|
|
|
Aladdin Rubs Out Content-Based Threats
By: Cameron Sturdevant
2003-08-11
Article Rating: / 1
There are 0 user comments on this Network Security & Hardware story.
eSafe 4 effectively scours internet data, but maintenance can be difficult.
|
EXECUTIVE SUMMARY |
|
ESafe 4 |
|
Aladdins eSafe 4 is an Internet content security package that nicely fits
into a layered security approach for medium-to-large-size enterprises. The
software-only tool, priced at $18,600 per 1,000 users, comes with a hardened
version of Red Hat Linux. IT managers can run eSafe 4 on nearly any hardware,
which should reduce short-term implementation costs. Over time, hardware
upgrades may complicate maintenance operations, a problem competitors using
turnkey hardware/software appliances are likely to avoid. |
| KEY PERFORMANCE INDICATORS |
| USABILITY |
GOOD |
| CAPABILITY |
EXCELLENT |
| PERFORMANCE |
GOOD |
| INTEROPERABILITY |
GOOD |
| MANAGEABILITY |
GOOD |
| SCALABILITY |
EXCELLENT |
| SECURITY |
EXCELLENT |
|
PRO: Uses hardened Linux base; load balanced through inspection of HTTP, FTP and other Internet-based traffic.
CON: Ongoing maintenance may be complicated because of hardware flexibility issues.
|
EVALUATION SHORT LIST
• Blue Coats SG appliance line
• Finjans SurfinGate for Web 7.0
|
Aladdin Knowledge Systems Ltd.s eSafe 4 is a decent security tool for managing content-based threats that are carried in HTTP or FTP traffic. eSafe 4, which shipped in June and is priced at $18,600 per 1,000 users, is a nice compromise between fast, highly secure appliances such as those available from Blue Coat Systems Inc. and Symantec Corp. and software-based tools from Finjan Software Inc. and Trend Micro Inc.
Because eSafe 4 runs on any machine that can load Red Hat Inc.s Red Hat Linux, its a cost-effective alternative to appliances, especially when several are used together to provide fault tolerance and load balancing.
Among competitors, Finjans SurfinGate for Web 7.0 for Unix or Windows is a tempting choice because it can be hosted in heterogeneous operating system shops. The product runs on Solaris or Windows 2000. In either case, the base operating system must be tuned to provide the hardened base needed to protect the protector.
The flexibility of eSafe 4 is a reasonable compromise in favor of hardware choice. However, eWEEK Labs tests showed that ongoing maintenance of appliance-based products such as Blue Coats SG family of security appliances is an important competitive advantage that busy IT managers should consider.
In addition, shops that already have Solaris expertise might find that configuring and maintaining the platform for SurfinGate is a manageable task, making it a better choice for securing Internet content.
Our tests of eSafe 4 show the product is very effective at blocking malicious or suspect content, and combines both e-mail and anti-virus checking in a neat, affordable package that IT managers at midsize to large shops should consider to add a further layer of network security.
eSafe 4 fits between a perimeter firewall and desktop-based anti-virus and now anti-spam tools. IT managers who have large amounts of Internet-based traffic entering the network should consider a tool such as eSafe 4 because it fills the gap between these two traditional security areas.
In tests, eSafe 4 was able to sort through incoming and outgoing SMTP (e-mail), FTP and HTTP traffic, effectively reducing the amount of malicious code that got through our test network to zero. eSafe 4s almost instant adaptation to new threats, such as virus packages hidden inside e-mail and FTP file transfers, was impressive.
We also used a variety of traffic-generation tools, including NetIQ Corp.s Chariot, to throw large volumes of Internet traffic and IP connections at eSafe 4. We used Chariot to spike traffic levels for periods of time far longer than most networks would tolerate. Even then, when we tried to sneak malicious code into the test network, eSafe 4 nearly always identified and blocked it.
We could integrate eSafe with our Microsoft Corp. Exchange server to effectively identify and stop spam, particularly spam that contained malware. Aladdin harnesses software from Cobion AG that uses several techniques, including URL checking, to identify spam.
