Wednesday December 3, 2008 3:57 AM AEST

SC Magazine Australia/NZ > Reviews > Vulnerabilities & Exploits > Endpoint Security > GFi EndPointSecurity

Vulnerability Alerts

SANS

Microsoft

MS07-068 - Critical: Vulnerability in Windows Media File Format Could Allow Remote Code Execution (941569 and 944275) - Version:2.3
MS07-005: Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723) - Version:2.0

CERT/CC

Latest Comments

"I feel it with you guys. These irritating interruptions on privacy MUST be stopped. It is a ..."

on Yahoo and Microsoft take aim at lottery scams

by Jan Wilmans | Dec 2, 2008 7:11 PM

"My AVG WILL NOT UPDATE"

on AVG update deletes critical Windows file

by James Downs | Dec 2, 2008 5:58 AM

"Concerned man's comments seem to intimate that if I'm using agents all will be well but the ..."

on Shavlik Technologies to broaden its patch management offerings

by Werner K | Nov 26, 2008 8:36 PM

"That will enhance Microsoft Office system, including SharePoint - good platform for enterprise ..."

on Companies have security to consider with in-the-cloud Office

by SGE | Nov 25, 2008 3:29 PM

"how many users allow per session? because the digital persona password manager allows only 10 ..."

on DigitalPersona Pro Workstation/Pro Server

by Daniel | Nov 25, 2008 12:14 AM

Endpoint Security

GFi EndPointSecurity

Product Info

Supplier:

Product Rating

Features:

Ease of use:

Performance:

Documentation:

Support:

Value for money:

Overall Rating:

For: The interface is clean and logically laid out. Against: Windows-only. Verdict: The level of resources used is incredibly small, making the offering handy for many organisations.

By Justin Peltier
Oct 9, 2008 3:46 PM
Tags: GFi | EndPointSecurity

EndPointSecurity installs a small footprint agent on the machine. At only 1.2 MB in size running in the background, this is the smallest of the agents in this month's group review.

Two main components make up the application: the GFi EndPointSecurity agent installed on the client and the GFi EndPointSecurity management console application.

The console includes a remote deployment tool allowing the administrator to deploy the agent to hundreds of machines with just a few clicks. From the management console, it is possible to generate a single MSI file that can be later deployed using the Active Directory deployment tool or other deployment options, including the GFi console.

Regardless of the method of installation, the MSI file will contain all the security settings configured in a particular protection policy.

After installation, the administrator is able to control access to endpoint devices on any of the machines having an EndPointSecurity agent deployed. The engine can be used to scan and detect the presence of devices on the network.

However, the console must have admin credentials on the target machine to scan for currently connected devices. The console can perform several functions, such as keep track of which machines have an agent installed on them, create and manage policies, view status of clients, perform scans to see past clients' connections, and maintain a log.

The point of the console is to control policy. These policies can be granular and can be based on Active Directory users, groups or machines so the agent will grant or deny access depending on the AD user who is currently logged into the machine.

In addition to blocking access to portable storage media, the tool logs device-related user activity to both the event log and a central SQL server. A list of files that have been transferred to or from the device is recorded whenever a user plugs in a device to the network-attached endpoint.

The pricing for EndPointSecurity agent is US$750 for 25 licenses, and this fee includes a year of support. This covers phone, email and web support. For support beyond the first year, the cost is US$99 or 20 percent of the product price, whichever is higher.

Secure Computing Magazine

Products also reviewed in the Group Test GroupTest: Endpoint security:

Symantec Endpoint Protection

AppGate Security Server (AGSS) and Device Firewall (DFW)

Trend Micro OfficeScan Client/Server Edition

Sophos Endpoint Security and Control

Panda Security Security for Enterprise

SkyRecon StormShield

Novell ZENworks ESM

Lumension SAC and SDC

GuardianEdge Device Control

eEye Digital Security Blink Professional

Ads by Google

Thoughts on this article? Add a comment below.

Be the first to comment on this article.

Report this comment as offensive:

* Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Validation

Enter the code you see below:

Most Read
Most Discussed
Latest News

Vulnerabilities & Exploits Whitepapers

GFi EndPointSecurity

Sponsored Links

SC MAGAZINE SITEMAP

CATEGORIES

News

Alerts

Products

Stats

Blogs

Photo Galleries

Whitepapers

Events

Jobs

Downloads

Vulnerabilities & Exploits

Breaches & Exposures

Messaging

Mobile

Access Control

Biometrics & Forensics

Legal

Risk Management

Job Centre

Patch Management