概述
McAfee Host Intrusion Prevention for Server 可主动抵御已知和新生的零日攻击。它通过降低补丁程序的安装频率和紧迫性,提高安全性,降低成本。通过与 McAfee ePolicy Orchestrator (ePO) 平台集成,McAfee Host Intrusion Prevention 不仅可以实现准确、可扩展和易用的集中报告与管理,而且还可以与其他迈克菲和非迈克菲安全产品配合使用。
全面的安全 - Host Intrusion Prevention for Server 使用多个经过证明的方法(包括行为分析、特征码分析以及用全球信誉技术加强的动态状态防火墙)拦截不断涌现的攻击。
先进的漏洞防护功能 — 更有效地防范针对新漏洞的攻击,让您的 IT 员工有更多时间规划、测试和部署补丁程序。
自定义的服务器保护 - McAfee Host Intrusion Prevention for Server 通过专门针对 Web 和数据库服务器的保护措施,帮助确保服务器的正常运行。
由迈克菲全球威胁智能提供增强的安全 - 迈克菲全球威胁智能 (GTI) 是一种基于云的全面威胁智能服务。它已经集成到迈克菲安全成品中,全天候实时工作,可保护客户免受所有媒介(文件、网站、邮件和网络)上计算机威胁的侵扰。迈克菲 GTI 提供业内最全面的威胁数据、最可靠的数据关联和最完整的产品集成。迈克菲的 GTI 网络允许所启用的产品针对多个媒介实时评估威胁,这会提高威胁标识速度并提高捕获率。Host Intrusion Prevention for Server 使用迈克菲 GTI 文件信誉服务和网络连接信誉服务,在可疑文件被标识为携带恶意负载以及受感染的或托管恶意软件攻击的域/IP 地址之前查找这些可疑文件,并拦截这些攻击。
特点和优势
确保企业的安全和正常运转
防范入侵、保护资产并在各个级别上实施入侵防护系统 (IPS) 和零日威胁防护措施,包括:网络、终端和应用程序。
通过简化、集中的管理节省时间和金钱
借助 McAfee ePolicy Orchestrator (ePO) 控制台保护和管理整个企业内的所有服务器,这是一款可扩展的集中式平台,通过它可完成部署、管理、报告和审计。
对 Web 和数据库服务器采取自定义的保护措施
借助专门的保护措施保护重要的服务器免受攻击(如目录遍历和 SQL 注入式攻击),从而维护系统的正常运行并保证工作效率。
一旦发现新威胁便即刻进行拦截
系统防火墙(仅限 Microsoft Windows)中基于信誉且集成了信任的全球智能拦截僵尸网络 (Botnet) 和拒绝服务等威胁,以防发生攻击。
避免按优先级部署补丁的麻烦
降低补丁安装频率,根据优先级部署补丁,以便最有效地使用 IT 资源。
轻松进行合规性证明
借助麦克菲的简明可操作视图、工作流、事件监控和报告迅速补救威胁并确保合规性。
系统要求
以下仅为最低系统要求。实际要求将视具体环境而定。
操作系统
- Microsoft Windows(英语、法语、德语、日语、朝鲜语、西班牙语、繁体中文)
- Microsoft Windows Server 2008(32 位和 64 位)
- Microsoft Windows Server 2003 Standard Service Pack 2 (SP2) 或更高版本(32 位和 64 位版)
- Microsoft Windows Server 2003 R2 Standard(32 位和 64 位版)
- Microsoft Windows Server 2003 Enterprise SP2 或更高版本(32 位和 64 位版)
- Microsoft Windows Server 2003 R2 Enterprise(32 位和 64 位)
- Microsoft Windows 2003 Server Web SP1 或更高版本
- Microsoft Windows Server 2003 R2 Web
- Microsoft Windows 2000 Advanced Server SP4 或更高版本
- Microsoft Windows 2000 Datacenter Server SP4 或更高版本
- Microsoft Windows 2000 Professional SP4 或更高版本
- Microsoft Windows 2000 Server SP4 或更高版本
- Red Hat Enterprise Linux 4.0(32 位);支持的内核模块:
- 2.6.9-42.EL
- 2.6.9-42.EL-smp
- 2.6.9-34.EL
- 2.6.9-34.EL-smp
- 2.6.9-22.EL
- 2.6.9-22.EL-smp
- Sun Solaris
- SPARC Solaris 10
- SPARC Solaris 9(32 位或 64 位内核)
- SPARC Solaris 8(32 位或 64 位内核)
- SUSE Linux Enterprise
- 10,11(32 位或 64 位内核)
支持的 Web 服务器平台
- IIS 4.0/5.0/6.0 (Microsoft Windows)
- Apache Web Server 2.0.42 或更高版本
- Apache Web Server 1.3.6 或更高版本
- Sun Java Web Server 6.1
- Sun ONE Web Server 6.0
支持的数据库服务器平台
- Microsoft SQL Server 2005 和 2008
演示/教程
Quick Tips for Host Intrusion Prevention for Server
For guidance on how to use this McAfee product, watch the Quick Tips video listed above.
