Deny network access if virus defs not up-to-date

Deny network access if virus defs not up-to-date
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 General Computer Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Deny network access if virus defs not up-to-date Mitch 04-20-2005
Posted by Mitch on April 20, 2005, 12:04 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi all,

Does anybody know if there is a piece of software out there that will
inspect a computer's virus definitions and date of last scan BEFORE it
establishes a connection to a network?

I'm wanting a 'fool proof' system that will mean that someone cannot
connect their laptop to our network unless they have performed a virus
scan in say the last week with up-to-date definitions?

Does such a thing exist? I'm not too keen on writing a program, but
will reluctantly do so if needed.

Thanks,

Mitch



Posted by Todd Knarr on April 20, 2005, 6:40 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Does anybody know if there is a piece of software out there that will
> inspect a computer's virus definitions and date of last scan BEFORE it
> establishes a connection to a network?

They exist. However, they're far from fool-proof. Firstly, they all
require that the computer be running the single most virus-prone OS
currently on the market. Secondly, they require the user to open
their computer to remote access to allow the scan. IMHO requiring
these sorts of security holes before you'll allow the computer to
connect to your network is the canonical Bad Idea.

--
death.net: because for some problems there's only one solution.


Posted by Barry Margolin on April 20, 2005, 8:32 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

> Hi all,
>
> Does anybody know if there is a piece of software out there that will
> inspect a computer's virus definitions and date of last scan BEFORE it
> establishes a connection to a network?
>
> I'm wanting a 'fool proof' system that will mean that someone cannot
> connect their laptop to our network unless they have performed a virus
> scan in say the last week with up-to-date definitions?

Isn't there a Catch-22 in there? How are they supposed to download the
up-to-date definitions if you don't let them connect to the network?

--
Barry Margolin, barmar@alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***


Posted by Michael Pelletier on April 21, 2005, 7:36 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Mitch wrote:

> Hi all,
>
> Does anybody know if there is a piece of software out there that will
> inspect a computer's virus definitions and date of last scan BEFORE it
> establishes a connection to a network?
>
> I'm wanting a 'fool proof' system that will mean that someone cannot
> connect their laptop to our network unless they have performed a virus
> scan in say the last week with up-to-date definitions?
>
> Does such a thing exist? I'm not too keen on writing a program, but
> will reluctantly do so if needed.
>
> Thanks,
>
> Mitch

You should worry about keyloggers and backdoors too. Not just viruses. These
are becoming much more lucrative (and costly to companies) than viruses...

P.S. ...and nothing is foolproof. There are just too many fools to cover
every situation. After all, why is Windows so popular?

Michael
--

"Microsoft isn't evil, they just make really crappy operating systems." -
Linus Torvald


Similar ThreadsPosted
Deny non-ssl access for login web pages May 28, 2006, 11:12 pm
Trouble programming network access filter gateway April 28, 2004, 2:58 pm
SSRT051023 rev.0 - HP Openview Network Node Manager (OV NNM) Remote Unauthorized Access August 27, 2005, 1:44 pm
SSRT051023 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Privileged Access September 5, 2005, 5:36 pm
SSRT051023 rev.3 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Privileged Access September 13, 2005, 7:32 pm
SSRT051023 rev.4 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Privileged Access September 19, 2005, 6:44 pm
SSRT051023 rev.5 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Privileged Access October 4, 2005, 9:51 pm
HPSBMA02198 SSRT061177 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Access April 2, 2007, 9:16 am
HPSBMA01224 SSRT051023 rev.6 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Privileged Access February 17, 2006, 8:40 am
HPSBMA02175 SSRT061174 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Read Access to Files January 11, 2007, 3:06 pm

The site map in XML format XML site map

Contact Us | Privacy Policy