for Exchange/SMTP for Exchange/SMTP for Exchange for Exchange/SMTP Network Security Scanner Security Event Log Monitor for ISA Server

for Exchange/SMTP

for Exchange/SMTP

for Exchange

for Exchange/SMTP

Network Security Scanner

Security Event Log Monitor

Overview of GFI products

Anti-spam for Exchange, anti-phishing and email management

GFI MailEssentials for Exchange/SMTP offers spam and phishing protection and email management at server level. GFI MailEssentials offers a fast set-up and a high spam detection rate using Bayesian analysis and other methods - no configuration required, very low false positives through its automatic whitelist, and the ability to automatically adapt to your email environment to constantly tune and improve spam detection. GFI MailEssentials also adds email management tools to your mail server: disclaimers, email archiving and monitoring, Internet mail reporting, list server, server-based auto replies and POP3 downloading.

Email anti-virus, content policies, exploit detection and anti-trojan

GFI MailSecurity for Exchange/SMTP is an email content policies, exploit detection, threats analysis and anti-virus solution that removes all types of email-borne threats before they can affect your email users. GFI MailSecurity's key features include multiple virus engines, to guarantee higher detection rate and faster response to new viruses; email content and attachment checking, to quarantine dangerous attachments and content; an exploit shield, to protect against present and future viruses based on exploits (e.g., Nimda, Bugbear); an HTML Sanitizer, to disable HTML scripts; a Trojan & Executable Scanner, to detect malicious executables; and more.

Email archiving of internal and external email

GFI MailArchiver for Exchange provides easy-to-use corporate email archiving, enabling you to archive all internal and external mail into one or multiple SQL databases, heavily reducing reliance on PST files. This allows you to provide users with easy, centralized access to past emails via a web-based search interface and the ability to quickly restore emails through a OneClick Restore process. GFI MailArchiver also aids you to easily fulfill regulatory email storage requirements (such as the Sarbanes-Oxley Act). GFI MailArchiver for Exchange leverages the journaling feature of Exchange Server 2000/2003 and therefore provides unparalleled scalability and reliability at a competitive cost.

Network fax server for Exchange/SMTP

GFI FAXmaker for Exchange/SMTP is the leading network fax server. It integrates with Exchange Server, Lotus Notes and popular SMTP servers, allowing users to send and receive faxes and SMS/text messages directly from their email client. By leveraging your email infrastructure and Active Directory, GFI FAXmaker achieves unparalleled scalability, reliability and hassle-free administration. GFI FAXmaker has won the Windows IT Pro Magazine (formerly Windows & .NET) Readers' Choice Award for 3 years running.

Network security scanner, port scanner and patch management

GFI LANguard Network Security Scanner (N.S.S.) checks your network for possible security vulnerabilities by scanning your entire network for missing security patches, service packs, open shares, open ports, unused user accounts and more. With this information (displayed in customizable reports), you can easily lock down your network against hackers. GFI LANguard N.S.S. can also remotely deploy missing patches and service packs in applications and OS. GFI LANguard N.S.S. is the leading Windows security scanner and very competitively priced.

Network-wide event log monitoring

GFI LANguard Security Event Log Monitor (S.E.L.M.) performs event log based intrusion detection and network-wide event log management. GFI LANguard S.E.L.M. archives and analyzes the event logs of all network machines and alerts you in real time to security issues, attacks and other critical events. GFI LANguard S.E.L.M.'s intelligent analysis means you do not need to be an 'Event Guru' to be able to: Monitor users attempting to access secured shares and confidential files; Monitor critical servers and create alerts for specific events and conditions occurring on your network; Back up and clear event logs automatically on remote machines; Detect attacks using local user accounts; and much more!

Network-wide control of portable storage, media and consumer electronic devices GFI EndPointSecurity offers you network-wide control of data flow via portable storage devices, allowing you to prevent users from taking confidential data or introducing viruses and Trojans to your network. GFI EndPointSecurity allows you to actively manage user access to media players (including iPod and Creative Zen), USB sticks, CompactFlash, memory cards, PDAs, Blackberries, mobile phones, CDs, floppies and more.

Network monitoring

GFI Network Server Monitor automatically monitors your network and servers for failures and allows administrators to fix and identify issues before users report them. Alerts can be sent by email, pager or SMS. Actions, such as rebooting a machine, restarting a service or running a script, can be done automatically.

Real-time HTTP/FTP monitoring, anti-virus & access control

GFI WebMonitor is a utility for Microsoft ISA Server that allows you to monitor the sites users are browsing and what files they are downloading – in REAL TIME. In addition it can block access to adult sites as well as performing anti-virus scanning on all downloads. GFI WebMonitor is the perfect solution to transparently exercise a degree of access control over users’ browsing habits and ensure legal compliance – in a manner that will not alienate your network users!

for Exchange/SMTP

Anti-spam for Exchange, anti-phishing and email

management

With fraudulent, inappropriate and offensive emails being delivered in vast quantities to businesses

every day, anti-spam software is a vital component of your network security strategy. Spam wastes

network users’ time and network resources, and can also be dangerous. GFI MailEssentials offers anti

spam for Exchange server and other email servers and eliminates the need to install and update

anti-spam software on each desktop.

GFI MailEssentials offers a fast set-up and a high spam detection rate using Bayesian filtering and other

methods – no configuration required, very low false positives through its automatic whitelist, and the

ability to automatically adapt to your email environment to constantly tune and improve spam detection.

GFI MailEssentials will eliminate over 98% of the spam from your network! GFI MailEssentials also

detects and blocks phishing emails through a system of Uniform Resource Identifier (URI) and keyword

checks. In addition to anti-spam filtering and anti-phishing protection, GFI MailEssentials also adds

email management tools to your mail server: disclaimers, mail monitoring, Internet mail reporting, list

server, server-based auto replies and POP3 downloading.

Server-based anti-spam and anti-phishing

GFI MailEssentials is server-based and installs on the mail server or at the Gateway, eliminating the deployment and administration hassle of desktop-based anti-spam and anti-phishing products. Desktop-based software involves training your users to create anti-spam rule sets, and subsequently users have to spend time updating these rules. Besides, this system does not prevent your server message stores from filling up with spam.

Features & benefits

Highest spam detection rate (98%) because of its Bayesian filtering technology

Lowest false positives through its patent pending auto whitelist feature

Server-based install, no client software required Allows users to review email marked as spam from junk mail folder

#1 server anti-spam solution @ unbeatable pricing: USD 450 (25), USD 1195 (100), USD 5000 (1000) mailboxes.

Bayesian filtering technology

Bayesian filtering is widely acknowledged by leading experts and publications as the best way to catch spam. A Bayesian filter uses a mathematical approach based on known spam and ham (valid email). This gives it a tremendous advantage over other spam solutions that just check for keywords or rely on downloading signatures of known spam. GFI’s Bayesian filter uses an advanced mathematical formula and a dataset which is ‘custom-created’ for your installation: The spam data is continuously updated by GFI and is automatically downloaded by GFI MailEssentials, whereas the ham data is automatically collected from your own outbound mail. This means that the Bayesian filter is constantly learning new spam tricks, and spammers cannot circumvent the dataset used. This results in a 98+% spam detection rate, after the required two-week learning period. In short, Bayesian filtering has the following advantages:

· Looks at the whole spam message, not just keywords or known spam signatures

· Learns from your outbound email (ham) and therefore greatly reduces false positives

· Adapts itself over time by learning about new spam and new valid email

· Dataset is unique to your company, making it impossible to bypass

· Multilingual and international.

