can be managed by techy
in charge of network.
Winged
| 
XML site map