Senior Analyst Cameron Sturdevant can be contacted at cameron_sturdevant@ziffdavis.com.
|
|
�������xv㶲0V�Q�;8hR/ٖc[ޖνwiQ�$1Hn9yY%3*�4ВvҶP(T�
�%9ȴ'�-J3g4[y"I͝7o��Q0mTEG��oDFN�Z�@h�~-sb7r���
p��G7oe�>B�_��@jG D�PL9�
֜M�l ečz97�\�3�Ѣm3&��I�[���m�(CJ��Ž֥q���ͽ'c: [t���;v �*EN�838ӽi/De)Ç*FXP~�D�c?C߭gv^/ԡ�c�F��k�dh9
rt(H`Qƞdn�=Ƌ!��A#c�9p<�
�#ˈJ3q
��&I!@�v`�4�DO5J(;@X�ST�H֢f̴��3uk-3@ؾ��.&�$g���L_FBԿ$fR�8�=/�y�y�;sِF`Bm�iuZZ:��'^=:$,rK=��,��j��iT�$5�qeL�usLr,_�eB~??#�=M�%�%Xpܿ�G)H,Q5
tA�#J�okDf@·�-�:s�vf�H���mҔ#��rB�:�ܼm䎁R�49�ȡ��蟩$�m�4�@r�=ذ�1�"%̛�w5/%�,)|YB*�b�r�ݠPP3>ΧˊdoF"���y"ȅ�Q.%M���
g�L R]�.iX�|�qq���]7Du..*s5-a-~ӒKsIjeO^
S�/�35ލp�X.B2i�%!�g8WG%MGZ9MݣUPTr**&�r/LG̶-a[e)��s+({n��>���mNQG}1}FG|�궝H
E�q"|Бd6ml�-�3ЍI��Xn`Nt#I�4�X8=Z�c�s�a��K��W�9i�`�I
�l"��v|@9�HhR0<�sx70ܚ[3/�@��c` �V>��PAX�z��C�2�wA�,�߽9�#ꦥ�M�L<�ģA w
]x9-WR���C/0@=JIQF� E�EK�y3@� $h�5`��z����=�
�łH~ޑ�vZ.%r��P.o=!ԑtLZ.ߗKh3aGe�-n^
$�d6g2IMi�0V-&D7r"e�.G 7Kᙖ&ZlY*)uM;S& 4LX<`�== 3ܴF�K0:�9?f!1s WQ�'�:� ?;\
��ACw>�O��g��c�ah>JeH�ǝ:~L�
CO5,��&�fj:Y[����|��'��˖X
ރȁUrqX�3alia;m/�EKIq6Om �V��a>Ӝh2�F��ñiHuߴ��ӮWH�LZ`!?RT�IO5 &^PGe��d�*9-0cY]6aDm6#� \�}Zj<��8�9����Ro�>�U�<� ıLbEaT88l];(��Xe�[;pMb8~
�>AS-cfD�[O3$!O^'JEE$x.�5 O�>=c*O|IVtxO�F� ;Ez�.��ZCs�Џg�BrQaj D"*Usn����,�|tqZE�L�[v�O`��cV av5 1;���=U��r9Id�f�ݹrI6SK07L�A,)�u;ufv�94�]#@$/zb]�r�C �XQ�`w4�)�3%Jt(�ֹ�B\S4Ue�Ի1u�(��b��H}:G:D`J��EW�Y)yP���нe=UN᧔ZЁQ}?pkh豸4]
QB|3F0f&�af4X[�↪T�jE}杓�/��{�mhD��QT��i^;p��� ';pL�jg� EkYS!RWx^�*== 7S_ �-��Me;4*
Ϣ- Τp�[> |l9Q�7V��=_g`�%�t�mAșY%uItL5^���䞫VN˂�6b,fqNg� epv�N{%`gs{_;(Xc��׃0 HG}�7sW>�yU=|m�*Ln1}��J9��ޥ�0͜��6@yz`#��h��a�� -�əV�"s0/$
L3� 㦧RV*"5 V ��qM×8j�KCo`s?�蝦s�X�U]zT'-FbZe%~!�ݓFp�i�;
lZv_C�qh ޜ-�c�z��
y|rP-qX6ġ)3nQ/<ΐے�tK3ק~ 6�B3tMnIo�Z�k��25�`I3I9�`�{IO4c��3=#>�Yj��sVb(gI�'�g?a'
tDG�uRTR==G4}3݀�qX7y*n3�h�̇'S�$·Ri%�m\$D�k���S@JڽZ'G�ɒ\�'
*�Z<]QO3A��J� �j�\h?��CGp�HXx|{
`K�X�XD`��if1QXk 11�^?�ZM��P��@�/I6�K.:bd~�$%Y?�O�}u9|w|F0q;nnt/� �3o|hwGq��Zٽcq 4
8*u.Nڿ�rWݏ�'R&ø@oٷ)��!�K �^���?{%��%urҹx/]:aY�`�AdG*G~{.w.ė4ݳ�W'g:^[�j DHC�䄬��B�[W
ǧ�5�fhRd<��!�ktgL�t�ܗI3��^8;XKr!�֒jq!slP1n�l��~u�Y�Fw1BFgu~؇AP��H��R
~tIwy�]N�.gV_D�@A�48�XS�(+RJ)"4FYO |�i'U3��_f�}�Rt<~Ur:ãnER�}CXkI-�jշΫ؍��^|@�s`ce��}qU�ɇzP(�vuϯ��Um_wg�=O:Q7�M{q?I8�:Gw*b9,_�Aݞpne1?@�|;�sF�'5\;#3LصDݘ�~�zv`�5g3
\g�)ޙcn
��~S���j5rW{JM2㪏��#`]��E$�gR8rfic�?K.}:뷯Hs�arԆ�cA=IՂ��#�^�{Qw�p]ʜ(=}![5'zx�u?qF.xn;͟:^,b20tQ�wt8?Zym0Byx�q�5T CG��:j+xc4ptA/G�_#ʝ:���w0m
��=7�-"^=k9q=[)uxKTa!l/�U`c�Hכ�T?|VW:{�D�ƒR3sK-KJ�l4Mğ�k-:�h.bG�rHbs,_T� �L��k
;C�e�r(7Y�# �F[,:,Tʰ#pB�SQ%)ە_\c.4Bh}�~�
G�ID(\Z�sM�0$"ư6|Z-[�Ċzm
+/
Yp,f2_!�#%`xЃ1A9<&DŽx0csD*4�SiIOnM擫no[�kKqe/u챧c���rʝ{SmLA�^UD��S$a�=����=���%Á}�\2T �"4�U%,ikٍ�p;ŝRx+WWWWW�jH2E/�w-75ly~9q�J:/]c�mnO:q`�QKʂpE��<8xe��)0*!�,)�nu{_o,x 1�^x!ݞOAlȘpos68G&{��EF'D5<�!�zܐ��/��xo�c!֒X
YgFEX�d�Q�&g;gdăx[�'(ŧ2ʖ�inW~C&YLT~�&��QON(��YgF.��y��O!Vd}�}Ϫ}&?�9P9P9P9P9Pqj�U�ˋ��Wٳ�RۆS=5((z�B�S0(C!� � ��%|e4�*OvĈM۔~}7�_)Բt�Țc�-P�q-:ZwFz�Hc|7�pH2�W�ϠEܶmk+rx�p,FU���gK�CM$CQ
j�V�?a.k7~.&rrG=b�VXRTea�/�z��Hx-EDçGopm/g5� 4L�O?�͢.^Q�y>ԟ{WYN �Y%*_(Ofìn532_ߏJa}0hJx�JٙK)3?~L4�~}�P�Bt�PÛ�Mԭ1<�)^K3�29^�a �ܤZX�%gu>��hng�{\^)of[ĩ2>n#-`�\+lț^�/w�WKjߣ�e=u<-�*�;0(țc��8�lw~�Qvjcm�*奙J>~6
P|F02 �
c��#l(Y#|��Ȋhkkٵg�Μ[�kn/+�^c%Zv?�g_N[͑S=�-�@fph֒�+3$ք��[IHg�c~o3"*ΘhV=3a�D�K5{ rpD�s�\8#_~ޱ�7O 89Ő:M~�Vf/㥽�^Fx
#q˼�|-Z,V�ړ[!N:^4bd���Ћg�ÐF$�j�K"|0
a;>�ⳬ͝~Ke�)�ũ߱�HA9o�+Zm_�lnB�g+hV,����V�@ǵ�Xk�iH�r':[IcbT��~"}�?~�T�&�OW'L101�M�).b�[7��M|{N{�#o3?$^&Su ,1@�N��ޜa�!0V9Y��Xr@Yi�2}�21ve1h}PR�
#{v�%1�`(x�c�X�V�Kw+� ,U��"*��Y�O��t�$Y��VЮ >��l?��Q�X�Q'��m���/-Iy1,0bfbS,
Y4UK�c.�ZU9PWK.>%��܋%ӊ,ƻc
2^�uuWHk̘r4�vlN�aKI �-gڷ~1~bK:TEop/,9+8�xfV-j5!F㬤{0�":;Mk�f�@>n>MP�'z�\j:N#�e#QAJ�zV9{6وjMq^,aDTP�aUh%!MF(.^!qӘP1B"�MaW�_+@jL�B(eYiv'
o.'��F�/?VHrՔ^=5��߉�U@�b+qܖ)#ܶh�إ#:�&|}yM���Sx�C�7��Ju_{$ǯp�
?}A6�ڄy���h$��R0�#r+73G#Fd.$1��u5`G�zo��
�VIz# b ɋEԘ@� C�)vQY�s�9xQ�aK�\v�S]�к�d>zSH>cP��r9Gk�Ѿꢧ�(E�\dÐ�s�{nIED#Thb��GB#Os�^I79mO�-vT��RD�x&�{
�IQ!#�C?�!�mXs6#&|x�~�݁��A{`Ss�%��zHA�W|8snj=J����|_~|�!K ��(J
,P�F:�
��![C P/1Js# h_¹��fF�� :;AEp��N
cq[��wSܕmِ�>0�0�Y
K<ɖCGG71=�`C~,�H.us
Ԑ0�^(JIB�u�XRFB(6�<'�<(rAgYQJ,c�\4W
)WT�x���<IZ�
�WPɺi$͈ɵ?�Xf39^�9jIQst/Q{7��_QB{{sѾ\��fb<|j5E}ҽh皡Ik%ꋲ3`dz!_!+ȿZ�Nmew!_�48ig�CSi�}�3�?5?twN0\F>�3|Ͻ\^Fg>�eٮy1>�,@��}3s�?9y��g'EF/>A�!#_s?ȇ����.�_��2?.eF+�A{�A{��3�>#��2 )~א�{uF�$)c�V.qv%s_52\�}U
�Kӌ�g��3�Vn�V`�{AJ1wF+@^W~c�sy=I+ťW�*7YKxM}%k{Z1nv�dtb�a/u��BU$X2&���
깄W4< X)rnmi҇��d^ WsU�}Ӊ0՞bM�dY8i{42'h(#�K}}ZHa{ "%?AF0_��Gzn}(��s�ҟe&o�s?�`p4YQ =�PW.�v�8Nv3YCP,hMDB�gpX0�
H-M�Գޥ8 !rW�@�j:}
�=�s�;q&`�ꣁG7HΝ�JIJj�~jZտۑI0lFO}bx���UUEVjr�o9�VQ�ʥ*D`q>@xt>�`24UJ`
}�85C�=b�;hǨ[ɖƣo��p
E щGۣEbe�=jf�"�aQKCt8c+x;R(�A0�~qԙ3@͝eND\|bΙ�_<`2R�
�_^Ėٵv"2yhp�䣿
t�8�Ti[Ìc,�5���hlգ{h=ĉŴ)9T(O$a�nf+Ճo\wQ3 hJ/.G��΅* N[eSݶ1,X� E!�f
Nؒ1b�QSRۨ*�ur$~/~9K-�{w�~9�O(s1+>t�}сCآ|诉k&���F����!n�f��TjIc,L�8R�#I�r�HxL°k�2�_' ��Ы~��6�Zwz`L�,h_cArd9��WU�Z��0;݈q�e@(e6L6���u�cOHxb�pa`)O�8ˏ }Cpzusʱ
E�_nǝ)Z'a�"��"�d`g`/ITǛF�^�e?!�D6^a?��,ʌq?Ih"v]!6
�R�Ň%/�3Ӟ߳��6K'��̄0QPx?K+_zl�<��$J� o�௭_������{P`��>x(8�"�"H�"s�{B�|%Z�sJ\dBZxȹ;6M(ßG��9ao%RFXHVSPsXO-N��-ON�k�?!8�e�M�"m,�h�POP"c�q}(!31n�AR(�~�hے٣�}F垓mͧ_5�b