客户案例
Riverside Healthcare (English)
Riverside Healthcare protects more than 1,950 endpoints including mobile devices with McAfee software.
产品特色
- Optimize mobility management of corporate data
- Protect corporate data from the data center to the mobile device
- Set mobile policies that work while providing flexibility to users
Scottrade (English)
Scottrade partners with McAfee to secure customer data.
产品特色
- Eliminated network vulnerabilities and protected customer information
- Improved monitoring and control of workstations and servers via a single management console
- Streamlined and accelerated security management and vulnerability assessment
- Simplified deployment, patches, and upgrades
- Helped Scottrade garner multiple awards for customer satisfaction and IT excellence
TeliaSonera AB (English)
A leading telecommunications group in the Nordic and Baltic regions strengthens anti-virus security with McAfee.
产品特色
- Protected 23,000 endpoints against viruses
- Enforced blacklisting of potentially malicious applications
- Delivered powerful functionality, ease of use, and simplified administration
- Helped secure the patch update process
新闻/活动
新闻
- McAfee Leads in Enterprise Endpoint Protection and Performance; Unifies Customer Approach to Emerging Security Threats (English)
五月 2, 2011主题 : 终端保护, 安全即服务 (SaaS)
活动
未找到结果资源
McAfee Host Intrusion Prevention for Server (English)
For a technical summary on the McAfee product listed above, please view the product data sheet.
McAfee Education — McAfee Host Intrusion Prevention Essentials (English)
For a technical summary on the McAfee product listed above, please view the product data sheet.
白皮书
社区
论坛
McAfee Communities : All Content - Host Intrusion Prevention
- HIPS and sccm (configmgr) client agent installation
15 hours ago - 17 posts - I have a quick question (at least I hope it's quick) regarding ePO. Is it possible to use ePO as a querying tool for malicious files ? If you knew of a malicious .dll with a certain MD5 hash - could you look for that file?
1 day ago - 1 Post - Kernel Compatibility
2 days ago - 1 Post - Upgrading from HIPS 7 to HIPS 8
6 days ago - 2 posts - Mctray gone after HIPS installed
1 week ago - 1 Post
博客
- SQL Slammer Worm Regains Momentum
Archive - 四月 20, 2011
At McAfee Labs every day we monitor millions of intrusion prevention systems (IPS) alerts from our sensors around the world. From these alerts, we often see interesting global data and trends. Recently, ISC noticed a sudden decline of Slammer traffic in the wild, which we also noticed on our sensors. The infamous Slammer was a Read more... - Lost the Keys to Okena?
Evelyn de Souza - 六月 18, 2010
On June 11, Cisco announced end-of-life and end-of-sale of the Cisco Security Agent (CSA) ending months of speculation. Cisco will continue to support CSA for three years but without product enhancements. CSA is a host intrusion prevention product for endpoints and servers made originally by Okena and which was acquired by Cisco in 2003. Cisco CSA Read more...