Downloads updates to spam profile database

GFI MailEssentials can download updates to the Bayesian spam profile database from the GFI site, ensuring that it recognizes the latest spam and spamming techniques. GFI maintains the spam profile database by working with a number of spam collection organizations that continually supply spam samples.

GFI MailEssentials configuration

Users can review spam email

Newsletter list options

Search email archive from anywhere via the web-based interface

Check email headers for spam practices

Protect your users against the menace of phishing emails

GFI MailEssentials provides the ability to detect and block threats posed by phishing emails through its Phishing URI Realtime Blocklist (PURBL). The GFI MailEssentials PURBL detects phishing emails by comparing Uniform Resource Identifiers (URIs) present in the email to a database of URIs which are known to be used in phishing attacks, and also by looking for typical phishing keywords in the URIs.

Sort spam to users' junk mail folders

GFI MailEssentials gives you the flexibility to choose what to do with spam. You can delete it, move it to a folder, forward the spam mail to a public email address or folder, or send it to individual customizable folders (for example, a “junk mail” folder) in the end-users’ inboxes. This allows users to easily review mail that has been flagged as spam.

List server for newsletter lists and discussion lists

A list server is the best method for distributing company newsletters, since it automates the process of allowing users to subscribe and unsubscribe (required by anti-spam regulations). However, until now, list servers have been expensive and difficult to administer and they did not integrate with Exchange Server. GFI MailEssentials integrates with Exchange and can use Microsoft Access or Microsoft SQL Server as the backend. Both newsletter lists and discussion lists are supported.

Easy tuning of the Bayesian engine via public folders

Administrators can easily tune the Bayesian engine by dragging and dropping spam or ham to the appropriate public folder. GFI MailEssentials learns from the spam and ham that it picks up from these folders and further improves its spam detection rate. Administrators can control access to this feature through the use of Public Folder security.

Allow users to whitelist or blacklist via public folders

GFI MailEssentials allows users to whitelist or blacklist senders simply by dragging and dropping the appropriate mail to a public folder. This gives users more control and reduces administration. Administrators can control access to this feature through the use of Public Folder security.

Email header analysis & keyword checking

GFI MailEssentials intelligently analyzes the email header and identifies spam based on message field information. It detects forged headers, encoded IPs, spam mutation, spam sent from invalid domains, and more. It also enables you to configure keywords to check for spam using keyword checking.

3rd party DNS blacklists (DNSBL) checking

GFI MailEssentials supports DNS blacklists (real time black hole lists), which are databases of known spammers. If the sending mail server is on one of those lists, it marks the email as spam. GFI MailEssentials supports popular third party blacklists such as ORDB, SpamHaus, Spamcop and also enables administrators to configure custom RBL servers.

Support for multiple 3rd party SURBL servers

GFI MailEssentials checks email content against SURBL servers. Administrators can configure multiple SURBL servers, add their own and also define the priority of which server should be checked first. More information on SURBL can be found at http://www.surbl.org.

Automatic whitelist management reduces false positives

Whitelists enable you to ensure that email from particular senders or domains are never flagged as spam, permitting more stringent anti-spam rules. GFI MailEssentials includes a patent-pending automatic whitelist management tool, which automatically adds outgoing mail recipients to your whitelist. This greatly reduces false positives, without any need for additional administration. Whitelists can also be built based on domain names, email addresses and keywords.

Instant view of emails from new senders

The New Senders feature provides users with an instant view of emails sent from people they never had previous contact with, thereby helping users to better organize emails in their email client. If an email is not found to be spam by the GFI MailEssentials anti-spam modules and is also not on the whitelist, then the New Senders module has the ability to move the email to a user's subfolder, for example, Inbox\NewSenders.

Eliminates directory harvesting

Spammers often try to guess recipient addresses by generating multiple random email addresses at a domain; they then send their spam mail to all those addresses. GFI MailEssentials checks the validity of ALL the email addresses included in the mail sent, either via a query to Active Directory or through support for LDAP, and if they are not all valid, marks the mail as spam.

Reports on spam filtering and email usage

The database-driven reporting engine allows you to create advanced reports on your inbound and outbound email. You can report on the amount of spam filtered and on rules which caught most spam. You can also generate reports on user, domain and mail server usage.

Support for SPF - the Sender Policy Framework As most of today’s spammers spoof email addresses, it is important to be able to check whether an email is genuine or if it has been sent from a forged sending address. This can be done via the Sender Policy Framework (SPF), which allows users to test whether a particular email originates from its claimed source. GFI MailEssentials is one of the first commercial anti-spam solutions to support this framework. Its SPF module automatically checks whether the mail from a particular company was actually sent by its registered mail servers. For more on SPF, visit http://www.openspf.org.

Set priorities for each anti-spam module

You can configure which method of capturing spam is to be given priority, and create your own hierarchical list. For example, the administrator can select that the whitelisting anti-spam feature must be applied first to all incoming mail, then Bayesian scanning, and so on. Company-wide disclaimer/footer/header text

GFI MailEssentials enables you to add disclaimers to the top or bottom of an email. Text and HTML formats are supported. You can include fields/variables to personalize the disclaimer. You can also create multiple disclaimers and associate them with a user, group or domain.

Email monitoring

The email monitoring feature enables you to keep a central store of the email communications of a particular person or department. By configuring the mail to be copied to an email address, all email can be stored in an Exchange or Outlook store, making searching for email or content easy.

Email archiving to a SQL database

GFI MailEssentials can archive all inbound and outbound mail to a Microsoft SQL Server database. You can search for a particular email or an entire email thread via the included web interface. Mail archiving is essential for back-up and search reasons. For a complete email archiving solution, please check out GFI MailArchiver for Exchange.

Seamless integration with Exchange Server 2000/2003 & 5.5

GFI MailEssentials integrates seamlessly with Microsoft Exchange 2000/2003: It installs on the Exchange SMTP service and does not require gateway configuration. Via the SMTP protocol, it also works with Exchange 5.5, Lotus Notes and other popular SMTP/POP3 servers. Content checking, anti-virus & anti-trojan

Get anti-virus, email content checking and anti-trojan protection for your mail server with the GFI MailEssentials & GFI MailSecurity Suite. GFI MailSecurity for Exchange/SMTP is an email content checking, exploit detection, threats analysis and anti-virus solution that removes all types of email-borne threats before they can affect your email users.

