Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 1 subscriber
  • Views 3602 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

multiple vendors AV on single user device

fox

hi 

I have a requirement to have two layers of AV on a single user device.  I already use a different vendor to sophos for the primary solution but was wondering if sophos would be a good pick for the secondary check.

Obviously not all AV products can sit together on a single windows desktop and may cause performance problems

my thinking was to have the second product as a command line only solution, this being called from a script after the first vendors sweep has executed.

I know sophos has a command line tool and I hope this could be used, before I can test this I have the following questions...

1) How would a command line only sophos solution stay up to date signature wise, alot of command line only AV products are for a standalone  environment and do not have a backend infrastructure.  I would prefer a pull solution from the desktop to check for dat updates ETC, I don't want our sys man solution pushing this.

2) Is the sophos signature digitally signed?

thanks all

fox

:1868


This thread was automatically locked due to age.
Parents
  • 0

    I see. With a few more details it makes much more sense. Can't and won't speak for Sophos - guess some kind soul will tell you whom to contact - I'm just adding my two cents as usual. 

    What I suggested is that you run the command line scanner from a network share which is kept up to date by the share's host. This might not be sufficient for your needs as the update might have failed on this machine but since you said using a pull technique even if it is from a simple NTFS file share this might be an option.

    To update the IDEs (signatures as you call it) using a script is possible but not the recommended way.

    Also, reading Sophos Anti-Virus for Windows 2000+: significant files and registry entries gives the impression that it is possible to install Sophos when a competitor is present. You'd then disable on-access checking (although it'd be a shame :smileywink:) and only use the command line scanner. The question remains how you could check from the script whether the update has been successful.

    Christian

    :1876
Reply
  • 0

    I see. With a few more details it makes much more sense. Can't and won't speak for Sophos - guess some kind soul will tell you whom to contact - I'm just adding my two cents as usual. 

    What I suggested is that you run the command line scanner from a network share which is kept up to date by the share's host. This might not be sufficient for your needs as the update might have failed on this machine but since you said using a pull technique even if it is from a simple NTFS file share this might be an option.

    To update the IDEs (signatures as you call it) using a script is possible but not the recommended way.

    Also, reading Sophos Anti-Virus for Windows 2000+: significant files and registry entries gives the impression that it is possible to install Sophos when a competitor is present. You'd then disable on-access checking (although it'd be a shame :smileywink:) and only use the command line scanner. The question remains how you could check from the script whether the update has been successful.

    Christian

    :1876
Children
No Data
Unfiltered HTML