Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 15665 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Use Windows Defender with Sophos?

RMenth

Hello,

My organization is creating a new Windows 7 image, and we're wondering if there's any reason to keep Windows Defender, since we'll be using Sophos Endpoint Security & Control. 

Personally I'd like to disable Defender to free up the resources.  But does it offer any protection that Sophos does not?

Thanks!

Russell

:8159


This thread was automatically locked due to age.
Parents
  • 0

    This is my opinion on this issue:

    Windows Defender does not have a good track record when it comes to defending itself. Historically there have been multiple critical vulnerabilities within Windows Defender itself which actually made PC's more vulnerable to attacks (contrary to its purpose).

    Windows Defender started out as a program called GIANT Anti-spyware before it was aquired by Microsoft in 2004.

    The fact that Windows Defender is now a feature-set of the Windows OS means that it will probably always be in the sights of virus and malware creators. They know that it will be on the majority of computers that they target. This in itself makes it less secure, and we have seen this in other free AV vendors as well. When the numbers are high, they are targeted higher.

    Windows Defender gives you the following:

    • Auto Start - Monitors lists of programs that are allowed to automatically run when the user starts the computer
    • System Configuration (settings) - Monitors security-related settings in Windows
    • Internet Explorer Add-ons - Monitors programs that automatically run when the user starts Internet Explorer
    • Internet Explorer Configurations (settings) - Monitors browser security settings
    • Internet Explorer Downloads - Monitors files and programs that are designed to work with Internet Explorer
    • Services and Drivers - Monitors services and drivers as they interact with Windows and programs
    • Application Execution - Monitors when programs start and any operations they perform while running
    • Application Registration - Monitors tools and files in the operating system where programs can register to run at any time
    • Windows Add-ons - Monitors add-on programs (also known as software utilities) for Windows

    The features that are highlighted in bold green are reduntant if you are running Sophos Endpoint Security and Control. If I am wrong, someone from Sophos is free to correct me. With Sophos On-Access scanning you should be covered pretty well.

    The most helpful thing in my opinion that Windows Defender can provide is that it can monitor your security related settings within your Windows configurations.

    It really is up to you whether you want to add the increased footprint (security and resources) of running both.

    :10199
Reply
  • 0

    This is my opinion on this issue:

    Windows Defender does not have a good track record when it comes to defending itself. Historically there have been multiple critical vulnerabilities within Windows Defender itself which actually made PC's more vulnerable to attacks (contrary to its purpose).

    Windows Defender started out as a program called GIANT Anti-spyware before it was aquired by Microsoft in 2004.

    The fact that Windows Defender is now a feature-set of the Windows OS means that it will probably always be in the sights of virus and malware creators. They know that it will be on the majority of computers that they target. This in itself makes it less secure, and we have seen this in other free AV vendors as well. When the numbers are high, they are targeted higher.

    Windows Defender gives you the following:

    • Auto Start - Monitors lists of programs that are allowed to automatically run when the user starts the computer
    • System Configuration (settings) - Monitors security-related settings in Windows
    • Internet Explorer Add-ons - Monitors programs that automatically run when the user starts Internet Explorer
    • Internet Explorer Configurations (settings) - Monitors browser security settings
    • Internet Explorer Downloads - Monitors files and programs that are designed to work with Internet Explorer
    • Services and Drivers - Monitors services and drivers as they interact with Windows and programs
    • Application Execution - Monitors when programs start and any operations they perform while running
    • Application Registration - Monitors tools and files in the operating system where programs can register to run at any time
    • Windows Add-ons - Monitors add-on programs (also known as software utilities) for Windows

    The features that are highlighted in bold green are reduntant if you are running Sophos Endpoint Security and Control. If I am wrong, someone from Sophos is free to correct me. With Sophos On-Access scanning you should be covered pretty well.

    The most helpful thing in my opinion that Windows Defender can provide is that it can monitor your security related settings within your Windows configurations.

    It really is up to you whether you want to add the increased footprint (security and resources) of running both.

    :10199
Children
No Data
Unfiltered HTML