Reviews

Windows Server 2003 certification for GFI MailEssentials - GFI MailEssentials for Exchange/SMTP has achieved the Windows Server 2003 certification from Microsoft Corp through VeriTest. This certification is based on an established technical standard to identify software applications that are secure and manageable, and that run reliably on the Microsoft Windows family of operating systems. GFI MailEssentials met these rigorous requirements after being tested by VeriTest: ”This certification through VeriTest provides GFI customers added confidence in their purchase of GFI MailEssentials,” said Katrina Teague, Vice President of Marketing and Solutions at VeriTest.

- VeriTest, July 2005

System requirements

· Windows 2000/2003 - Pro, Server or Advanced Server or

Windows XP Professional.

· IIS5 SMTP service installed and running as an SMTP relay to your

mail server.

· Microsoft Exchange server 2000, 2003, 4, 5 or 5.5, Lotus Notes

4.5 and up, or an SMTP/POP3 mail server.

· For the list server feature, Microsoft Message Queueing Services

is required.

for Exchange/SMTP

Email anti-virus, content policies, exploit detection and

anti-trojan

The need to monitor email messages for dangerous, offensive or confidential content has never been

more evident. The most deadly viruses, able to cripple your email server and corporate network in

minutes, are being distributed worldwide via email in a matter of hours. Products that perform single

vendor anti-virus scanning do not provide sufficient protection. Worse still, email has become the means

for installing backdoors (trojans) and other harmful programs to help potential intruders break into your

network. Products restricted to a single anti-virus engine will not protect against email exploits and

attacks of this kind.

Your only defense is to install comprehensive granular user-based email content policy and anti-virus

software to safeguard your mail server and network. GFI MailSecurity acts as an email firewall and

provides mail security by protecting you from email viruses, exploits and threats, as well as email attacks

targeted at your organization.

GFI MailSecurity may be deployed in Gateway or VS API mode. The gateway version should be

deployed at the perimeter of the network as an email relay server and scans inbound and outbound

mail. The VS API version integrates seamlessly with Exchange Server 2000/2003 and scans the

Exchange information stores.

Virus checking with multiple virus scanning engines GFI MailSecurity uses multiple virus scanners to scan inbound email. Using multiple scanners drastically reduces the average time to obtain virus signatures which combat the latest threats, and therefore greatly reduces the chances of an infection. The reason for this is that a single anti-virus company can never ALWAYS be the quickest to respond. For each outbreak, virus companies have varying response times to a virus, depending on where the virus was discovered, etc. By using multiple virus engines, you have a much better chance of having at least one of your virus engines up-to-date and able to protect against the latest virus. In addition, since each engine has its own heuristics and methods, one virus engine is likely to be better at detecting a particular virus and its variants, while another virus engine would be stronger at detecting a different virus. Overall, more virus engines means better protection. Note: Independent

research showed that brand names are no guarantee for faster response times; in fact some of the big brand names were found to be among the slowest.

Features & benefits

Multiple virus engines guarantee higher detection rate and faster response

Unique Trojan & Executable Scanner detects malicious executables without need for virus updates – MyDoom was detected immediately! Email Exploit Engine and HTML Sanitizer disable email exploits & HTML scripts

Unbeatable price: USD 500 (25), USD 1650 (100) and USD 7500 (1000) mailboxes.

Scan against trojans and executables

The GFI MailSecurity Trojan & Executable Scanner detects unknown malicious executables (for example, trojans) by analyzing what an executable does. Trojans are dangerous as they can enter a victim’s computer undetected, granting an attacker unrestricted access to the data stored on that computer. Anti-virus software will NOT catch unknown trojans because it is signature-based. The Trojan & Executable Scanner takes a different approach by using built-in intelligence to rate an executable's risk level. It does this by disassembling the executable, detecting in real time what it might do, and comparing its actions to a database of malicious actions. The scanner then quarantines any executables that perform suspicious activities, such as accessing a modem, making network connections or accessing the address book.

Norman Virus Control & BitDefender virus engines are included

GFI MailSecurity is bundled with Norman Virus Control and BitDefender. Norman Virus Control is an industrial strength virus engine that has received the 100% Virus Bulletin award 32 times running. It also has ICSA and Checkmark certification. BitDefender is a very fast and flexible virus engine that excels in the number of formats it can recognize and scan. BitDefender is ICSA certified and has won the 100% Virus Bulletin award and the European Information Technologies Prize 2002. GFI MailSecurity automatically checks and updates the Norman Virus Control and BitDefender definition files as they become available. The GFI MailSecurity price includes updates for one year.

GFI MailSecurity configuration

Configure attachment checking

Exploit engine quarantines emails with OS application exploits

Quarantine Store

The McAfee anti-virus engine

Kaspersky, McAfee and AVG virus engines (optional)

To achieve even greater security, users can add the Kaspersky, McAfee and/or AVG anti-virus engines as a third, fourth or fifth anti-virus engine or as a replacement to one of the other engines. Kaspersky Anti-Virus is ICSA-certified and is well known for the unsurpassed depth of its object scanning, the high rate at which new virus signatures are released and its unique heuristic technology that effectively neutralizes unknown viruses. The McAfee virus engine is particularly strong at detecting non-virus attacks such as rogue ActiveX controls. With 15 years of experience in the anti-virus industry, GRISOFT employs some of world's leading experts in anti-virus software, specifically in the areas of virus analysis and detection.

Automatic removal of HTML scripts

The advent of HTML email has made it possible for hackers/virus writers to trigger commands by embedding them in HTML email. GFI MailSecurity checks for script code in the email message body and disables these commands before sending the "cleaned" HTML email to the recipient. GFI MailSecurity is the only product to protect you from potentially malicious HTML email using a GFI patented process, safeguarding you from HTML viruses and attacks launched via HTML email. Email exploit detection engine

GFI's Email Exploit Engine builds on GFI's leading research on email exploits, and safeguards you from future email viruses and attacks that use known application or operating system exploits. For example, GFI MailSecurity would have protected you against the Nimda and Klez viruses when they first emerged without needing any updates, because these viruses use known exploits. GFI SecurityLabs regularly finds new email exploits, and these are automatically downloaded by GFI MailSecurity. GFI MailSecurity is the only email security product to detect email exploits.

Spyware detection

GFI MailSecurity's Trojan & Executable Scanner can recognize malicious files including spyware and adware. GFI MailSecurity can also detect spyware transmitted by email via the Kaspersky virus engine (optional) which incorporates a dedicated spyware and adware definition file that has an extensive database of known spyware, trojans and adware.

Attachment checking

GFI MailSecurity's attachment checking rules enable administrators to quarantine attachments based on user and file type. For example, all executable attachments can be quarantined for administrator review before they are distributed to the user. GFI MailSecurity can also scan for information leaks, for example, an employee emailing a database. You can also choose to delete attachments like .mp3 or .mpg files.

Granular user-based email content policies/filtering

Using GFI MailSecurity's powerful content policies rules engine, you can configure rule sets based on user and keywords that allow you to quarantine potentially dangerous content for administrator approval. In this way, GFI MailSecurity can also scan for offensive content.

