|
|
|
SkyRecon StormShield Security Is Worth the Work
By: Matthew Sarrel
2008-11-03
Article Rating:  / 5
There are 2 user comments on this Network Security & Hardware story.
SkyRecon StormShield Security Is Worth the Work (
Page 1 of 2 ) Customization and complexity go hand-in-hand with SkyRecons new StormShield endpoint protection solution. The product can be difficult to set up, but once rolling, SkyRecons offering is an impressive security tool.SkyRecon's StormShield endpoint protection solution is remarkably flexible when compared to other centrally managed endpoint protection solutions available today.
The easiest way to understand how StormShield works is to think about it in terms that it provides all of the standard protectionssoftware firewall, HIPS, removable storage management, device control, application control, wireless security, network access control, data encryption, and now anti-virusin a fully scriptable and customizable manner.
Security administrators can develop complex rule sets where conditions are tested and then threat mitigation is automatically launched. For example, if a laptop is not on the corporate network and is instead connected to an open Wi-Fi hotspot, then an administrator can decide that only network traffic from whitelisted applications can be sent over a VPN tunnel, and he can block all other network traffic to and from the laptop.
The conditions can be more complex and so can the actions taken, even to the point where a series of batch files can be launched to perform multiple maintenance tasks.
StormShield has provided this functionality for several years. A recent licensing deal with Panda now rounds out the policy-driven offering by adding effective antivirus and anti-spyware features that can be deployed and managed from a single management console. This final piece launches SkyRecon into head-on competition with the likes of Symantec, McAfee, Trend Micro and eEye Digital Security.
eWEEK Labs Walk-through: SkyRecon StormShield 5.1.00 beta 2
I tested SkyRecon StormShield 5.1.00 beta 2 using Windows Server 2003 Enterprise Edition to host the StormShield Server, Management Console and SQL Server database. These can be deployed on different servers throughout an organization for better scalability. I also used a series of Windows XP Pro workstations ranging from unpatched to SP3 to test client agents. Management Console can manage multiple StormShield Servers and policy can be pushed down through the organization from primary StormShield Servers to secondary StormShield Servers. Administrative capabilities can be fully delegated and can include or exclude different administrative functions so that, for example, certain administrators can control every setting and action while others can only run reports.
