Endpoint protection

nmal55 · September 26, 2019, 10:36pm

Hey Guys

What sort of endpoint protection you guys are using on Linux / Windows clients and servers…?

I know Sophos and other proprietary vendors have the UTM and endpoint stuff…

Tom… just wonder what you suggest for home / SOHO setup…who can’t afford solarwind…?

endpoint client protection with pfsense…?

OSSEC…WAZUH… any comments…?

itnerd · September 27, 2019, 11:43am

For small business that want to pinch pennies…

no open ports on router
dnsfilter.com
emsisoft
backups, offsite crashplan 120.00 a year per device
End users training. <---- biggest threat!

LTS_Tom · September 27, 2019, 11:49am

For Windows machines wanting to use a free option, Windows Defender works as good if not better than any of the other free offerings.

For Linux systems, if you are only using the repositories than come with a major distro such a Ubuntu, Debian, Fedora and not loading third party applications from lesser known places you are safe. OSSEC / WAZUH are good but due to their more complicated setups I would consider them a more advanced form of proection, but a good solution.

g-aitc · September 27, 2019, 3:17pm

I would suggest Spider Oak for smaller BU requirements it is zero knowledge of crypto keys as crashplan has access to your keys.