Custom quarantine filters

GFI MailSecurity enables you to configure a series of search folders (similar to MS Outlook Search Folders) within the ‘Quarantine Store’, permitting you to manage quarantined emails better and faster. For example, you can set up a folder for emails that were quarantined by virus checking and another for emails quarantined by attachment checking for a particular user, allowing you to prioritize which folders you check first: It may be more important to examine the attachment checking folder first as it is more likely to contain emails that need to be approved and forwarded to users.

Enable easy quarantine folder monitoring through RSS feeds

GFI MailSecurity takes advantage of the power of RSS (Really Simple Syndication) feeds to simplify your work as an administrator in keeping an eye on your email quarantine store. Through RSS feeds, you will be informed of all new quarantined objects, avoiding the need to log onto the quarantine store to check for new updates manually.

Web-based configuration – enables remote management from any location

The product’s web-based configuration allows you to configure and monitor the product and manage quarantined emails remotely from any computer that is equipped with a browser. This means that you can monitor and manage GFI MailSecurity from anywhere in the world.

Approve/reject quarantined email using the moderator client, email client or web-based moderator

GFI MailSecurity provides several options for moderating quarantined email. The moderator client gives you a familiar Windows interface for approving/rejecting email. The web-based moderator allows you to approve/reject emails from anywhere on your network. Alternatively, GFI MailSecurity can also forward quarantined emails to an email address, enabling you to use a public folder to distribute the quarantined items to multiple administrators.

Searching within quarantined emails

It is possible to conduct searches within all emails that GFI MailSecurity quarantines. Such searches can be performed among inbound or outbound emails to or from a particular user, for instance. Searches can also be carried out based on sender, recipient and also quarantine reason, freeing the administrator from the need to go through all quarantined emails one by one.

Full threat reporting for quarantined emails

When an email is quarantined, GFI MailSecurity gives a full threat report , detailing all threats identified per email. Server-based anti-spam

GFI MailSecurity's companion product, GFI MailEssentials for Exchange/SMTP offers spam protection at server level and eliminates the need to install and update anti-spam software on each desktop. GFI MailEssentials includes a number of effective methods to virtually eliminate spam from your network. It also provides disclaimers, Internet email reporting, server-based auto replies and POP3 downloading. GFI MailEssentials integrates seamlessly with GFI MailSecurity and both are available as a suite.

Other features:

· Automatic quarantining of Microsoft Office documents with macros

· Detects attachment extension hiding & renaming · User-based, flexible rules configuration

· Scans embedded emails · Lexical analysis.

You're in good company...

Many leading companies have chosen GFI MailSecurity for Exchange/SMTP. Here are just a few: NASA, European Central Bank, MG Rover Group, Caterpillar, PerotSystems, Port Of Tilbury London Ltd, Mexx International BV (Netherlands) and many more.

Reviews

GFI MailSecurity continues to meet Checkmark standards - GFI MailSecurity has been awarded

Anti-Virus Checkmark Level 1 certification from West Coast Labs. The certification ensures that GFI MailSecurity meets the Checkmark program's rigorous standards which are continuously being developed to ensure that they are an accurate reflection of real-world situations and changing technology advances.

- West Coast Labs, April 2005

Earns top spot in review of email security solutions - InfoWorld reviewer Dan Morton has

selected GFI MailSecurity for Exchange/SMTP as the best email scanner out of the six solutions he tested, including products by Gordano, Network Associates, Sophos, Symantec, and Trend Micro. GFI MailSecurity got a 'Very Good' rating and was awarded the top score of 8.3 points for its performance. "The differences in score reflect the extra features and overall maturity of some products," wrote the reviewer. "The inclusion of multiple scanning engines and the ability to act as either a server-side or gateway solution, however, are what earned GFI MailSecurity the top spot."

- InfoWorld, June 2003

System requirements

· Windows 2000 Server/Advanced Server (Service Pack 1 or

higher) or Windows 2003 Server/Advanced Server or Windows XP. Note: Since Windows XP has some speed limitations, installing GFI MailSecurity on a machine running Windows XP could affect its performance.

· Microsoft Exchange server 2000 (SP1), 2003, 4, 5 or 5.5, Lotus

Notes 4.5 and up, or any SMTP/POP3 mail server.

· When using Small Business Server, ensure you have installed SP

2 for Exchange Server 2000 and SP1 for Exchange Server 2003.

· Microsoft .NET Framework 1.1/2.0.

· MSMQ – Microsoft Messaging Queuing Service.

· Internet Information Services (IIS) – SMTP service & World Wide

Web service.

· Microsoft Data Access Components (MDAC) 2.8.

for Exchange

Email archiving of internal and external email

GFI MailArchiver for Exchange provides easy-to-use corporate email archiving, enabling you to centrally

archive all internal and external email. GFI MailArchiver allows you to archive past, present and future

emails into one or multiple Microsoft SQL databases, providing both the network administrator and

employees with a number of benefits.

· Network administrators can now avoid the pains of PST file management and:

· Eliminate corrupted PST files and the lengthy troublesome process of ‘fixing’ them

· Overcome the risk of PST loss in the case of hardware failure on the employees’ workstations

· Free yourself from complex backup plans to copy PST files from each employee’s workstation.

· GFI MailArchiver allows employees to perform the following actions without needing the assistance

of a network administrator:

· Use their browser to easily locate and access all their emails from anywhere in the world

· Quickly restore emails back to their mailbox through a OneClick Restore process, avoiding the

cumbersome process of retrieving an email from a backup tape or disk, saving the network

administrator’s time.

In addition, GFI MailArchiver also aids in fulfilling regulatory email storage requirements (such as the

Sarbanes-Oxley Act).

Features for the administrator

No changes to Exchange mail system

GFI MailArchiver for Exchange leverages the journaling feature of Exchange Server, providing unparalleled scalability and reliability. Other mail archiving solutions actually replace the mail with a link to their database – this can be a point of failure and can bring down your entire email system. GFI MailArchiver works in parallel and does not touch the way Exchange works.

Reduce administration by storing email in a standard SQL database

Because email is stored in a standard SQL database, it is easy to backup and restore; no special Exchange backup tools are required.

Features & benefits

Reduce reliance on cumbersome PST files – prone to corruption, loss through hardware failure and requiring complex backup plans

Provide end-users with a single, web-based location in which to search and restore past emails through a OneClick Restore

Significantly reduce storage requirements for email by up to 80%

Increase Exchange performance and ease backup and restoration

Helps comply with Sarbanes-Oxley, SEC and other regulations.

Multiple database support and ‘automatic’ database management support

It is possible to archive emails in multiple databases – this overrides the problem of having one large database that becomes slow and requires more maintenance. GFI MailArchiver allows you to automatically archive emails to a new database after a specified time, for example, every month or quarter.

Reduce email storage requirements

GFI MailArchiver compresses and decompresses attachments on the fly, which results in considerable savings in terms of storage when compared to storing attachments in the Exchange stores. In addition, storing email in SQL Server is up to 80% more space efficient than storing in PST files. Furthermore, there are more compression and backup features and tools available for SQL Server than for Exchange. An added advantage is that GFI MailArchiver archives only one copy of attachments sent to multiple recipients.