SkyRecon officials say the average StormShield Server can accommodate up to 5,000 users, and there are customer deployments with as many as 90,000 seats.
I found StormShield to be one of the most difficult security software products to install, configure and deploy that I have ever used, and I have used hundredsif not thousandsof similar products. Even with following a detailed walkthrough that the company provided, I still had to spend four to six hours over two days working directly with a sales engineer before I could develop a single policy and deploy to a single workstation. Apparently the price of total customization is having to navigate hundreds of poorly worded (and neither described nor automated) settings.
Admittedly, I was working with a recently released major upgrade, so I'm willing to provide some leeway in terms of user experience. This is, without a doubt, a product that no security administrator will be able to configure and deploy without first fully reading the manual. The version that I tested had no help at all (those of you who think that Symantec EPP 11 is too complex can now do a reality check and feel lucky they at least have context sensitive help). What made matters worse is that SkyRecon had a grand total of four articles in its support knowledgebase. The official support policy, according to SkyRecon, is that support is provided solely through solutions providers.
|
|
�������x}r8qվ�F8�EnGJɖ�kcY^K'SHH"$e[g^b|u^<�.%_2=Ɍm��Fwh4~ ooݏD�018ܢd��.3齷O$�|m�Oj�%k��נn-�Z7t�~i�|,sl2:}f���=�>��;|�9|AL�=T�adBįwtL$K8��F�Q"DЛ�gp�_C�*G��`i�dh9-r4H`Uƞfn�ڭb���0F΄; ;{K}H͠匝쯳qԈI,!B
v`�eR�3܋��X�QwNX�S*VHTfFԴ��55x-y5G@̱=ǥ�>.�$gtj.O_FB?Z[8Q =O�~b�4��ܦn?A7ؾ�t�juqHfu�8�NHyo�~�cnhބ�;曎�tL\:e�CYaF-SԗuHUŪZB+Ti�νgĩ̙eugVn>~JrN}v!>��-;���h[w^ԼZOi\t[a@� X/wD_<0QQ)i<��ͧ�DNj,{/B�rM7Ja߹�jWsꑚ!T80y�E�4bEQrUdvߔ-~k~:E,[3sA)U�̠�`W:��㝩So9m<_sܴ/ݛ�9^f}!+|v.!5�0\6euuܟZz�LvO|��SQ�&�ںa#U*Ūd#3?_ć.?�OHF,7MYsN��黚홨-4K[���}>c%? ,�_��%?f�k�3
J�a)"�C��N�^mCJZ孱J+҄j�M�9B�A`�ܼeNR�49�Vˠ�8蟉$W�m�4�@r1�)6B̄H )s7jp ~�,.|i�*
b�Ըr�ݢ@PS>Χ\�!BN3t�ы �BDԑ?CzC7=aDWT\�U:AC���ڴb{\g��4!>��ho4�ح�-=�J!pA=xSj�
&z4H۠h&r\�5$ƶ�ʦM@B9��{ǽ�ޚ�^��nP�j�X^0 j�p3�*3<9�ûD��3=�k��i
M�L<�ĥ\>̨