Fy&b3@tgQl(VxSHN-��czlo%()%�y+�9ن��0UZVA0Զ'x+�"�"ⅰx?C ����Xh=$N�>�:31U)ւ�_�gз�ǁ/[MzKV9�S&M��m��)HqI�ХeDzH,�Ǻ�7�AQ^+yJ>?��T|�>{y��HO)
�to#�nKc �"O �j;;5m6�TeKьQY#m+#8�4C�>ԺlQ%�鏸6x��}³;�+C|hӧ�^p멎P�gU|�Al>cx L�>.x�ue
l|%_Oxƪ~[axs%diŃCQ%`
�={���ڃtEVb0%�yM&U�~���0FĦ2��q֘9DR�*,JN���X,8.� k4�w6G-]�HdG�x
ky�f#ŧ3W<2oJP'J`V@8̝�-ӟ�~H�I���$`�2=�ږ+zYL�n2?Jb�@�JU�� �mEQة��`y%K@0�zG1+E6<]܈x};ݺ�u+e!��1�:�(˟=챺Wq�7GLcݰsQ`[:���n�ۊu�oTF3
l+k[�4�*
<Ǥ9-�+@�>���1[=�܋ϑ{̾1���^f#hűW��Rɤ{e���e�pC�ikRK�c4r��vlyE�JJ�lH�s���m5G0X�1'(��N�R��Qfoԛ'Tx�UHF>-h\l�}[xt,x0E�iѸ�;�3E~4c]=8H�Vlw|p�{rv{ej��;5w�S8K���#����=��`5>gvC%�zh.&Ա`=bp8�te0Q3L/ʲ�b�Yy&�
�W1`B�4<5T�����nhQ`$;�]+>KjMΡmlqR!Ef�Ʋ3C'@ncB�c��r|��L%;�\j����gG�ayq@�Ԃ+NNEg@|OI4[b%�9�ʧ=EnO+�A!�
�ǎsc]\�N3��}9&7��O��~ݽ:d`"n�e_&O~]T�f1[i=�~/��;o�̲P/�Y3�����(ևDr���TG8c�`y�Y�}�>J�do�N
9T#A*H)�-0#?�s��R�zPa�v<�}�K
nP/͟~�8�Rn{8�..V5�y
�0V7�46*.uǻ�=h�e��=;U���R`Dy{nYH }�cqFA�s�$�N�m;+,HC٘дeü�CZ��~%]T�WJUS� ���~T8V< �V�+Gtf{�k'~'flQ}1TQ�SY�<�a0;_$6r�i|�<��xP
536-P `"S}Wd5j���wv\:2�>opa�>�TV��XZ`ӱA"�LV�`/�F-nJ�+߈
_&KI:/Wm;ꞝ苍��GYľOwj��zM8h
'㫹A}'=e0f��㱯ov�eZT�0xsB�:�U�[�.qAk銹5bn�3|�AEtY0
:} kn1j���dS>�ɃE4CwEba�NO�/n3���\V
-F`=\#ŗ�?7���[�. 1ǻLG8WX�&s� LlH<5��ǖ:m.Y�� Ru!z��!҄AĊDPA*M~-K(� t�I',~�,,}f0�6/�Bg7e�!$xq�=..�7�b�뻴�G8�qux��en�9`�P#�f�#ya0:./,�7|�'�n7cl���7^vJ��7&rƲM�9.�2�:^۠]g�rhl&fmu#gS_�1:&D8Usl�B�
j9�XP۷cֳa-6aA"��v;�}$�Z���k�_�TǓg8A@h�
: �&܅�9$�B{$e\$�IMX,,�U�L�{xMnD*TM@'-�dE8{V(1㩅i��P��{GOڭ3r�!�^}N3�F
έԁw~ǰ#V%�W��RF��[�. 4jWyS�w�Z�xm'[Kq@S�1/r1\U"�F|�Y�x0 "7�mN/\
ᛤJEMdtoI���Are9'#ۿYKh}��QKM¨?��3:IIt!Rǝ7>�厫6=n�w� ϳJ�Aj�L|=�ɉ�u+y_�HGQIθ"(ȅ#x4!h��@/�>bS&�"hC��>'/*+ɻ
kx+|v7ؘ��`HU �Yt�9A=vvѿ!�8\g�Z9,�%�#xI�2ˈ��Ő/Jv��V@�Z@}�+ᰈW+Ռ�q"�up�1�հ]�B,�[Os+8+tFmN�Ce/�LCEז\<ʞL`r�v����
Network Security & Hardware 
