Microsoft Antigen nails viruses but stumbles on spam

Free Newsletters

Log-in | Register

Microsoft Antigen nails viruses but stumbles on spam Malware protection impresses, but optional anti-spam module can't hack it
By Logan G. Harbaugh October 06, 2006			E-mail Printer Friendly Reprints Slashdot It!

Viruses and spam both pose an increasing threat these days, and not just to your data or productivity. Rather than hackers trying to break security systems for their own amusement, most current threats are financially motivated and can cost a company millions. And with viruses and phishing attacks growing increasingly more criminal in intention every day, securing financial, customer, and other critical data requires a rock-solid system of defense.

Free IT resource

Hear how top CIOs turn change into a competitive advantage.

Sponsored by InfoWorld

TEST CENTER DAILY BLOG

Track the latest product reviews and news from the InfoWorld Test Center.

With all of the anti-virus and anti-spam vendors out there, many administrators may not be aware that Microsoft has its own product in this space: Antigen for SMTP Gateways Version 9.0, with Antigen Spam Manager (an optional module). (Microsoft picked up the Antigen technology when it acquired Sybari Software in 2005.)

Antigen’s anti-virus component proved effective in my testing, stopping all live and test viruses received. And the product allows for flexibility, as admins are free to decide whether to cover their bases thoroughly by activating all nine included filters or to speed up processing by enabling only one or two.

The anti-spam component, however, was a disappointment, identifying only 82 percent of spam. Worse, it misidentified far too many legitimate messages as spam.

Installation of Antigen requires only Windows 2000 or 2003 Server for the SMTP version; the Exchange version can be installed on an Exchange 2000 or 2003 server. The latter offers additional functionality, such as allowing users to create and maintain their own anti-spam whitelists rather than requiring the administrator to intervene and add addresses to the allowed-senders list.

Click for larger view.

Installation is easy and well documented. You may need to equip your system with additional Microsoft components -- such as the Microsoft SQL Server Desktop Engine, Microsoft MSXML Parser, or the SMTP server components -- before installing Antigen. Luckily, that’s easy to do, and the manual walks you through the process well. Antigen uses the Microsoft SQL Desktop Engine (based on Access) rather than the full SQL Server, which may cause performance issues with large installations. It does offer a separate administration utility that can manage all Antigen instances running in the enterprise, however.

One issue I had with default installation is that it sets the anti-virus component to update once a day, and in the case of the anti-spam filter, only once and never again, unless you manually change the settings. If you don’t set this to once an hour or once every 15 minutes, you may very well find your network infected with a new virus or barraged by a new spamming method.

You can create multiple rule sets and set each to filter using different anti-virus engines or different anti-spam rules. The anti-virus engines are Antigen Worm, CA InoculateIT, CA Vet, Command, Kaspersky, Microsoft Anti-Virus, Norman Data Defense, Sophos Anti-Virus, and VirusBuster. Using all of them increases the odds of catching a new virus, although at the cost of boosting scan times and latency considerably.

Continued
1 | 2 | Next Page »

Antigen for SMTP Gateways Version 9.0

Microsoft, microsoft.com

Good 7.9

criteria	score	weight
Manageability	8	25%

Performance	9	25%

Ease-of-use	7	20%

Setup	7	20%

Value	8	10%

Cost:
$0.65 per user, per month ($7.80 per user, per year); Antigen for Exchange: $0.90 per user, per month ($10.80 per user, per year); Messaging Security Suite: $1.25 per user, per month (includes Antigen for Exchange, Antigen for SMTP Gateways, and Antigen Spam Manager); Antigen Enterprise Manager: $8.20 per server, per month

Platforms:
Windows 2000 or 2003 Server; SMTP or Exchange

Bottom Line:
Antigen for SMTP Gateways Version 9.0 is an exceptional anti-virus filter, stopping every virus I threw at it in my tests. The novel ability to choose among nine anti-virus filters should offer better-than-usual reliability in fending off new breeds of malware.

About our Reviews and Scoring Methodology

Microsoft Antigen Spam Manager

Microsoft, microsoft.com

Fair 6.8

criteria	score	weight
Manageability	7	25%

Performance	6	25%

Ease-of-use	7	20%

Setup	7	20%

Value	7	10%

Cost:
$0.65 per user, per month ($7.80 per user, per year

Platforms:
Add-on to Antigen for SMTP Gateways and Antigen for Exchange

Bottom Line:
An add-on module to Microsoft’s Antigen anti-virus solution, Antigen Spam Manager performed disappointingly in my tests, missing too many spam messages and suffering too many critical false positives. Even after tuning the solution, its results weren’t nearly on par with that of top vendors.

About our Reviews and Scoring Methodology

E-mail

Printer Friendly

Reprints

Slashdot It!


	IT consultant Logan Harbaugh is the author of two books on networking. Contact him at logan@lharba.com.