]x9-7R��;C0tS@F.$�mA|t�"AђF��(�4� �g3cX"C"'�`[X;ɫ;�.V�\,y"�m':Ν3PŇb�h&,�QY,p[/1�͙Je']7-&D7rB��.G �wKᙖ6@F^R^-FM�A�SIIL�;R�sJN�CT"�6�=ӆ)푫A_?צ�߄#bA̞P��,[HB9Xv,_zt?8�c�LEikJ/ι7�M�|(��n^ßf�1���_w\ճ&6AB
�glC(`'0١X3y&$,�\�~JK
��ͬ
L�qG](.E��gJl�3]s;tOT�IXk��j"zց$l��vmXW�@)�:e
-b�_X5'(�Ak�_k)D�A
r�9aXV6�X.]4^`Na<*)Ϳl����1�ȤmD
r^six�)Kˌ7V)9|RP(,x[6Y`�aP�eɁfH6 [Ie�=qf@�4-]�fvo�yG�l��p6wpBmH�g6q�M
cMЭ,��Vh8)T�zF
���f`�ǂ �K ؈bȁU|aXՅe|mQ;m)ECK_(̧W��y+@�*:���0f&6X#Ӣ�gZ$p٤k#"R�T�H8�D_i?怚H|A��2ex�L,Z`_9#Dztʠ�7�$cif�Scs�h��9&DSsHb4"�paDP�a0SM�#�ؚyEwP|?6j9�r]ilu�0q`(1Z3�e:Cb+[&-*I�-q;˕bLq�5 b�d��]D�{Z�@�gD�i ��N�Lb��h��
y
= "sL1�9�R�2"*[rU)
�jqM9��o`boXL{�+*�9G�uqϟ��
sFWy]F濚7�~Tʕ|R>N�(QA)8Y+
:;#*(Si�ա�g4�'8k�d�Ө5?s�vo�ܮ;C.�s3/'x/'1h'0`'��_��sUKlcSxt(�b*��JNU�[�M�έ.�#��Џ]��!.��־7 �X@�P A@�aϖҪR)74?A'��ޯDh}I[d�Eκ�Դ'
+ĕU(jlqg��rh)Mf5�~�ge'ßJX�S#a'oQ2X
6MУǸ'~�m۠�|e�2Ltn1�a%[4x[2|'@�$q�pՂrO��'(3_'wf>ūUZJ>lv''�n�Vȕ#^�$}=բ�@���%UH/e�z,`wEW#ke`WPF4`�W�&sc�m.D<�9[E �1ķ�ʨTI+�Gs�;"ʌg�b<�r{q>'F{�l���j6cWՄθE�`�3O�-8NҬ�Vum4tH�"5H�~++*$Ԋ+yIxHf6�J�@ b9˞7Gc���3��"�J�x@tɂ�'
xWJ\9_-p�/g$
�l9�H(P,rޏGɷo�fC-lCXp|
^/�X�XD`��¨b=*aǰ�^-/yAhpqL�w.?���j%(6@
EE@��j�ϱ?$
?���/E ?s�c(m�ǥLGO��7fUM}ڽKN!�2`^==^^�ab>"g~A`�~�g�{5.a��/R��,Z>~~hJNCj�Fye8dB*{Pv�B�,
or�#ܵ!sq/zV@l/�fta
NA��區��
^9ݎi\}h_/xtϻW��9o_8�~R`n&�=�qpqңM4*$yq�|hqL�nmǛ&y��Ln�k쇤3;&W쐚!PRz_W�g��^|ƹ��\+q\U��g0Yt(� ۯކGQ�9̚]�fÃ
�X��!;���� k@JA=�6oh{ae%�D[(�����1tJ1 _ҒF�rM$�=#�ijf{LW )��^(V�Z-,ӷ�o@W蘧Y;GD{_q+��=�?EUn��h'5פ{~@HD�y�
?8/gc�Y慠sz�K1xc�q�AZ,7սn]��i��9%0�\ <�c�?�0��cd9���%t
xx�6�uYԺY�[&�N#hE�tJ3Q8�
z>RB'ՄI/)Uqhd*ꒀ~*~ i&'ءH
ˑ۳�]6.'8
$
k|wisq/Ps�Iyp2ű:k�9�-q�kP�I<��+��c-;|C?t�a}QWZ4ՖW߹$B|c��xr�)L'}B,,T�zaUZ-Kl;M�: m[ϒ���p
~/a�wʜW#��aZ� ?�Y�.�'{�W�3l{Rѵl�j�2M �.`�Y�=w6���OE�{�7mh�oE(�V-s%h*113Xufc�Ԛl3,�LjܵBpic�HK.}8Hs�09nJs ,��\Ge7o�m�\�h>HАݙcwܬ6]sFΚ��ڭZn�9OQ}i2vl'-*A-sC<�L�?F�gc:��M"�IVQԬ-yUdE)I�=9��GG#pZp>2�M�#}�%3��Տk�^�h̠t4u꾫}�}!.5o06s�Tx:o^kWgpw.ߕ�
�z+>+-R!UkE��7_cU+�OW�FE�'%��mo!i�>R
/Au���mi6=pm-39"i
�a@/,vx6d47 C G�f7�9 9><����ġF[e廡�ܭ)³��$`D@3=g˩egfA
jl��;a2*|ZB�Zyba�?1 W^M·⎭zgQ�$G�|o(o'x6�)
kN7&/6o)�.�?.鿣i{\n�a�.�x�y7te\ڊ�}�fK~~'v/Ynp8_�q<7
~~+hFY:Ө)B1��LtԖ_V!V,�}dQ't`')�UaOwm(3v�ֳ3DŽuSt�886_1P"yT�6u-�Q5ݗOGMjYSsU9$
>c~bꇄ9 =]㮹�,#�Yf_{/�&_P4}gFNхؤt3�j�M�O�I�3tms4f߯�,�5.\I٥"�%E|p`wxܓ�JZ
1v�9IB�:r?}ͻ�9zQpH^:_Uf �eMrYk*�>�H�eV�"T&B2;^Jl�Pv7�E4)^J]y�'9b�R.N S�=�;D�N]Tbi"Y�21"wwy"7��Z'rLyx}`)�0
fF��=N�
ȯ�>'k�u L(b1P;Z΅C�c�}?<@8,(7k;Ո�@-FL}�%$6-��~�ZZET*ݝؖ�77�o9_c(Y����KCh9ɣ%4M�#~踠|R[Hi,E�
,�O=鄿,]EZ�"*FR�B�N�!P#[@%�*eIb�w%�#J�=�/˕K?:�aB�^Z^aS~
fYRrRNy�?Ǘs\w\�_b&Y%nCu%@*jlm_�F�0�uF��о5ڝ���k:;1MUR�I)m4g�
?H`>B�s@�-{
+�O*\a+ @��2*<A��c$w}ˊQsT�rĨ&>HWj'��D