Increase Exchange performance by reducing the mail stored on the Exchange Server

If you are storing all your company mail on the Exchange Server, email performance will start to decline over time. Moving old emails into a MS SQL Server will keep your Exchange stores compact and your Exchange performance high.

Archive all emails to MS SQL Server

GFI MailArchiver provides the possibility of centralizing email archiving to one physical location by polling emails from multiple locations. For example, an office that operates in the US, UK and Australia may want to archive email of all offices centrally in one location – the US office.

Searching for an email

Browsing emails

Viewing an email thread

Viewing database statistics

The backend database

Viewing permissions by Active Directory Groups

GFI MailArchiver allows you to grant a user viewing rights to all email relating to a specific Active Directory Group, for example, the Sales Manager would be able to view all emails sent or received by his team.

Easy enforcement of company email policies

Having a central store of email, enables you to easily search corporate email for particular text and enforce any company email policies you may have in place. Support for other email servers

GFI MailArchiver can be used with Exchange as well as other email servers with the capability of polling emails from a mail server which supports IMAP and Active Directory.

End PST hell

Using GFI MailArchiver for Exchange eliminates the need for users to archive their mail in PST files on local hard disks. These PST files end up being very large and are difficult to backup and search. Many users do not know how to organize their PST files properly. With GFI MailArchiver, users can browse to the web search interface and retrieve past email from the SQL database, rather than having to dig through a store of PST files on disk to find a particular mail.

Helps comply with Sarbanes-Oxley Act

Under the Sarbanes-Oxley Act 2002 and Security and Exchange Commission (SEC) rules, public companies must prove that their internal controls and audit trails are sound and that their processes are capable of producing certifiably correct data. Companies must retain all correspondence created, sent, or received "in connection with an audit or review" of a public company for a period of seven years, during which time these records must be non-erasable and non-rewritable. This includes any "electronic records" such as email, particularly relating to subjects, departments or individuals involved in auditing procedures. Failure to comply is a crime, punishable by up to 10 years in jail.

Helps to comply to other acts and regulations

GFI MailArchiver is also a valuable tool that aids compliance with the following: E-Comm Act 2000, BS7799-2:2002, Enterprise Act 2002, Decreto del Presidente del Consiglio dei Ministri (8 febbraio 1999) and more.

Optionally exclude email from particular users

If required, you can instruct GFI MailArchiver for Exchange to ignore email to and from particular users.

Features for the user

Access emails from any location through a browser

GFI MailArchiver allows users to access their emails from anywhere in the world by using a browser. Emails that had been deleted may also be seen (and restored). OneClick Restore a single email to a mailbox

By simply clicking on a button, the user or the administrator can restore an email to a user’s inbox in its original format. GFI MailArchiver restores any archived email (even deleted email) and these are resent to the user as an attachment.

Support for multilingual user interfaces

GFI MailArchiver provides support for multilingual user interfaces including English, Dutch, French, German, Italian, Russian and Spanish.

Other features:

Reviews

GFI MailArchiver wins Email Archiving Solution Readers’ Choice Award – Windows IT Pro readers

voted GFI MailArchiver for Exchange as the winner in the “Email Archiving Solution” category of the 2005 Windows IT Pro Readers’ Choice Awards. “The Windows IT Pro Readers’ Choice Awards are highly coveted in the IT industry because our readers, who are the buyers and users of these products, are the ones who choose the winners,” said Kim Paulsen, group publisher of Penton Media’s Windows IT Pro Group. “These awards are the ultimate acclamation an IT company can earn from its peers in the IT community.” Read the full review (PDF format)

- Windows IT Pro, September 2005

GFI MailArchiver wins Exchange Backup award

-Leading Microsoft Exchange Server resource site, MSExchange.org, announced that GFI MailArchiver was selected a first runner-up in the Exchange Backup category of the MSExchange.org Readers’ Choice Awards. GFI MailArchiver is considered among the very best in this category.

- MSExchange, February 2005

An effective tool for storage and compliance - In

an article for Document Manager Magazine, GFI MailArchiver is described as a useful product which saves on email storage space and which allows users to comply with legislative storing regulations. The reviewer states that GFI MailArchiver "can help to relieve many of the headaches caused by modern business' reliance on email as a primary form of communication". The reviewer also finds the product offers good value for money: "Costed against potential storage savings alone, GFI MailArchiver represents good value to any corporation." In conclusion the reviewer's verdict is: "In an age of almost daily legislative changes, GFI MailArchiver has a clear role to play and looks to be a very effective tool. The way that it works in parallel with Exchange Server offers an efficient and non-intrusive way of storing and retrieving emails and attachments." Read the full review (PDF format)

- Document Manager Magazine, January/February 2005

GFI MailArchiver wins gold award - Reviewer Dan

Nicolo gave GFI MailArchiver the Gold Award with a rating of 4.5 out of a possible 5 points in a review for MSExchange.org. The reviewer recommends using GFI MailArchiver "whether you're looking to ensure that your company's Exchange organization complies with regulatory requirements, or just as a way to quickly retrieve email messages from the dark ages". The reviewer also loves the fact that "it does nothing to impact the smooth operation of your Exchange Servers, and requires only one SQL server database". The reviewer concludes by stating: "Quite simply, if you need a simple, fast, and effective way to manage archived Exchange messages, GFI MailArchiver is the answer."

- MSExchange, February 2005

System requirements

· Windows 2000 Professional/Server/Advanced Server (Service

Pack 1 or higher) or Windows 2003 Server/Advanced Server.

· Microsoft .NET Framework 1.1.

· Internet Information Services (IIS) – World Wide Web service. · Microsoft SQL Server 2000 with SP3.

for Exchange/SMTP

Network fax server for Exchange/SMTP

Faxing manually is out of date. A professional fax server grants substantial savings on cost and

improves customer service and image: The process of sending a fax is much shorter and incoming

faxes are automatically integrated with today’s ‘email-based’ workflow.

With over 100,000 fax servers shipped since its launch, and numerous prestigious industry awards to its

name, GFI FAXmaker is the leading enterprise quality fax server when it comes to reliability, ease of use

and administration, and price.

GFI FAXmaker for Exchange/SMTP excels in its seamless integration with your mail server. This allows

users to send and receive faxes and SMS/text messages directly from their email client, making GFI

FAXmaker easy to use and learn. Leveraging your email infrastructure and Active Directory also allows

for unparalleled scalability, reliability and hassle-free administration.

Active Directory integration reduces administration GFI FAXmaker for Exchange/SMTP was designed from the ground up to minimize its administration. It integrates with Active Directory and therefore does not require the administration of a separate fax user database. User-related settings can be applied to Windows users or groups directly.

Supports Microsoft Exchange 2000/2003/5.5

GFI FAXmaker integrates with Exchange Server 2000/2003 via a standard Exchange SMTP connector. There are no schema updates to Active Directory. This makes GFI FAXmaker scalable and indifferent to new Exchange service packs and versions. Microsoft Exchange 5.5 is supported by creating a routing rule on the Exchange 5.5 SMTP connector. GFI FAXmaker can be installed on the Exchange server (if using 2000/2003), or on a separate machine, in which case no software has to be installed on the Exchange server itself!