TOP NEWS:

» Four quick tips for choosing an IM security product
71 percent of businesses will invest in real-time messaging this year. If you're one of them, be sure to protect your enterprise

» Forrester analysts ID hot IT jobs
Research group finds 16 IT roles with a promising future

» Nvidia claims 10 hours of HD video on Tegra chip
The Tegra 600 and 650 can be used with hard disk drives and are designed partly for mobile Internet devices

» Database vendors add Google's MapReduce
Greenplum and Aster Data Systems will support Google's programming technique, developed for parallel processing of large data sets across commodity hardware

» Network management: Tips for managing costs
New technologies, changing requirements, and ongoing equipment maintenance and upgrades cost money, but there are ways to manage expenses

» EMC targets SMBs, branch offices with new low-end storage
Celerra NX4 highlights include thin provisioning, snapshot technology for data recovery and backups, and Web-based console for management of storage volumes

COMPREHENSIVE DATA PROTECTION AND DISASTER RECOVERY
Traditional backup and recovery is becoming irrelevant. You need more. Watch this InfoWorld and Dell Equallogic webcast to learn the current trends in Comprehensive Data Protection and Disaster Recovery for VMware Virtual Infrastructure. Sponsored by Dell Equallogic:

» Click here to view this Webcast

The Path to Enterprise Security
This is your comprehensive guide to Enterprise Security. In it you'll find solutions to the most pressing security threats facing you and your company. Learn the latest on insider threats and how to effectively minimize risk within your organization. Sponsored by Nokia

» Click here to download now

- Special Advertising Partners -

WHITE PAPERS

Delivering Actionable Enterprise Architecture - Enterprise Architecture (EA) provides the crucial capability for aligning business and IT. By developing architecture-driven...
An AT&T White Paper: Enterprise IPTV Solution - Discover two components of a solution that allows you to produce and broadcast video to internal and external audiences:...
Securing the Converged Enterprise I - Balancing the many benefits of convergence with the associated security risks can be tricky. While convergence eases communications...
Maximizing Mobility in Communications - Learn how recent advances in wireless technology, particularly faster links and more powerful receiving devices, have greatly...
Real--Time, On-Demand Information for Business Intelligence and Data Integration - IT is continuously challenged to find easier ways to distribute data between application silos in real-time without spending...
Solving Downtime Challenges to Manufacturing and Supply Chain Operations - Explore how an information availability solution can unlock the latent potential of your manufacturing and supply chain ...

» Technology White Papers Library

Technology White Papers by Topic

Technology White Papers E-mail Alert

Find out when the latest white paper is available:

INFOWORLD MARKETPLACE

Deliver REMOTE SUPPORT Easily. Try WebEx FREE! - DOWNLOAD WEBEX SUPPORT CENTER FREE! Deliver efficient, effective support. CRUSH SUPPORT LOG JAMS!
Migrating to an IP-VPN? XO Can Make It Happen - Learn the five critical success factors with a free whitepaper from XO Enterprise Solutions.
Sign up to TRY WEBEX SUPPORT CENTER FOR FREE! - Get your FULL FEATURED trial here. Share documents and applications, address support challenges.
IP Networks Boost Secure Health Communications - AT&T provides secure communication to keep health care moving forward.
Why a CMDB? - IT best practices (ITIL) have shown the benefits of a CMDB. Click for whitepapers.

» BUY A LINK NOW

TECH WATCH

What's the 411 on GOOG-411?
Just as Google has become synonymous with "performing a Web search," 411 is understood to mean "information" -- as in "what's the 411?" I was thus surprised to discover, from a billboard, no less, that the king of search is taking on the ...

Apple HTML source reveals 'iPhone Extreme'
"This one's a stretch..." reports AppleInsider. Um, yeah. Reporting on HTML code sightings of product names could be called a stretch, but iPhone Extreme has a ring to it. Now, that sounds like the product Apple should have released first, rather ...

COLUMNISTS

Unified under law

(InfoWorld) - In the litigious world we live in, deploying a unified communications platform in your enterprise could...

» MORE COLUMNISTS

MORE INFOWORLD BLOGS

Open Sources

Product Management
When I joined MySQL four years ago, there was quite a lot of debate about product management. We didn't actually have ...

Zero Day

Botnet herders tending smaller flocks
New research backs up the theory that botnet operators are keeping their networks smaller in a continued effort to keep ...