>!R�9$�I$R�g9O�t"H-d$�:x?^^H�}N_}M,9֡x8
Wo�c/PB_�Ijs�mF}]�UR*�n��9B+5D�7PΥ��U\3$9Կ71V4�W4�Tr�hy>y,{f,A�̳�cw�w~5�Iy-=LZGa4FEBJB�@C�A~5�Ow|
zmk[r�<�d�ק8_��؋�{A{A{A{A�Z)�^��髗p&"vFqq�ɭ$Jet�,D%&h�K�ܫI=`�Jx達VʕL��ރڄٖ7Jx$LZ&A5�?ӢY�<�EkwKӐ/MKCܒV%vwHev{&j��k4z�ԀG}�܉~�ݳ�+,� F %!�HB� ��D�Q,p2ނ1_a_\1J=Bg%_�7,PN�u�RwKS��/�<�l��̝Rpm1�G"x½��o^D+�ԟꖜUxejc�-`ۄH"kI�?��[|
V8e^%'�_�P�]Di�:ܹ�Zɦ=Gg�,Y#I��QB�(�!MJa]hS[Z+P
}b;*u��MlS$JYz@w8C* D�$ql#�H���IZaЧwd�sޮ��%̼X��R�o堡ؒוx*g/qcV<ߓ*%7B5&V3�ፑ�.؆z7�j4]]��/�0ɿC#{{{{q�sTm��אI$6ј|_2<9_:�sac�_E$Lpa:_iCG>nѵu^߽��<���Ia4^BƲ�FV5
�R,t)O{<˧A�{���� a�`2�x��\
y"EO|kOeGr�t�a/6,E5X^j�� UA��p!`��p�K ��=�R<'�!4Y`T��ݞ$RZmy1!&2$yF+/�=6s(l� �b'�w7G�~Y��b ,b
*}�m].e2c0 ���" (hZ�00-���p�=4"D1q;u[�̯>bb o-lPx_�y�W)3kA:SO)|}`Z4v
Vb:%�5�T�f1dno�6E=q�юַ.�r�Gβ3��qD}}Q�F�,g��d�S�b�W%?[W{=ryWʕ_SgL?䢯okf/�d�q8�\톎KD�S'3B�fl5ggf50�RK%exm]$%�?۾f�a+@m�<��U->lΕŋe{W`�Y�5m5mY֥S玮e{VR�jj��4;y(=�-Aɼ2��CHj|!D,h%N"q0M5�+┉ffc�p�%ss�$|5�p�7�DH��ȓi.t��>?w}2g�;4䠨�\k�x/�^h�Tی[��OUkXjw2О/]�
GP�њ#�Ћ��@d�ӌb�!VTD�U^هFD,�DވU!q7A|ŷ+�tF�w_
�6fA)O4OG|�)I>wxv_M��]��Knqǒ�3`��^Y>�|0XV$�n0\,aY@
'�,SW
�P5�6�]�[/
hMzx�@.c[�`@kn*r�)N:3�����A=LN�rcOº�l2��,h��u:7�r-~�;%�
E�c9ҔEoZE/W'n_Ð�`9;vxOOtKn+2&�B�s�8
��79w=?_z=&jƄ[,NF���dD)P7%�-n�$�1ш�xހ0a6g3bGp/�<ކ��E7A? %�c�WZ|�"�1^!BYȥ4͒ �<_b/@�.Z) (J
"P�V:�
���G�a/6�.F�·O�`久SO�f�i�r�5J
�Ѧ#v?`ݟg5:�R��A�uf~�6t`�W+r�b8K�XPs�:<&,�xQ��{!i`P)<>&1.ycq�� ظWyN4X'7Lt�7Kư�:{S0�(��-Ō��湊R�'I]A.Z8�XQFy�<ג5~)h?�H+ʲB�^�TF<7`_I͐�\�,NuG��a*،\�;�,0qyyvH^Zwrվ�Amm-�Re��e't'ϧU.:>\j5<66�/*�Ӟ.@^4:-f)�T{=\h�^E��<�^;_�GE Gcqu�^ ]IPJTَ��U�1o��Ll+�r:X)ZIc Ï��Ba)nu:E+S�LjV}Qq�xR�?/)WP~\~�NmwRO.o�
�(?I.?��!��SrY;S?k'zR�SCL"�o쥔�<�>vNtw�~'
>зB�ЧB��g'?;�D�H5_AYJߡ)�(樂^�E\]_��M?]/�r q�eW?W)ӃR߃R�_�(%�ק�ruJ~)rߛ�oRڿ�I\'I)�7Rq�S,�b~/�苴 Oi射8M)By>+<_`]k )t.3�{ 9̭L/˓n3��P�VO[«�/Y[Sʹ�
Ǩ -���{}h}o0W^D�/FlNF�fQ&�
��G6�+.-'ވl]=�g\ݳNW�7��\L�b}ksMV} 1[b�-��sќ#DzX�>46鈇dc,F�D4!$ô.(c��Kqǜo.eAW }-,SyK{>{S+<>�=��qM%���n
z�zl|h|Z˳Ok
85ϜbG�8��%��� ~�M
�aFq`�FC䮨%34_�f:}+=�q`�j@L� l>J�U-(er)s=o
Y��""C�WAS(\M�,UKjP��,*g
�o9�Q(Fuo{hI`(fY�[؆ȽCY)4C��a-�@k(��x.�xÈmD�!�_#m1`�-Ç�g$m#�(�2���^>@K1�+1@eR`T|Jx�&s92+6VI�2hؐM+ؚ9h'b�']/֎�CgKء�3�!��7.@#�
dϽC��HmfڔS�9�Sm&Ճo⧉ jJ.ݗC�1)�CEu(Ī#B`u
jד97;Z'l�yl*b)m+
drք"9jOAq�k @\ǘ�O��3L�l&j1Bi>�'b>0�wMX�+0D1`#hxb�,���nh1)�d'kEI���'֜Ȝ'la,�c?t|f��](R�Y��O�нT~pFKК�/��YH~6����fRT��1y*D4;Nb�bi�_yfk\��+��"m8Yo?q�ʚ}_,{їN�Cq35u
�*`gG�ax
ѰԈVp?P|=^�.]:4�7N>~~hJAE�eiAђ�uW2��!ջl4�*w�
~} Whc<�
[Wy�&�{sf�5E-X;xd_� (FҢΰ
\2LB%
�{l'�Wnצd��i2�9F{)�qý w6c!fp͜ǽlҜ
��q8�Y�
P�0����
|
Network Security & Hardware 