Features & benefits

Best fax integration available for your mail server Minimal administration and user training required The most popular fax server, voted #1 by Windows IT Pro readers 3 years running

Unbeatable pricing: USD 1250 for 25, USD 1995 for 50, USD 5995 for unlimited users.

Fax over IP (FOIP) support

GFI FAXmaker offers Fax over IP (FOIP) functionality enabling you to send faxes over the Internet whilst easily integrating with the existing IP infrastructure, such as IP-enabled PABXs. GFI FAXmaker's FOIP may also be used to implement Least Cost Routing (LCR); this results in cost-effectiveness that is achieved through a reduction in international calls dialed since calls are translated into a local call at the recipient’s country. FOIP may only be employed if the appropriate FOIP-enabled software or devices are installed.

Supports Lotus Notes & SMTP/POP3 servers

GFI FAXmaker integrates via the SMTP/POP3 protocol with Lotus Notes and any SMTP/POP3 server. It can be installed on the mail server itself or on a separate machine. In the case of Lotus Notes, @FAX addressing is supported.

Automated fax delivery/inbound fax routing

GFI FAXmaker can automatically route incoming faxes to the user's mailbox or to a particular printer based on a DID/DDI/DTMF number or the line on which the fax was received. Faxes can also be forwarded to a public folder or assigned to a network printer per installed fax port. SMS/texting gateway allows users to send SMS/text messages from their desktop

GFI FAXmaker's SMS gateway enables network users to send SMS messages from their desktop; this allows them to easily contact business colleagues and associates who are on the road or away from their desk. Using the SMS gateway rather than a mobile phone is faster (no need to use the phone pad) and saves users the cost of the SMS message. SMS messages can either be sent via an Internet-based SMS service or through a mobile phone or PCMCIA mobile card. The SMS gateway can also be used for administrative alerts, for example, to notify an administrator of critical system outages or application problems. Any email-enabled application can send SMS messages via the GFI FAXmaker SMS gateway. A central log of SMS messages permits the control of SMS use.

GFI FAXmaker configuration

The GFI FAXmaker server monitor

Monitor fax queue

Easy application integration using NetPrintQueue2FAX

Supports Brooktrout and ISDN fax cards and modems

Supports multiple mail servers & clustering

Because of its flexible infrastructure, GFI FAXmaker can send and receive faxes for users on different mail servers. It can also support a mix of Exchange 5.5, Exchange 2000/2003 servers or even SMTP/POP3 servers. Active and passive clustering is fully supported because GFI FAXmaker does not require any software to be installed on the mail server itself; simply configure both mail servers in the cluster to be able to send and receive faxes via GFI FAXmaker.

Robust & scalable multi-line fax server

GFI FAXmaker includes a robust fax server, which can scale up to 32 lines per fax server using fax boards or active ISDN cards. For smaller installations, Fax modems can be used as well. GFI FAXmaker also supports the use of the Windows 2000/XP/2003 fax drivers for wider hardware support.

Native ISDN support

GFI FAXmaker natively supports ISDN, allowing you to use inexpensive active ISDN cards and get multi-line faxing and inbound routing at a fraction of the price of using multi-line fax boards.

Archive faxes to GFI MailArchiver, to SQL, or other archiving solution

GFI FAXmaker allows you to archive all faxes to GFI MailArchiver, a SQL database or to an email address. GFI MailArchiver is an email archiving solution that stores all mails in a SQL database and allows users to easily search for past emails and faxes. GFI FAXmaker can be configured to forward all faxes to GFI MailArchiver, allowing users to search for past faxes in the same way as emails. With the OCR module, faxes can also be searched based on what text they contained.

Optional OCR reading & routing module

The optional OCR module can be used to convert all incoming faxes to a readable text format using Optical Character Recognition (OCR) technology and then route the fax to the correct user by finding keywords related to a recipient, for example his first name, last name or job function. If GFI FAXmaker cannot match a recipient, it will route the fax to the default recipient/router. This feature is also especially handy if you plan to archive all faxes, since it makes searching for a particular fax much easier.

Junk fax filter

GFI FAXmaker includes a ‘junk fax filter’ that can auto-delete spam faxes on the basis of sender number.

Send faxes from any application

To send a fax, users print from their word processor to the GFI FAXmaker printer, or create a new message in their email client (e.g., Outlook or Outlook Web Access). The user then selects the recipient(s) of the fax from the Outlook Contacts list (address book) or enters the fax number directly. After clicking on the "Send" button, the fax is sent and the user receives a transmission report in his/her inbox. Receive faxes in your email client – in fax or PDF format

GFI FAXmaker delivers faxes to the user’s inbox in TIF – fax – format or Adobe PDF format. This enables users to check faxes from anywhere in the world, using either a normal desktop email client (for example, Outlook) or a web-based email client (for example, Outlook Web Access). Receiving faxes in PDF format means the fax can be forwarded to anybody, and it also allows for easy integration with document archiving systems or workflow software/procedures.

Allows you to send/receive faxes via your handheld or mobile

Via GFI FAXmaker's Email2Fax Gateway, the email clients of handhelds like the Blackberry and Pocket PC (2003 upwards) can be used to send faxes. The Blackberry and Pocket PC email clients can also receive faxes and fax reports as emails. The Blackberry devices have built-in PDF viewer that seamlessly integrate with GFI FAXmaker's PDF capabilities; most Pocket PC 2003 also ship with built-in PDF viewers. As long as they have image-viewing capabilities to view received faxes, GPRS mobile (cell) phones that are email-compliant can use GFI FAXmaker in the same way as handhelds.

Supports Outlook Contacts

There is no need to keep a separate fax address book -just select the recipient's "Business Fax" entry from the Outlook Contacts list or the Global Address Book: No need to duplicate address entries.

Attach Office documents, PDF, HTML and other files Users can attach Microsoft Office, PDF, HTML and other files to their fax. These are rendered to fax format on the fax server. The ‘Send to Mail Recipient’ command, available in Microsoft Office and other applications, can therefore also be used to quickly send a document as a fax.

Automatic application integration & mail merges with NetPrintQueue2FAX

GFI FAXmaker's NetPrintQueue2FAX feature allows you to embed a fax number in a document and 'print to fax' from almost any application, from anywhere in the network - without having to enter the fax number separately. This feature is especially handy for accounting applications; an invoice can be faxed simply by embedding the fax number in the document. No application integration or development is required.

Fax broadcasting using Microsoft Office mail merge Using the mail merge facility of Microsoft Word/Office, you can send personalized fax broadcasts. Because Microsoft Office supports ODBC, the recipient list can be retrieved from any data source, including Microsoft SQL Server, Microsoft Access and many more.

Support for Citrix

The GFI FAXmaker client can run on a Citrix terminal server. That way Citrix users can send faxes when logged on Citrix.