• Advice Line
• Database Underground
• The Deep End
• Enterprise Mac
• Geeks in Paradise
• Grid Meter
• The Gripe Line
• InfoWorld Daily
• Inside IT
• IT Troubleshooter
• ITXtreme
• Open Sources
• ProdBlog
• Real World SOA
• Reality Check
• Security Adviser
• SMB IT
• The Storage Network
• Tech Watch
• Virtualization Report
• Zero Day

RESOURCE CENTER	advertisement
Ads by techwords beta See your link here

GOVERNMENT IT & POLICY
•	'If you don't go after the network, you're never going to stop these guys. Never.'
•	From the State Department, All the News for Inquiring Minds
•	TechPresident, the Internet Citizenry's New Consensus Taker

Sponsored Technology Links
ASG Software - What is the Value of Your Business Service Delivery Network? Oracle - Top 3 Ways to Cut Costs in 2009 with Oracle Content Management AMD - See the power of the new Quad-Core AMD Opteron(TM) processor ASG Software - Transform your IT Organization now! AT&T - The Top 10 Best Practices for Server Virtualization Planning ISC2 - Network Security Solutions Guide Infoblox - The Costs and Impacts of DNS and IP Address Management AMD - Learn how the new Quad-Core AMD Opteron(TM) processor improves performance Riverbed - Virtualization Solutions Guide Armstrong - Delivering Actionable Enterprise Architecture AT&T - AT&T Business Continuity Survey on Risk Management AT&T - New from AT&T: Discover Fixed-Mobile Convergence Now AT&T - AT&T Article: Reinventing the Telephone with VoIP HP - NEW HP Color LaserJet CM3530n MFP Starting at $2,499. >>SHOP NOW HP - HP StorageWorks products-control, consolidation and confidence. HP - HP LaserJet M3035 MFP series Starting at $1,599. >>SHOP NOW HP - HP LaserJet P4014n printer Starting at $799 after $100 IS. HP - NEW HP Color LaserJet CP3525n printer >>SHOP NOW Vision Solutions - Solving Downtime Challenges to Manufacturing and Supply Chain Operations Oracle - The Top Three Ways to Cut Costs in 2009 HP - Predict the future with HP Insight Power Manager Rackspace - The True Value of a Hosting Provider HP - Affordable technology-no compromise. HP server solutions. Motorola - The Enterprise Mobile Messaging Benchmark Report AT&T - Machines That Speak: The Machine-to-Machine Wireless Network Data Domain - IDC Workbook: Assess the Value of Deduplication for your Storage Consolidation Initiatives InterSystems - Development, integration, BPM, and BAM together in Ensemble AMD - The Future is Fusion. Only from AMD. Learn more. Vision Solutions - Real-Time, On-Demand Information for Business Intelligence and Data Integration		(ISC)2 - I'm an SSCP Go-To Guy. See what I do. Click here! Villanova University - Increase Your Educational Bandwidth While Saving up to $945! Zenprise - How to Manage BlackBerry on a Tight Budget Samsung Printing Solutions - control workflow, costs and operations Check Point - Check Point Endpoint Security White Paper Get to know - BlackBerry Professional Software-find out more Oracle - Oracle Universal Content Management Oracle - Information Workplace Platforms: Oracle vs. Microsoft Oracle - Performance Monitor: ERP at the Speed of Light Dell Equallogic - Comprehensive Data Protection and Disaster Recovery Sony - Discover the advantages of Sony LTO media at sony.com/lto. Sun - Virtual Machines: Sun's xVM Virtualization Portfolio Verisign - The Latest Advancements in SSL Technology CA - Plan IT better, Manage IT better. CA - Manage your IT more effectively. Intel - Processor-enabled Virtualization. That's IT as it should be. Microsoft - Get the virtualizing power of Windows Server 2008 with Hyper-V Microsoft - Microsoft SQL Server 2008. Read Case Studies & Try for Free Microsoft - Learn about the software-based VoIP solution from Microsoft. AT&T - Securing the Converged Enterprise I AT&T - Securing the Converged Enterprise II AT&T - An AT&T White Paper: Enterprise IPTV Solution AT&T - An AT&T Article: When Content is King AT&T - Maximizing Mobility in Communications AT&T - The Spirit of Innovation: 100 IT Leaders Speak Out Oracle - Nucleus Report: Who's ready for SMB? Adobe - Delivering On The Promise Of eLearning MKS - Get Power and Simplicity of UNIX while working in Windows Qwest - Learn how Qwest voice and data solutions can save you time.

	HOME NEWS BLOGS PODCASTS VIDEOS TECHNOLOGIES TEST CENTER EVENTS	About \| Advertise \| Awards \| RSS \| Contact Us
Copyright © 2008, Reprints, Permissions, Licensing, IDG Network, Privacy Policy, Terms of Service. All Rights reserved. InfoWorld is a leading publisher of technology information and product reviews on topics including viruses, phishing, worms, firewalls, security, servers, storage, networking, wireless, databases, and web services. CIO :: ComputerWorld :: CSO :: Demo :: GamePro :: Games.net :: IDG Connect :: IDG World Expo Industry Standard :: IT World :: JavaWorld :: LinuxWorld :: MacUser :: Macworld :: Network World :: PC World :: Playlist