Other features:

· Real time fax over IP using Brooktrout TR1034 cards · HP Digital Sender support: Easily fax paper

documents via GFI FAXmaker · Fax annotation

· Automatically print transmission reports including miniatures of the fax

· Preview a fax

· Text API allows for easy application integration · Supports rendering of HTML format messages · No schema updates

· Auto-print faxes on different network printers based on routing rules

· Call accounting: Analyze fax costs using Microsoft Excel

· Routing of faxes to other FAXmaker server for least cost routing (LCR) by means of SMTP

· Support for Windows 2000/XP/2003 fax drivers · Design coversheets in HTML or in RTF (Microsoft

Word) format

· Remote fax server monitoring.

Reviews

GFI FAXmaker wins Readers' Choice Award as Best Fax Server - Windows & .NET Magazine

readers voted for GFI FAXmaker for Exchange as the Best Fax Server in the Windows & .NET Magazine Readers' Choice Awards for the second consecutive year.

- Windows & .NET Magazine, September 2003

GFI FAXmaker voted Readers' Choice as Best Communication/Collaboration Solution - .NET Magazine readers selected GFI FAXmaker for Exchange as the Best Communication/Collaboration Solution in the publications' first ever Reader’s Choice Awards.

- .NET Magazine, June 2003

System requirements

· Windows 2000/2003/XP server machine with at least 256 MB of

RAM and an 800 MHz processor.

· A professional fax device: For a complete list go to http://kbase.gfi.com/showarticle.asp?id=KBID001220.

· If you are installing GFI FAXmaker on a separate machine, the IIS

SMTP service will need to be installed.

· If using Windows 2000, ensure you have Service Pack 3 or later

installed.

· For more detailed system requirements please see the manual.

Network Security Scanner

Network security scanner, port scanner and patch

management

GFI LANguard Network Security Scanner (N.S.S.) checks your network for all potential methods that a

hacker might use to attack it. By analyzing the operating system and the applications running on your

network, GFI LANguard N.S.S. identifies possible security holes. In other words, it plays the devil's

advocate and alerts you to weaknesses before a hacker can find them, enabling you to deal with these

issues before a hacker can exploit them.

GFI LANguard N.S.S. scans your entire network, IP by IP, and provides information such as service

pack level of the machine, missing security patches, wireless access points, USB devices, open shares,

open ports, services/applications active on the computer, key registry entries, weak passwords, users

and groups, and more. Scan results can easily be analyzed using filters and reports, enabling you to

proactively secure your network – for example, by shutting down unnecessary ports, closing shares,

installing service packs and hotfixes, etc.

GFI LANguard N.S.S. is also a complete patch management solution. After it has scanned your network

and determined missing patches and service packs – both in the operating system and in the

applications – you can use GFI LANguard N.S.S. to deploy those service packs and patches

network-wide and also deploy custom software.

Identifies security vulnerabilities and recommends action (or solutions)

Once GFI LANguard N.S.S. has completed scanning a computer, it categorises security vulnerabilities and recommends a course of action (or solutions). Wherever possible, further information or a web link is included regarding the security issue, for example a BugTraq ID or a Microsoft Knowledge Base article ID.

Fast TCP/UDP port scanning and service fingerprint identification

GFI LANguard N.S.S. includes a fast TCP/IP and UDP port scanning engine, allowing you to scan your network for unnecessary open ports. While identifying key open ports (such as www, FTP, Telnet, SMTP) through banner processing, GFI LANguard N.S.S. will also query the service running behind the detected open ports to ensure that no port hijacking took place.

Features & benefits

Audit your network for security vulnerabilities (Windows and Linux)

Detect unnecessary shares, open ports and unused user accounts on workstations

Check for and deploy missing security patches and service packs in OS and Office

Wireless node/link detection and USB device scanning

#1 Windows security scanner (voted by NMAP users and 200,000+ sold).

Network-wide patch and service pack management You can deploy missing service packs and patches network-wide, without user intervention. GFI LANguard N.S.S. is the ideal tool to monitor that Microsoft SUS is doing its job properly and it performs tasks SUS cannot do such as; deploying Microsoft Office patches and custom software patches, patch reporting and immediate deployment of high alert patches.

Patching support for multilingual operating systems GFI LANguard N.S.S. supports detection of missing Microsoft security updates and their deployment on both English and also on non-English Windows operating systems.

Automatically downloads security patches and vulnerability information

Through its auto-update system, GFI LANguard N.S.S. is always kept updated with information about newly released Microsoft security updates as well as new vulnerability checks issued by GFI.

Automatically alerts you of new security holes

GFI LANguard N.S.S. can perform scheduled scans (for instance daily or weekly) and can automatically compare the results to previous scans. Any new security holes or changes appearing on your network are emailed to you for analysis. This enables you to quickly identify newly created shares, installed services, installed applications, added users, newly opened ports and more.

Ensures that third party security applications such as anti-virus and anti-spam offer optimum protection It is possible to check that supported security applications such as anti-virus and anti-spyware software are updated with the latest definition files and are functioning correctly. For example, you may ensure that supported security applications have all key features (such as real-time scanning) enabled.

GFI LANguard Network Security Scanner

GFI LANguard Network Security Scanner main screen

Indicates vulnerabilities found

Extensive HTML security reports

Deploy Microsoft patches node

Configuring the vulnerabilities to scan

GFI LANguard Network Security Scanner ReportPack

Quick Reference Guide

Multiply the value of GFI LANguard N.S.S. with powerful reporting

Reports designed to satisfy the requirements of both management and technical staff deliver a graphical view of the security health status of your network. From trend reports for management (ROI) to daily drill-down reports for technical staff; the GFI LANguard N.S.S. ReportPack provides you with the easy-to-view information you need, to fully understand the ever-changing security environment of your network. Full automation and custom scheduling allow you true install-and-forget functionality!

Extensive, industrial-strength vulnerabilities database

GFI LANguard N.S.S. ships with a complete vulnerabilities database, which also includes top SANS issues, as well as Linux and CGI vulnerabilities. This vulnerabilities database is regularly updated with issues reported to BugTraq, SANS, CVE and other sources. New vulnerabilities can be downloaded automatically from the GFI website.

Easily creates different types of scans and vulnerability tests

Administrators can configure scans for different types of information; such as open shares on workstations, security audit/password policies and machines missing a particular patch or service pack. Different types of vulnerabilities can be scanned for, and the scan can also be performed using different identities.

Enables easy filtering of scan results

Easily analyze the scan results by clicking on one of the default filter nodes to show, for example, machines with high security vulnerabilities or machines that are missing a particular service pack. Custom filters can be easily created from scratch and it is also simple to customize existing filters. You can also export scan results data to XML.

Finds unused local users and groups

GFI LANguard N.S.S. enumerates all local users and groups, and identifies user accounts that are no longer being used. You may then remove or disable these accounts, which could present a security risk to your network.

Finds all shares on your network

GFI LANguard N.S.S. enumerates all shares on your network, including administrative and printer shares (C$, D$, ADMIN$) and shows you who has access to the share. Use this feature to:

· Check if permissions of shares are set correctly

· Check whether a user is sharing his/her whole drive with other users · Prevent anonymous access to shares

· Ensure that startup folders or similar system files are not shared as this could allow less privileged users to execute code on target machines.

Lists and detects blacklisted applications

With GFI LANguard N.S.S. you can enumerate all the applications that are currently installed on the target computers. You may also identify unauthorized or dangerous software by specifying the list of blacklisted applications that you want to locate and associate with a high security vulnerability alert.

GFI LANguard N.S.S. ReportPack add-on

The GFI LANguard N.S.S. ReportPack is a full-fledged reporting companion to GFI LANguard N.S.S. This reporting package can be scheduled to automatically generate graphical IT-level and management reports based on the data collected during your security scans.

Detects wireless nodes and links

GFI LANguard N.S.S. can detect machines or devices which are connected to your network via a wireless link. Wireless links are a tremendous security risk if they are not secured properly.

Allows you to predefine authentication details

GFI LANguard N.S.S. allows you to store separate authentication details for every target computer on your network, avoiding the need to specify authentication credentials prior to every scan. In a single scanning session, it is possible to audit all the targets in your network, even if they require different authentication details/methods.

Enables creation of custom vulnerabilities

Using scripts and conditions, you can add your own vulnerability checks using conditions, such as checking for particular registry entries and values. You can also write complex vulnerability checks using the GFI LANguard N.S.S. VBScript-compatible script engine. GFI LANguard N.S.S. includes a script editor and debugger to help with script development.

Checks if security auditing is enabled network-wide GFI LANguard N.S.S. checks if each NT/2000/XP machine has security auditing enabled. If not, GFI LANguard N.S.S. alerts you and allows you to enable auditing remotely. Security event auditing is highly recommended – it allows you to detect intruders in real time. GFI LANguard N.S.S.'s companion product GFI LANguard Security Event Log Monitor (S.E.L.M.) automates network-wide, real time analysis of security events.

Deploys custom/3rd party software and patches network-wide

Besides deploying patches and service packs, GFI LANguard N.S.S. allows you to easily deploy 3rd party software or patches network-wide. Use this feature to deploy client software, update custom or non-Microsoft software, virus updates and more. The custom software deployment feature obsoletes the need for Microsoft SMS, which is too complex and expensive for small to medium sized networks.

Scans for dangerous USB devices

USB devices can be a potential security problem since almost any device can be connected. This creates a potential security risk and as an administrator you have little control. GFI LANguard N.S.S. scans all devices connected to the USB hub, filters authorized USB devices (such as the mouse) and only alerts you to dangerous or unknown USB devices.

Reports NTFS and share permissions

GFI LANguard N.S.S. will display both share and NTFS permissions for all shares in your network, allowing you to easily check and lock down your shares.

Scans and retrieves OS data from Linux systems It is possible to remotely extract OS data from Linux-based systems and scan results are presented in the same way as for Windows. This means that both Linux and Windows-based target computers can be investigated in a single scanning session! GFI LANguard N.S.S. includes numerous Linux security checks including rootkit detection.

Authentication to Linux targets through SSH Private Keys

GFI LANguard N.S.S. can use SSH Private Key files instead of the conventional password string credentials to authenticate to Linux-based target computers.

Checks status of GFI EndPointSecurity

GFI LANguard N.S.S. can also check that the portable storage control service is active. GFI EndPointSecurity gives you network-wide control of portable storage devices: Control which users can use a USB stick, MP3 player, IPOD, floppies and more.

Silent installation support

You can perform an unattended default installation of GFI LANguard N.S.S. on multiple computers in the background without any user interaction or intervention. Customization of the deployment parameters is also possible through the creation of Microsoft Transform (MST) Files.

Reviews

GFI LANguard N.S.S. gains the highest trust of customers worldwide - GFI Software announced

today that Info Security Products Guide has named GFI LANguard Network Security Scanner a winner of the Global Excellence in Network Security Solution Customer Trust 2006 Award. This customer trust honor is the greatest endorsement to the fact that GFI LANguard N.S.S. is ahead of the curve when it comes to the best-of-the-best products that can provide the highest network security.

- Info Security Products Guide, June 2006

System requirements

· Windows 2000 (SP4) / XP (SP2) / 2003 operating system. · Internet Explorer 5.1 or higher.

· Client for Microsoft Networks component – this is included by

default in Windows 95 or higher.

· Secure Shell (SSH) – this is included by default in every Linux OS

distribution pack.

Security Event Log Monitor

Network-wide event log monitoring

Many companies mistakenly assume that unauthorized access is only attempted by external parties.

Actually, the majority of corporate security threats stem from internal sources, against which a firewall

offers no protection. GFI LANguard S.E.L.M. monitors the security event logs of all your Windows

NT/2000/XP/2003 servers and workstations and alerts you to possible intrusions/attacks in real time,

giving you peace of mind.

GFI LANguard S.E.L.M. ships with a security event analysis engine which takes into account the type of

security event, security level of each computer, when event occurred (outside or during operating

hours), role of computer (workstation, member server or domain controller) and its operation system.

Based on this information, GFI LANguard S.E.L.M. can decide whether the security event is critical,

high, medium or low. Now you can quickly respond to important security events without being an event

log guru and knowing the ins and outs of each Windows event.

Besides analyzing security event logs, GFI LANguard S.E.L.M. can analyze application, system and

other event logs too. You can back up and clear event logs on all remote machines in your network

automatically; and view, report and filter events network-wide, instead of just per machine. GFI

LANguard S.E.L.M. collects all events in one central database, making it easy to create network-wide

reports and custom filters. Using the custom rules, you can create your own event alerts based on event

ID, condition and event contents. GFI LANguard S.E.L.M. is the only event log management product that

can analyze the contents of the event properties. In addition, GFI LANguard S.E.L.M. enables you to

create reports to get a more in-depth understanding of your network.

Network-wide analysis of event logs made easy · “Translates” the often cryptic event descriptions to

clear, concise explanations and suggestions for action · Removes “noise” events that make up a large ratio of

all security events

· Solves the problem of security log files being tampered with

· Provides real-time monitoring and notification

· Solves fragmented audit trails by consolidating all security events into a single database.

Features & benefits

Monitor for critical security events networkwide -detect attacks & malicious network users

Receive alerts about critical events on Exchange, ISA, SQL and IIS Servers

Back up and clear event logs network-wide, and archive to a central database

No client software/agents required.

Monitor IIS, Exchange, ISA & SQL Server

Using GFI LANguard S.E.L.M., you can proactively monitor your mission-critical servers. You can also monitor events generated by Microsoft ISA Server, Exchange Server, SQL Server and IIS and prevent network disasters from occurring. For example, you can monitor email queues, SMTP gateways, MAPI availability, bad hard disk blocks, disk space, and more.

View reports on key security information happening on your network

GFI LANguard S.E.L.M.’s reporter enables you to identify security trends. Use its standard reports – which you can customize – or create custom reports from scratch. The standard reports include:

· All failed logons

· Users who failed to logon due to an invalid username or an incorrect password

· All account lockouts for a time period

· Initial daily logon time for each user over a time period

· Which computers users log into

· Possible security log tampering for a time period · Failed object access events (e.g., to secured files) · High security events of the past day, week or month.